last executing test programs:

7.689841934s ago: executing program 3 (id=5057):
syz_mount_image$fuse(0x0, &(0x7f0000006340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x72}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='9p_protocol_dump\x00', r0}, 0x10)
pipe2$9p(&(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}})
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000640)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

7.660212087s ago: executing program 3 (id=5058):
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600)={[{@test_dummy_encryption}, {@errors_remount}, {@test_dummy_encryption}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@noquota}, {@data_err_abort}]}, 0xd, 0x5e9, &(0x7f0000001340)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x2, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read(r2, &(0x7f0000000040)=""/148, 0xffffff96)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

6.786261557s ago: executing program 3 (id=5062):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000010a68e0158860000000000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r0}, 0x10)
fcntl$setstatus(r0, 0x4, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000cc0), 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x524a, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f00000013c0))
io_uring_register$IORING_REGISTER_BUFFERS2(r3, 0xf, &(0x7f00000024c0)={0x2, 0x0, 0x0, &(0x7f0000002400)=[{0x0}, {0x0}], &(0x7f0000002480)}, 0x20)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r1)
sendmsg$TIPC_NL_LINK_SET(r1, &(0x7f00000001c0)={&(0x7f0000000040), 0xc, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="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"], 0x578}, 0x1, 0x0, 0x0, 0x40800}, 0x4000)
sendmsg$TIPC_CMD_SHOW_STATS(r1, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001480)={0x1c, r2, 0x1, 0x0, 0x0, {{}, {0x0, 0x4}}}, 0x1c}}, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, 0x0, 0x0, 0x0, 0x0, 0x2}, {{@in, 0x0, 0x6c}, 0x0, @in6=@dev, 0x0, 0x0, 0x2}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f00000000c0)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x4, 0xe, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f00000001c0)='./file0\x00', 0x800716, &(0x7f0000000080), 0xfb, 0x492, &(0x7f00000019c0)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='\n\x00\x00\x00', @ANYRES32, @ANYBLOB, @ANYRES32], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x18)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_linger(r6, 0x1, 0xd, &(0x7f0000000200)={0x0, 0x9}, 0x8)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x110)
read$FUSE(r7, &(0x7f0000000a40)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r8 = eventfd(0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000020000102505a19e4000010203010902"], 0x0)
sendfile(r8, r7, 0x0, 0x2000000000008)
rmdir(&(0x7f0000000000)='./file0\x00')

4.762710063s ago: executing program 0 (id=5076):
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)

4.762109533s ago: executing program 0 (id=5077):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f00000003c0)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESDEC=0x0, @ANYBLOB=',discard,\x00', @ANYBLOB="3a8d75a267b001234a1e919d26dfdd0d8b316510e9c9cf606c6db6505304ee2649c88f03f9ef98bcebc5d721a7081b3509e543147eec5a0fa6d6eb57eed4197249efe6fa10323b6cf959897b3f1908c82c14974d31b0d080f8c86c196c0ee8eb707a73d201bbe15a02a37118aa1d4aaa4d2484b05dbb73e44387f620f46a3a2e06436e6296b05bd07717accf667e0331c0f323a7529f6b471ec30340347d3f405257c8bad57ddef290ea1d376a20", @ANYRESOCT=0x0, @ANYRES8, @ANYBLOB="0002001100000000303030303030303030303030303030303030303135322c796f636884c178f94be4ee34617273657439697300926f38", @ANYBLOB="51060c4f1adb6e795b70e7edcdc5cd30e197ceacee351e08a6e2ee4650101fb28229b16aecf828a55c8aa0efd840e40fef6612e7b389eb304c41e39360e1f5cb6f78bd7100bd30bbd42aa24b2dc9171d068e92ac848e65c9", @ANYRES64, @ANYRESDEC], 0x81, 0x151a, &(0x7f0000002a80)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
getresuid(0x0, &(0x7f0000000480), 0x0)
r5 = socket(0x40000000002, 0x3, 0x2)
setsockopt$inet_int(r5, 0x0, 0x14, &(0x7f0000000300)=0x185, 0x4)
r6 = socket(0x40000000002, 0x3, 0x80000000002)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000140)='veth1_virt_wifi\x00', 0x10)
sendto$unix(r6, 0x0, 0x0, 0x0, &(0x7f0000000180)=@abs={0x0, 0x0, 0x10000e0}, 0x6e)
recvmmsg(r5, 0x0, 0x0, 0x60, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x1ff)

4.435246803s ago: executing program 1 (id=5078):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x0, 0x0, 0x0, 0x0, 0x2}, {{@in, 0x0, 0x6c}, 0x0, @in6=@dev}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @dev, @broadcast=0xac1414bb}}}}}}, 0x0) (fail_nth: 3)

4.188007026s ago: executing program 3 (id=5080):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
sched_setscheduler(0x0, 0x1, 0x0)
epoll_create(0x6)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb6f68000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000300)=ANY=[], 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
keyctl$chown(0x4, 0x0, 0xee00, 0xffffffffffffffff)
keyctl$chown(0x4, 0x0, 0x0, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r6, 0x400452c9, &(0x7f0000000100))
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

4.03336851s ago: executing program 1 (id=5081):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x2, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read(r2, &(0x7f0000000040)=""/148, 0xffffff96)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

3.900760002s ago: executing program 2 (id=5082):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000005c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noblock_validity}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10}}, {@debug}]}, 0xfe, 0x47e, &(0x7f0000001380)="$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")
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000340)=ANY=[@ANYBLOB])
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
io_uring_setup(0x5281, &(0x7f0000000040)={0x0, 0x32c0, 0x0, 0x2, 0xa8})
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r5, &(0x7f0000000140)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r6, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000016c0)=@newlink={0x68, 0x10, 0x439, 0x70bd25, 0xffffffe2, {0x0, 0x0, 0xe403, r7, 0x3, 0x715cb}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @sit={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, @IFLA_IPTUN_6RD_RELAY_PREFIX={0x8, 0xc, 0x8}, @IFLA_IPTUN_PMTUDISC={0x5}, @IFLA_IPTUN_6RD_PREFIXLEN={0x6, 0xd, 0xe64b}]}}}, @IFLA_XDP={0x4}, @IFLA_IFNAME={0x14, 0x3, 'wg0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x4040}, 0x4000040)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01000000000000000000010000000000000001410000001c001700000000001000006574683a73797a6b616c6c6572300000"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r10}, 0x0, &(0x7f0000000040)}, 0x20)
ptrace$peekuser(0x3, 0x0, 0x4c3fa7ec)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

3.735228467s ago: executing program 0 (id=5083):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@sysvgroups}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@nobarrier}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5e9, &(0x7f0000001200)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
rt_sigprocmask(0x0, &(0x7f0000000180)={[0xfffffffffffffffd]}, 0x0, 0x8)
r2 = getpid()
r3 = gettid()
rt_tgsigqueueinfo(r2, r3, 0xb, &(0x7f0000000080)={0x0, 0x0, 0x2})
r4 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)
read(r4, &(0x7f0000000740)=""/377, 0x179)
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
fcntl$dupfd(r0, 0x0, r0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)

3.70258342s ago: executing program 3 (id=5084):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3, <r4=>0xffffffffffffffff}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000740)=@framed={{}, [@snprintf={{0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x8, 0xfe00}, {0x7, 0x0, 0x8}, {}, {0x5}, {0x7, 0x0, 0x2, 0x0}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x49}}]}, &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
statx(0xffffffffffffffff, 0x0, 0x100, 0x0, &(0x7f0000008040)={0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0})
sendmmsg$unix(r2, &(0x7f0000003380)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000001c0)="6de742d532a901f77865bf6e636d2112d3fd", 0x12}, {&(0x7f00000007c0)="90cad548304aacad32996af424205d17b537d7b00d92d35ccc4e9454bb9c9e4da2c0e4ec4d2b3e5f176bb6f3d6ba43619a9696f6845a440b341c6d53000039d34d241a283a5e361fafd1e1e1966405e56b9b01818c82d2cb9591d7e89bae134a332bbb629911deba5ae2eb9436d0327cf4e29536bae4cdde4d4986f88ea1b024d99b66c88e5d0a78564ec93fa3cb902870d91679286a5a0686e24bd651a23ed8d828b02b4e1c19bf5a813e77c31f5340ed05b2859a4c65d44dda18656db5e1300c02c5c9ce1c1211ae0c6e16755c014906c11689841e51534d34b85dd5372ca3ef7422", 0xe3}, {&(0x7f0000000240)}, {&(0x7f00000008c0)="9ba9b1d56685dce19c7f653f62317057696f589ee29d3c42e1054dd65723d53da1ec91839fc890a7b5ee1521cb2eaf61c1eeb1756ab59d0d104f5dd0b0d7fe49", 0x40}], 0x4, &(0x7f0000000640)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18, 0x44050}}, {{0x0, 0x0, &(0x7f0000005dc0)=[{0x0}], 0x1, 0x0, 0x0, 0x20000000}}, {{&(0x7f0000005e00)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4}}, {{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000b40)="10f0cdec937eb3348124349bc24bbacffd11870080dd87f5f02ac185b988006b013c0b4aa02070846ab2d6c27871c1fd995b5988175c5905da7dd7676ae60cd3e6eb1505e6df6ea3a8", 0x49}, {&(0x7f0000000bc0)}], 0x2, &(0x7f0000000e40)=[@cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r0, r5, r6}}}], 0x40, 0x44000}}, {{&(0x7f0000000e80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000003280)=[{&(0x7f0000000f00)}, {&(0x7f0000000f40)="34abdd238065f2e614e3f1b2e2c053851e57386cccb41e254dc70259ce0eedb9c6dd364ebb95ae1430d4f179fa2bd16ad8ede15326046505c8aa81ee245d2208e85a508b67e85d105129ca06fc8344b2a421d81bf3fb3f7798aeab594fd12ed387501d41f180d547cb28cd830798e9f2e0ac06a2a3f1edbd874c301c71516f84223e686fe026955b3b923c69e89b10521402e7cbe49cb825fd90ac39305f37989da17185111f3799a5413792c2b32cd408515d313b42def14310f272b1c7dd81aea608127f12849f284123eaada8736c9a", 0xd1}, {&(0x7f0000001040)="d98e1beba446d1e8af2f151b44445607e676e2dfa304fda0f446e19ac3e3eeacdda462b77d298222a736da66fe7a908c8d9edc2bf43e51e01824010a0db90d87f710345ea62e1b6d74", 0x49}, {&(0x7f0000001100)="69d385c3c65c0c1634a792133bf027dcf78d9ff3a83bd0a010e4508fa8eb6a652202984eeda0c9b8ef6eea1388b9c59d92c2ef542e4f38ebde549f2db24ce4", 0x3f}, {&(0x7f0000001140)="70e957852ace05de9c67e60bca169dea04cd43806887b41ac0bcfdece75b52a9eb20a959e182235f666e311d8ff50a45317d4c2d668b0c3c7c24e77a09b5", 0x3e}, {&(0x7f0000001180)="62a386f5c1408ce569c89af88d47bfe83806bef969a921b0fd220ecb59af5d99a9c72e6bd28392f0f748f7018a68666de0f5d3679afe33dfc4e06943b932f582f1fa7812fb9aca14cdea518f98cd6d60b741d6e3", 0x54}, {&(0x7f0000001200)="c3a4dfefde015523e33fb7610d02a5a03c81a7f384e576f1d133e730b464fea9cdccdf5bb5a56a3a9a721d5e8dec2f83e43e7b1ec3820e77c03f8aa4925ad1c955a64310e2a1d7235e0acb951c23c6154a5557536c58897f24a13747f05520d8ccfb65b183cc9a1507a2f84f2754deda9316c561f83dc83e6d4471a7a36cbf85b4e3320fd84d1e36d3f6adf0870a2ba5077e444a1d04cda4187042e8c251634af4c1aac359f8dda65684924f143170a9f4a121772643e58aefed0045f87ad25fc37e0e0ad28b4ffbecbd40571c2ba5ecffa24033013e0a763b1a576e367d5295168f20891bec3711d9d97a552dcba477c4b852fc55e8ff03dd32210f945740f0d1fb43cc31339ccb0e55fd2371a688f1b3a04942a65c2bd8458b7591c70b7d362dc920841f7823c7d2ea57e93bc21d0b31c4dc13ba5cd486a70e9c2ea82b985df4c0111bc177da94dce23eb95a95cabf9565f7e899fd4038ba887eb4d9eaa1d4e1308aa8571e63e833a97978c5343005a344bf5839fd1287150ef879b2f71af708ead7efa061104d0133a07ebed7145198efd45aebd0dabd297c327d9097ee7b35af69aeaf3f0666f205100ca0b2c04d5d7c7b7061ecbbcdfa84d3cb3bf3860fd6a7ed05f09382567447722a13fd586ec7aa8ad9206f7654c8303da8dfd04565a8fd8e278e53e7f697e57439f05addb80447adaf7e2532688e2606e1e03a08209bac325cb17fa0546681b816d1d4e326599a963c5a79f385031413f68d1ac838eed5af149b56b9c5810db9e0634a9d6d2e75c1210e88df91a7c7bebf8339f5fcd0122e20cced515778a287af2a42f6ad2ade11a0b48fe53b4b1eb8215e5d9b8d637554d6e9ee21237771ea8cb77f8bdd5689240e8dcd10351c1bda2dddc3defed182a075fea337adf9326d8665e27afe3683089b72afd9d18d8cd733d98fa16af8dc00b6fcc2f339c7f4124ea057ad39d18c02d60639bf2b082a4d0162c18a8c49c22efe3cfb01c36ff3d4fb1f1acd19269b08e643b8d1ef9ae5ef1597d3820c52fab962273fa54a4b7520c4b30a764de4ed48ab2c5cf7ff67d9cd368a53a4d17aae0b07a85ccc88ed21761b1350e3fcc1bc24589f970a904166c6b190a334a7a568a468c7aa74df43446c30223206c8da2f08b052a6cdf5e0d97bf05eb5e0b3fd4efedc0d4699b86b221deb8b27b0bab5230e8309ccf02e8999b11b076b32c7a86eab42d3505af39049422ac8e64e4f2eacb7fa3215c666aeec03b29834b5b8a7760d4387b195e21f730415effbce0fc3ae965bd1d22adfbb966015b1fe3f6ebf479fca134c43b6b4cb4532c8a34e36cff0c499b43cfbadc246a9eb38422c8e6a5b355af56a22f2d581a3123693c72dd1081b67fc4f8316d2676c87f23a11d504fe8ba9475406d3233a64adecab241bfc2754a53301fccfc67df3b15ca286abfc4e9bf7eb32c2ea0578e66ee84aa1024ef51f6df36429c60dc0ecb10e9960baa3afc214eb21ed7ed7b491d9afe912fc522f41c5d83efe3c1080ed4c006798afc6695797033a9c64da54126c4b3b6ee4fbaafe7d0240af28df7204fd2693474c67e77fbf03a92057af42af82f0eb918b613eaa06bbc6d65d08a43fcf44901f3c24ddc15350ecda487468cd67fc35a2e42d68971ccc66423daadd33874fe5f79f21f1cf62482229a28143468b58a7ab6a4dd0e85359f8878fd56deda38f6430b2ab23c7ae87d560721facd2606bc32082188e69c228059f3e0dafae80d5149199af717d190b34fc7d493feed2696d3948590d9afd582126935ffa6d3d3c8e151df8fcde5067263bc4c4d8cb940809db5838ff24a231aa5eca145279482f73d7eac57cf45b68f52799b9e1bc0ccbdbb38756ac9506cdbd118764c6c928ad32f664f60c9268047e8849b23145a05676b47c9d0e1583f3fa39033ea78b9cc0f00de89306b2a7d9cec89c49568d174e0a9009098b401f560d3962bd75f34026259236f406a672b02fa619a274d462024b59f96b2d8d14f91de1ba22f0592c1ddde99f322c44a562651fae60c7c9bfaf00a0adc22f75d82f3950b33b335f4df68a6f53d8f913bca4b3eb18d81797b58adeb35e5f631efac44e3c0f5f225e6b94207cc7f826d2f174bde8bfb212c59e7ba424544745cc4feb3513b813aa559fd0a9dcf890f8d8ad499cd7da5ea52d36e08bc4e50ebd96938d62d4fd0a6dc404d6349845b36d591a0d539d334cb865b0dbf6a0a8f3e0e4f1abeb0cfa012668ae46ddb0b886e155dd5ad39034c2c873b6d3d14df38c4bb1c56a014d4ec7a5e2a242dd22b1ca380600b5b6e53f7b241573e761f25bdeb273a50c0394d55c36079bb1afc434b9cba02b41448b11164e4fa2293821e56536cb7eb0af6cb79a8fc0d4c99afb1f63c2c5904e9682bc0f345ca4678bc2e44a30a946e6118dfe2064c5f052f74c089441ef78824f9000f5ebb64f388716d1928300ce837a11f4bc18e7dc46a91ad83b20b66fe79e97b1782d895ba03704a92f90429e57b7fb929de59a15847343454517a8147115d894fb5a35ae477b142ac8784b31a6d12cad474b49bd9a113d7008d56c1d68edd5f4aaddcd2fc8f6b6b0d31d30811fac91abe3fa383bc56d8f501971f9f025a769553aeff8d21c80260ac620dfadff8067ef2f3005b044e9ef46f06a9c19eba6c511279339ebac1d355ab0efdb37ab1381fa92f56d45e7be4cb8d8d20edc9a349c4eb71843d37765361be04fd26ee952ccefd7df77fcd5209d17f1f79fcffd38f91fe8e02f174b7e16982d7946b88b889ac0639ad11d94747455ebfcd88314aeadd755ae7c13fae3015593d5614585bcb24d76e92bdc74cbbd0ad738f5b0fe2993b369907ae9289fa38606c934af8dc859b9a2d159a7388ad637d57336a40376655b5a67a5491525200675baf0d74dc1c913c75ba82b38b7cfec23dc34efe592ea05c4de01d39b4e6f9dd326d0306ca5fd35170848625044beaed7a50ea53f086c44bda899b4e0e9c1d796e5c0e52638607c008f8fc87bf878b6029ece294ad65ac5955c66e63b09cefd0386fd297cc0a4d07feb97101f4463e9c80a09e88b4847cdb2f7a6493b87664098bdc4b9c8a62e9d751fc78ab1281dbcfc352d2c4179868eb74a964bce22132963a3bc09d04a87c0c4cb8272f56d2fe1d13379fb6f70c716e5790db97e87d052085fa1e486a9840a0e5d492ec2bf17bb213401a28a11cdc89cc58c551496b12340a2b7a65f6be12e422a65448423bf0648cb5983460f8568eefe76c032fb6f20687fba1cb6917586bf1f57f741612db54864337227dec2beff7daae1b24e88617023aab76af686a71dacba487cb526abbd8996b7cf04567562a164e99955eeed3f1944655c3a9b092957be1e28242f07ee3ffa31fbfecc5cd7353ed6449022412e4ed074fa7684a211de1a00f7797ad7d36fa4661751b44eae4c1b6007d5f53606f98c29951df42ac8eb336bb6cbd880b192ade96131fc688c6df2e30ad732e4dddce32cada969b5bfbdfbdb34be690394ffbda8b0965cae53feb62f8f2bc8e0d0ad6b250ff06b590c52bef577cb3fa925163b3c1822f83b225130c093f9daf70af3a2eaf55601a4a814c26175b2aea31bdf72b4df588aca0e7241b1c39bbcec7f8f84e50be0cfe802c01b0a35a7505a1d4002cfcb6369ca343c3352db42b7c18ba9aab92eda2c38a72a5a1fac7059609a66d4a9e1fea9ef389896e2e81f3c2d74f239238028bdf846bb489d736f8cc36175be48dcc296f571cea1d344492aa4c2df1748f3c41294b77f61768d137c461d633eb506e57b488013b1b54e67164dfea49f110c1487cb57f6af6ca5c584ccdc159ecb310161b1d3629f135578a26f667277d321c1aefcf81c356edb828e3482ab052d03086efe1225a336e403bc6c8a922939685466db9aeb0fd574f21491ead995f66e56be1d51b29cfa7cde0bd766e9cf03e346c06d5beadbe2e9b1b6d72d3820e4647be5b8ef3e5f918389dc1147d7e943ff66194f9591e4371ef37c8e1ff98af356d2f6b46110799a9205f958b9be2488784f6e77277d6af511f2fed8f58c4c34cafca2c8fe33806eb65e939a03510c3315c22cec199ddd1a06a72685f8ce757f320591acf7bc7c7a98e390f4431c9174da51485615c9c6e23572ff7209f6513f26b5821112626013c51675ed6ac81ba8ab8c8c99f43b5c2d6b7512d4d7945b6f156289e96cbbe048c193b3c4e6207bfb06cd0b8b099181c837858091ae60a473d2ee1d853236f279fefec3bd82522000a387aa80dc2c269aaf5edb90db2ef9408b1da21428b64c16ab69291b8b76022b1362818608841e53c5555ebd6a13d33135dfae4dda4ecde5ba1b9593b31165cd8dcd31a476ea19944fec8d701004809ada5b156c4e4cc07462e7d34c3b8a1f9ae4c12c02071f05f165d1af1f6ff5fb3daa718b91c9583efeefecea09cc9876418acba04adcc095f6216401ae7a7606ec8ca08c3a5e5b4ea0b5c394a5147db3806002ee946c13c7b221e83dad3545eb5cd8431b7c92481ba225ec338a1bb3af801952ee2a3c6c820d841f760f533e72fca6557cc4318a1e454da7a387c611b7dc98d25bd0a5b45854b84d571439a46957bd9dc27d5aaa64c51261294271c6a99837e483d40593ac808d7b44e120c10826e51fd02b948ee17501c5acd9347b3f055412e9f90bd722f1db303606302a42342c741454e8a89774cb68c4c52fe2e7f4f2e3dba76910bca9674850183fb83e68d6fccc44ca1921fe980c5917033a3de9ee4037b0585d2234677779be26d1818df1a2de7db5a41982d071a915093ff9de846bdee77ba43a28b0a5c31841ec7cdabd708490883c521980fd75488663b90652a5f022cc43926d933152b49f9f710a5356b74fa5e6ae59b81b41f76c5acd63ac46bb43fafd3e2d9423c4291667e87a7cbb1bec5ebddb386c18b97961607287bfd24295620fa525ed732c9c553c91eae2297e538c222ff03749429a30cb1943a805f3d746218d993711d33338c205cf4ebaf6953765a772960268aea93b69b3b371b8c567f1bb4deb1499846d90ea5467defc55b5eb1fe3858ef41d27ab25490138ff1ee66971cff94bfa7325d455b9e310690edd5b8abaa72b05d36b5fb8e2f0807da970f0b4d05d739c3546fc7ac80791555f67a473ce9e9092043428fc94f07329e702d3f7dfd82f2e1329dc702ebd32b8b9354989f54346397729a6ba09a8ee14fb7ba2d0a1060d6d864c07fd946268123e6f8cb7f555677e8e3fbe3956cb7f59bf6fabd8142a673bb0ec679778d538d7849b39fb2d197f2c90c18da973451d05f8acf3b3fc9c6dc733f0674cfe274c0da1f1b1b05ae98119411909bdf1ecd0beeb6754d451d974f677e01c28f287c482862061c3b3866b9befe6e8431e223ce43201b9732b910d11bc", 0xf00}, {0x0}, {&(0x7f0000002280)="4c556d1cdef3f2be6d54c15f620723ae7b0069410f42101a334acab4727ba7b77d54ac9a1d4366cad7e84a0011821da3cfc96cfddb4a946c6d3b53f77d2af8800f105f60affed35acd5c543d9e2291ffe15a6906d7b4e7a5216014034e9b6e549cb3cba5f20c54c11437481055f7c5293004a0124167980355953ed007b656dd669c7974ab0bc974781ae1df90a0638f0ea929d9f3a9cc58cb6926550c11c7a3b67f8ba8d703db563f0042a8dde036d537a3d98d4d0a7f77da6a5dca43f0edb649a95094a5956244fb5917fc1f6a917e90988cd7ec18ec58f021ce5a706a60bc5d3d096bd230f43daf715dc1f62bc7fdd547738e812c5b87d19a0d316846a3d69939fc95df669023dfce1e022c5c79504d8d2e9ffa8221b44e7036a7231861ecf9ab849a649dad4ae99fd6681a57ea4841596ce2862a6afa3d5d864cc1bd9455f6347f0207271a45f26e0a2ee7098b2e09a65f5e3546c102d22b865d4266342199291db1a3cc13ddb6f3c2269d28bd38468ea509385185842924c74d8488d6dac5d16c4e7266d8588e468113692021f36f28bbe643d0b02934c445d9898eaec7193c52afad70eebc3e11850a092b64f07a172b5f856f715895a76725728b6e6ad444d6d39f03581621480901e2b2cad23a68edddcfda4e43ce0e6a5fa03fce63933e25f9f2587bbe0670f6079d78e6e31aec95e0b566e24b0c113237ff1f6eb7dac727b7d9089e78e67491f07d2ddf9dcc455d78b70a582c49ee1dcba943983e8a4b044f1373571b90221c1e81c014dc43de11189eba65dc89885a1dfd1674be913dcd868121e0ccf86596970648d1974896864a3294e17ce0cdd7b8062d49d88477c33e5227052f56938ae8646614b022026a2cf3b4e6462780a735a244df3a8cf329c24d9f1b5c6d7425d9d0a22ca5a332ce489906d24694e13dff3d61a03003ce886be5172b7d858902e4fc1b8e902182422a6494150f1c5314d4a5778000a446bc1e6bda31868fddb7bc1d38b49f6e7457183b3807adab5f1911b8398f316eb3dc98e8994fc75db0edfbff04cfdc0dbd1719a2beb147282dc60219651c9c62a6946de390bd224c4eb90f1735f4a65ab35574c2588079e2443fd5e06ae329461cd9020e1a4e538661ea3d353bc128d71623f16700cb473d5e7d8d89e17c71194c49e34892f8144de64a5148c413490605cc4eb2dca9b2670696fedda91e6bd1442b65b1c2b7c04afed00415807e9765b217bdc074db54a08d3aad01c6520d5ba69ccfcaa1ffd0e6fee9c28d8d8d2094f8d5afedb79a59baf4c0e69765f722da2335d570b34bc5b49f102508c990aad7622dbdb2a619fda90ce6444a303c27ba3f33e6f67771cc03de7ab2fc63afc78f494ff56ff05f5aaa572b3c45f3127a70dbc3c97e149195f32d728231d92cff5a2a9a206998c2848ba289778aaecbe819606cc489907af058ad37d02e7d5697b48e051add54e952cab3742c9b869fc8ea3187f4781b6fa2c2ec462287ab3c1d9234f9a9dc5d5d1d62f1c08b7d049e5567fc101549e3bed2b833661b066fc5975eaf2dff4a2bde04257f1e4970b77bed112ebca65751549026f9f6132cbd47ebb02ebde27009ef01af68c97948aebe09e36a022b30178f6c76bcacbc6d15a295eb6dbf3b8a2f7d8858401be6d8014b1f5e617f56d1cd8493be508bc62e68fd40b9606d676a52302c938c58175352a115229ba17fe5b7d6709033f44baa5fe15f2a246c269adcbe994daa141cf7dc9d3cbab80b9d958b4dcdcecf30fcdf7199b6ac3e235cd0515a2577312cb0e4d20a2fcee2957f379516470d8d878692183fed6a5b8ad0599fa096436d81dd47af7efadd71ac71f50eda7830816f916450250e3d4149c22c7fc91b01dbfdfe5b17dcabd16fcde2432b24bacd50edc08f4ce1ac127e16b2d4fb2ae6ff7f367f80230c283ef31d1090084d2a53df8f367f645dd6a066a27ffed7ca37d465ced77e0fe68e078a30ccfcbe5c766299a6ffb40ad7951f065b692bfc5fcccaf44a359eea87bce2355108ce8243cb6fa29164aaec4b52242ab032337a7fec99554f69704dd3ce85e5c61e2a22137b2b63916d97d1ea06c7395961f3c10b76fecbe0f511fd6c3c06c7f436c79aaca497366da1aa85fd31359068f85530e407c18eb6c761d79473d9e11494101b170fc487573579747de192fba047265092bf53f4d2d1b6cf40f92c9e428048cb6ba375bd1f7e40f7770d432c671b61546985cf5bbeb48577ca96e9010bc8d6bd15bd48745d2fd7881636d56b8f367b05afb05d57c7776f5a35fa0c7f439f434eeb8394364f65fcd6bac1b6430dfb64795b17ddc70b2abc1e2c4807285a1b9a6e798d231a875682ba2d78c201340d2959dbbf6722242304535f3e92301ca54de9ce1800310f50a56382e56c0f349c33ad87694a8dec011b26d95c80e1d00783880aa6e58f697b26b73884fc42c736281923c2e3f5ddd91c56dbcd71c9648979832d8233ab884e0bb49358aac5037e66452205e4b31d46a2f5a45b93b4e73ac6dac3a3574d55e5305e174dd447497ee64148aa9b1c9eab871a899f7d337a85fefcc123f2483f7d30972f6a1e98c5dd5d0664b84e89da165add3431c64fcafca7af21385400579d261e2e76d40d5ddb1a31e38cef75244201e1b8e4196aeac6cc924dbd3ee4dd5a8fae47a05696509c3ee4e52ff0151397157bd0973263b5020a3ff18b994d59707ae22d6a8a51ea879b63897b682019e36d5e65fee78fe477394e14a80f54e3b46fe50072bca8e3f0a078cfce9737b09073b28bc0d88920c5a481d7da49dac46b6679fc7ac22360cfdf4ebfdf0bb366e78b0d45400f2d0ec4f4858f865c89f592e4f3ebfad4cc338f86d850f8767de027399270758dfbcdd200aa1091a87617c732ed48c88643e71ab445c65cf8a7b6c532042d9d329a6673a1f9bc730e2d8a367d722151d8d6956e470a73c0efd33e517a9dd4353212cf8c7709abfcefbc2b849b570f69c12f481f2c8bb6e3c60bc8b975ba910857e9a16ef73240a71446aa9db67ec34be0b9b111175f52a1b110b69429cfa8743e98179867aa885bed1093538f8c8813c49a7f175773c4c1e65801dee84578176b9519c145b021d2efc64ff06b84953a6977c65f7de9fe71ffd6cb520fa4e00df1ff47263f8cfb6304e69cad662d734204e685843e0099b5a25505808a93c104a21d3efb3e59dbe3fa9309e9a2b8860742433b381ed044f7a981acf9e543317d2bf171817955f1502986ce868abb77dc85c298007f87145b1f957832ee0b4ac9a9574b6aa2bfebabec6222dd7c6b882adffad18e8dc4bca069ec06a68c583f921b3d600ef1748da66b782249050ef57efa359036d1990f90b00c02cd7a3fb3a31ea9690ef9f02e0e311bf0f8188d08654fa16788af3fdddcc3b2f232b8401e407e5b3fb00dd88245eaf08ee72c593ac60d0375749fcc63d7e4c726ee31c3bd4f638e9626c679ab19c13ef528fc16bb4d25c97034f2283d1047140851d22469aea5543d92f2caa63c56dd305b00574436a3419c860b25bbec79187eb12837c5a6a5b9e98fc4308b3202fbc58062b7fd4b558ca5da5fc7d444041377774807b76e9726bb74863378534b8c351cdfe6b5ee250ee212f949238887da164238167c5066a5873c8256625d35e300dfabea860cec0a272ab9629ef75f5349adeac2ab9858eebfc6131d4b18295e7eea997853145f4ecde6e7416d04244b9f5cdb7684837ac80790e0e12bb806c7d434bbc30839e705c31e54bf4c27b5e8e122fc452a3b00b51408816cb3eb094ee96fa4da91f71614c986bb8098721828420984008e6cd8dd90ec7d4ac95293104cc245412d7f7eabadc3b17d5c722489f76be38d1e1336c737676632d05156f2b2bfd0966f4968576554f1446c584d0c715a2aa8cb83cfbada03319480a9fc0d6c0d3db14a894024d0400288f2728a04d9aec5dacf68e06f4eea8b8099c40b5404e3fbdd4220e55d86385d85a5782917de45c0bff3a7ee6d35229ef5ad286f24887d6fab598136eb2ac63d1b0b04b23b648b726dee282a2b0565839445988b693ceb6671c9eedb9327dd965714f499d658642ecbf57e05d0d0463cd892968af3d22a185353094612c98618f43d4b4d7ffac240058cb291337066dd406a3989d8c55d8e85700936d143a2cd3e0c1cd810f476c7e46dac347722bbfb482703ea3b7248177a7f89a2691362868dda795e95ddc702f9e54c28e7baa7b3e08b8d8e15820ff8ebf36db49e4fe7a6430f940449246affefd7eea4a807732d74895649dcf49db3656fd986452e7ad0946b657023fc9ed0fb01ae17d64a97b9aea2b4b0802cd6c48128f43251a34013c890e1d813a5d707658ce87522f0790304c2fb555a72df9c05f696e88af440475ae22641edd6b1b43451ff3a207aeef6c94e0eff78bcc74370b843b5cf05642c58d949ac02e085f31ddf61159707ad100fab6080cff3374ae4b91b8ce8e3ca8f60601a71a1350a4094a3b9afcd4f4bdd7a52722f4e5ea6acc61279bcb85d29c87b38ca8dd385b01f391dc8f8f59757bf1856367a56fb8eee1af9ccfb015d09fd684d4c4f89984ebe9bfefa51a9faf344b245e14032ca998a0b33cc52ec050e66000841766f387f552226f323c9a7d153592f18e2edb8c94591e6ee026e2fc3f4c5e6a27f8be5799e42d148b61632acc499e6fe75bde642e0fe7b7f59c59afc141621c73ea8ec0f63e3945ebb69b80a73e319e7d38ad2766d76aef53fdb76e2bd6f5d1008c6b59d876888c551c38e25d4c803de34aefb1462ffbe92230b607d77e93bd912d92681a212d999b303ba91e5c61ce49eb0e6dc62363ec4bf9bcf6533b587d5785f14b3f73d8ba788c20a81bf3c89d03ef91ea5b69a15daa4da948c67e97e05ae94d9d0139bef3ca4c21de1be0e14c333c9beec21e928f95b1fd32dafd40df00cd2ba2959e499fe9dcb489ae28fffd73f21b3b0a111a5440c1b3012e881fd92603bf40b9f16bdc4ffc252e34fd13a92193bcdc605c52c5dc4676b750f5f760828d76380adb23e1b6525292a0c1bc9d1def2d3fdf31dcb73b1c978b83a9f1245945385e83bc54aa467136d4edda0a4afdcc0b7e4fb575149fc0a515f4e82771d30f8f5d2654565539e474ea35646c6a6ecfc646802f7410f0b803d5eb9402e7402304ccb1064add6696ea21a2c199dec5a3eafeb03ca060bea5744cd5975a7f4f84487ed41ef1eb3e6af14d36af5b1dd2fea3eb0b9edd474317c0351dca163cabe15aad2da089950fa1fc88b55b5f77e7e6a5b1d40ccdfa50caa274a399858c1c6134fb209014b3d9063cde33c5a358dbfff0a050d13ff26e78096d7fa42a97079742bf44545cb54125c660d8d3af32de0bee1a1d2b18f7a7c5dec1b5f889cc7659fecedff228d24525cbf2b8d6695f05e2365529aa67f3a1dc22f27935967185a76409298f1181d1dacbdbc6a7f8153785fec0ff36e929c906d22d44ee5e11a1f143f0c06224a7412a4dba5b87e9a5a0be9c13a644c3367c2cd0a42693de94532d27502abd33ff7253d2d02f8a03fa332e8722cc98be3069c036bb7314de0db94464e13ce9728c175a361b7b1725d7a7fcbbaf564f0e55e8e5d91d242c705b9a4e487c61842b32637c0a2d81ae0809778b9290dd1989abd5c5b9d4074918e0958a5ebfd2f196592a8c63b0c11567cf671acf0b1e847c50ad860c90099c42fadecd4b3014298ba88e8f10255148313e86a9719e28e5a206f2fa6e9cdf70b40a2c1ba8ff53dc1ee34", 0x1000}], 0x9, &(0x7f0000003340)=ANY=[@ANYBLOB, @ANYRES32=r1], 0x18, 0x801}}], 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x6, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r7}, &(0x7f0000000380), &(0x7f00000003c0)=r8}, 0x20)

2.436603246s ago: executing program 1 (id=5085):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000002000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000200)=@raw=[@generic={0x7, 0xa, 0xf, 0x6, 0x6}, @generic={0xff, 0x4, 0x5, 0x4, 0x2}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x391}], &(0x7f0000000300)='GPL\x00', 0x80000001, 0x3f, &(0x7f0000000340)=""/63, 0x40f00, 0x54, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x2, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x4, 0x1, 0x2c5, 0x4}, 0x10, 0xa372, 0xffffffffffffffff, 0x5, &(0x7f0000000400)=[r0], &(0x7f0000000440)=[{0x1, 0x2, 0xa, 0x6}, {0x4, 0x5, 0x6, 0xa}, {0x1, 0x2, 0x2, 0x4}, {0x1, 0x1, 0xc, 0x3}, {0x4, 0x2, 0x4, 0x9}], 0x10, 0x6, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000080), &(0x7f0000000880)=r2}, 0x20)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
add_key$fscrypt_v1(&(0x7f00000005c0), &(0x7f0000000600)={'fscrypt:', @desc4}, &(0x7f0000000640)={0x0, "f4e1e38312386a6f5b4cd93cf956471fd962a511703e6a3a154699e95209e4b199258ed271b418a8b3a8b75254ee0800cd7ae660c75a40ea0c0357cbe32448c5", 0x1d}, 0x48, 0xfffffffffffffff8)

2.434702997s ago: executing program 3 (id=5095):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYRESDEC=r1, @ANYRESOCT=r2, @ANYRES16=r1], 0x18, 0x48000}, 0x11)
sendmsg$unix(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r3], 0x18}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
r4 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000140)={{0x12, 0x1, 0x150, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6, 0x24, 0x1a, 0x0, 0x8}}, {{0x9, 0x5, 0x81, 0x3, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x0, 0x0, 0x20}}}}}}}]}}, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
connect$inet(r5, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r5, &(0x7f0000004e40)=[{{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000007c0)}, {&(0x7f00000003c0)="44e9812f81d9a0735dc9781dfd211e2e80ef6d8bd3bb693fb59598a10e2024a96bfbc683c9ab996056ed5cc7b74241ba875a463e2093c6e83689f6a1ee1661faab1e3254c4d445472d7e968752a7e07e7d6e241422338a0fc3c06ae2af32c26ccdbeb2c817f169f8e41c4aa078c18bf777cdcbc2f359f311a988634e4ec6c2", 0x7f}, {&(0x7f0000000880)="65c7d3091f2ac3e399c2c4dd002816ea69e6410ac26e3889a25fd95dc37b7c11296f863ea883812d6a1bdb578d045257b32f992f9712a8b9209486076e70ce8dc55aae7d5a89ab2cae67596ac5e1f39a4eab240713fc773e281a81b697bbe016c348f90b1ec8df56211d847b418d1ecac8a0a850ea63e578f009f70ffcccd797fff05d551b47f52bd36fb1b75c1fe8048ac3c9a0d90d3790af41a8c0b30a0902adb17831b8fff67eb7f261cab479dd791137e6b77418c6ed54707791a905a956007d99714bb11c5f4e3ddb8a1615541930f22c07ea6f0f17a765dda20889645d3efd86b015c2812130c0ce0d47", 0xed}, {&(0x7f00000010c0)="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", 0x9e5}], 0x4}}], 0x1, 0x240480c1)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, &(0x7f00000000c0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)

2.412237219s ago: executing program 0 (id=5086):
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x7, 0x4a9, &(0x7f0000000b40)="$eJzs3E9sFFUYAPBvtru0gEhFREHUIhobjS0UFA5eMJp40MSIBz02bSFIoYbWRAjRkhg8GhLvxqNXD17Vm/Fk4hUPHkwMCTFcAE9jZnem3e6flrbbLri/X7L0vZk3+963b97s23m7BNCzhrJ/koiHIuJ6ROysZZcWGKr9uXPr8sTdW5cnYj5NT/6TVMvdzvK54rjteWa4FFH6Iml4wprZi5fOjk9PT13I86Nz5z4enb146eUz58ZPT52eOj92/PjRI4ePvTr2yuqDalFfFtftfZ/N7N/71ofX3pkoF9sH8r/1cXTKUAy1akrV852urMt21KWTchcbwqpk53/WXZXq+N8ZfaHzoFekaZr2t989nza60rQFeGAl0e0WAN1RvNFnn3+LxyZNPe4LN0/UPgBlcd/JH7U95SjlZSoNn287aSgiPpj/95vsEcvdh/hzgxoAAPScn04UM8HG+V8p9tSVezhfQxmMiEciYldEPBoRuyPisYhq2ccj4onGCpKIdJn6dzfkm+c/pRvriW8l2fzvtXxta+n8r5j9xWBfntsRUUyYpw7lr8lwVPpPnZmeOrxMHT+/8ftX7fbVz/+yR1Z/MRfM23Gj3HCDbnJ8bnzNATe4eSViX7kx/qScdVyxEpBExN6I2LeK5x2sS5958bv9C5nK0nIrx1+VtlxH68BSRfptxAu1/p+PJf2/WGOy/Prk6EBMTx0azc6CQy3r+PW3q++2q3/F+H/4q/GQN4/9eHK9YS/I+n9b3fkfxfrtYvyDSUSysF47u/o6rv7xZfV5hw4271vr+b8leb+a3pJv+3R8bu7C4YgtydvN28cWjy3yRfks/uGDrcf/rvyY7JV4MiKyk/ipiHg6Ip7J234gIp6NiBahLfjl9ec+arfvHs//DZPFP9ny+rek/xfX69eQ6Dt74PrdNhePe+v/o9XUcL6l9fUvWXKJuNcGduAlBAAAgPteKarf/S+NLKRLpZGR2j2g3bGtND0zO/fSqZlPzk/WfiMwGJVScaerdj+4khT3Pwfr8mMN+SP5feOv+7ZW8yMTM9OT3Q4eetz26phPmsZ/5u++brcO2HB+8gO9a6Xxv+faJjUE2HTe/6F31Y3/+TZF5n1TBv6fvP9D72o1/j9fwzHAgyU1lqGnGf/Qu8rx3kK61NWWAJvN+z/0pPX8rn/lRNrfetdANBeOgY1pxtYWdXUlkc2sulL71rUcVfxvCm3LRGl1T9gfzbv6otMhVyJixcKn93T85E/z78p3uge/35Rx2irRlcsRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAx/0XAAD//8p53a4=")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noblock_validity}, {}, {@sysvgroups}, {@block_validity}, {@dax}, {@orlov}, {@nogrpid}, {@quota}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x19, 0x0, 0x0)
sendmmsg$inet6(r3, &(0x7f0000004840), 0x0, 0x0)
recvmmsg(r3, &(0x7f0000002480)=[{{0x0, 0x300, 0x0}}], 0x1, 0x40002003, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000dc0)=@newlink={0x68, 0x10, 0x421, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad, 0x460}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x8, 0x1, 0x1}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x8011}]}}}, @IFLA_CARRIER={0x5}, @IFLA_MASTER={0x8, 0xa, r6}, @IFLA_GROUP={0x8}, @IFLA_ADDRESS={0xa, 0x1, @remote}]}, 0x68}}, 0x40)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f00000500000000002000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)

2.244240904s ago: executing program 2 (id=5087):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="fb", 0x1}], 0x1}, 0x0)
recvmsg(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x0) (fail_nth: 4)

1.885945737s ago: executing program 2 (id=5088):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000000e40)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r0, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6(0x10, 0x2, 0x4)
epoll_create1(0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
ppoll(&(0x7f0000000500)=[{r2}], 0x1, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/timers\x00', 0x0, 0x0)
read$char_usb(r6, &(0x7f0000000040)=""/4, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)={0x1b, 0x0, 0x0, 0x0, 0x0, r6, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1.704257543s ago: executing program 0 (id=5091):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@sysvgroups}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@nobarrier}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5e9, &(0x7f0000001200)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
rt_sigprocmask(0x0, &(0x7f0000000180)={[0xfffffffffffffffd]}, 0x0, 0x8)
r1 = getpid()
r2 = gettid()
rt_tgsigqueueinfo(r1, r2, 0xb, &(0x7f0000000080)={0x0, 0x0, 0x2})
r3 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)
read(r3, &(0x7f0000000740)=""/377, 0x179)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)

1.644167959s ago: executing program 1 (id=5092):
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb26fc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$TIOCL_SETSEL(r5, 0x541c, 0x0)

1.580649475s ago: executing program 1 (id=5093):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1c8, 0x12)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
renameat2(r5, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x2)

1.405157101s ago: executing program 1 (id=5094):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_usb_connect(0x5, 0x24, &(0x7f0000004200)={{0x12, 0x1, 0x0, 0xe2, 0x79, 0x3b, 0x10, 0x5d1, 0x2001, 0x900, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x4d, 0x2f, 0x9c}}]}}]}}, 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, &(0x7f0000000600)={0x2c, &(0x7f00000002c0)=ANY=[@ANYBLOB="00162a00000093ee15452dc15e04977dc62e6567af7ea73077d878ca51d916d4b16069f9ba31d3bc2815048b747d50e1ac0ff573df363929ee757fbe7611bcc90f20f887721b98ac97108de87b6b3e3f1365"], 0x0, 0x0, 0x0, 0x0})
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES64], 0xd, 0x2a0, &(0x7f0000000840)="$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")
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000000)='.\x00', 0x10000c40)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
r6 = openat(r5, &(0x7f0000000340)='./file0\x00', 0x4000, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r6, 0x40047211, &(0x7f0000000000))
syz_usb_control_io$cdc_ncm(r2, 0x0, &(0x7f00000004c0)={0x44, &(0x7f0000000180)=ANY=[@ANYBLOB="000002000abed65d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
mount$incfs(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='./bus\x00', &(0x7f00000000c0), 0x0, 0x0)
setresgid(0xee00, 0xee01, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
ftruncate(r3, 0x8000000000000001)
fchdir(r7)

970.540751ms ago: executing program 2 (id=5096):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x2, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read(r2, &(0x7f0000000040)=""/148, 0xffffff96)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

868.71317ms ago: executing program 0 (id=5097):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYRESDEC=r1, @ANYRESOCT=r2, @ANYRES16=r1], 0x18, 0x48000}, 0x11)
sendmsg$unix(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r3], 0x18}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
r4 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000140)={{0x12, 0x1, 0x150, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6, 0x24, 0x1a, 0x0, 0x8}}, {{0x9, 0x5, 0x81, 0x3, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x0, 0x0, 0x20}}}}}}}]}}, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
connect$inet(r5, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r5, &(0x7f0000004e40)=[{{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f00000007c0)}, {&(0x7f00000003c0)="44e9812f81d9a0735dc9781dfd211e2e80ef6d8bd3bb693fb59598a10e2024a96bfbc683c9ab996056ed5cc7b74241ba875a463e2093c6e83689f6a1ee1661faab1e3254c4d445472d7e968752a7e07e7d6e241422338a0fc3c06ae2af32c26ccdbeb2c817f169f8e41c4aa078c18bf777cdcbc2f359f311a988634e4ec6c2", 0x7f}, {&(0x7f0000000880)="65c7d3091f2ac3e399c2c4dd002816ea69e6410ac26e3889a25fd95dc37b7c11296f863ea883812d6a1bdb578d045257b32f992f9712a8b9209486076e70ce8dc55aae7d5a89ab2cae67596ac5e1f39a4eab240713fc773e281a81b697bbe016c348f90b1ec8df56211d847b418d1ecac8a0a850ea63e578f009f70ffcccd797fff05d551b47f52bd36fb1b75c1fe8048ac3c9a0d90d3790af41a8c0b30a0902adb17831b8fff67eb7f261cab479dd791137e6b77418c6ed54707791a905a956007d99714bb11c5f4e3ddb8a1615541930f22c07ea6f0f17a765dda20889645d3efd86b015c2812130c0ce0d47", 0xed}, {&(0x7f00000010c0)="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", 0x9e5}], 0x4}}], 0x1, 0x240480c1)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, &(0x7f00000000c0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)

867.91627ms ago: executing program 4 (id=5098):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000005c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noblock_validity}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10}}, {@debug}]}, 0xfe, 0x47e, &(0x7f0000001380)="$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")
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000340)=ANY=[@ANYBLOB])
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
io_uring_setup(0x5281, &(0x7f0000000040)={0x0, 0x32c0, 0x0, 0x2, 0xa8})
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r5, &(0x7f0000000140)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r6, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000016c0)=@newlink={0x68, 0x10, 0x439, 0x70bd25, 0xffffffe2, {0x0, 0x0, 0xe403, r7, 0x3, 0x715cb}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @sit={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, @IFLA_IPTUN_6RD_RELAY_PREFIX={0x8, 0xc, 0x8}, @IFLA_IPTUN_PMTUDISC={0x5}, @IFLA_IPTUN_6RD_PREFIXLEN={0x6, 0xd, 0xe64b}]}}}, @IFLA_XDP={0x4}, @IFLA_IFNAME={0x14, 0x3, 'wg0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x4040}, 0x4000040)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01000000000000000000010000000000000001410000001c001700000000001000006574683a73797a6b616c6c6572300000"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r10}, 0x0, &(0x7f0000000040)}, 0x20)
ptrace$peekuser(0x3, 0x0, 0x4c3fa7ec)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

488.030275ms ago: executing program 4 (id=5099):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000007000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r2}, 0x10)
socketpair(0x2d, 0x1, 0x0, &(0x7f0000000000))

487.551885ms ago: executing program 4 (id=5100):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000c00)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="fb", 0x1}], 0x1}, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000200)=<r3=>0x0)
sched_setscheduler(r3, 0x0, &(0x7f0000000280)=0x6)
recvmsg(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x0)

458.730488ms ago: executing program 4 (id=5101):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005", @ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[], 0x14c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82000000000", @ANYRES32=r1, @ANYBLOB="000080000000000018003480050035"], 0x38}, 0x1, 0x300}, 0x0)

446.184449ms ago: executing program 4 (id=5102):
syz_mount_image$fuse(0x0, &(0x7f0000006340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x72}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='9p_protocol_dump\x00', r0}, 0x10)
pipe2$9p(&(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}})
write$FUSE_NOTIFY_RETRIEVE(r3, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000640)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

411.610832ms ago: executing program 4 (id=5103):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0500000002000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000200)=@raw=[@generic={0x7, 0xa, 0xf, 0x6, 0x6}, @generic={0xff, 0x4, 0x5, 0x4, 0x2}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x391}], &(0x7f0000000300)='GPL\x00', 0x80000001, 0x3f, &(0x7f0000000340)=""/63, 0x40f00, 0x54, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x2, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x4, 0x1, 0x2c5, 0x4}, 0x10, 0xa372, 0xffffffffffffffff, 0x5, &(0x7f0000000400)=[r0], &(0x7f0000000440)=[{0x1, 0x2, 0xa, 0x6}, {0x4, 0x5, 0x6, 0xa}, {0x1, 0x2, 0x2, 0x4}, {0x1, 0x1, 0xc, 0x3}, {0x4, 0x2, 0x4, 0x9}], 0x10, 0x6, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r0}, &(0x7f0000000080), &(0x7f0000000880)=r2}, 0x20)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
add_key$fscrypt_v1(&(0x7f00000005c0), &(0x7f0000000600)={'fscrypt:', @desc4}, &(0x7f0000000640)={0x0, "f4e1e38312386a6f5b4cd93cf956471fd962a511703e6a3a154699e95209e4b199258ed271b418a8b3a8b75254ee0800cd7ae660c75a40ea0c0357cbe32448c5", 0x1d}, 0x48, 0xfffffffffffffff8)

157.025525ms ago: executing program 2 (id=5104):
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb26fc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$TIOCL_SETSEL(r5, 0x541c, 0x0)

0s ago: executing program 2 (id=5105):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@sysvgroups}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@nobarrier}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5e9, &(0x7f0000001200)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
rt_sigprocmask(0x0, &(0x7f0000000180)={[0xfffffffffffffffd]}, 0x0, 0x8)
r1 = getpid()
r2 = gettid()
rt_tgsigqueueinfo(r1, r2, 0xb, &(0x7f0000000080)={0x0, 0x0, 0x2})
r3 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)
read(r3, &(0x7f0000000740)=""/377, 0x179)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)

kernel console output (not intermixed with test programs):

o 256
[  961.268619][T17606] loop1: detected capacity change from 0 to 256
[  961.298067][T17605] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  961.320981][T17585] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  961.412248][T17585] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  961.454723][T17606] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  961.525436][T17585] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  961.559642][T17585] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  961.566567][T17585] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  961.608525][T17585] attempt to access beyond end of device
[  961.608525][T17585] loop4: rw=2049, want=53256, limit=40427
[  961.620351][T17585] attempt to access beyond end of device
[  961.620351][T17585] loop4: rw=2049, want=53264, limit=40427
[  961.638032][T16673] attempt to access beyond end of device
[  961.638032][T16673] loop4: rw=2049, want=45104, limit=40427
[  962.287949][T17619] overlayfs: failed to resolve './file1': -2
[  962.584803][T17624] loop2: detected capacity change from 0 to 1024
[  962.619601][T17630] loop4: detected capacity change from 0 to 1024
[  962.651914][T17624] EXT4-fs (loop2): Test dummy encryption mode enabled
[  962.659341][T17624] EXT4-fs (loop2): Test dummy encryption mode enabled
[  962.666066][T17624] EXT4-fs (loop2): Ignoring removed orlov option
[  962.675952][T17624] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  962.937572][T17630] EXT4-fs (loop4): Test dummy encryption mode enabled
[  962.944438][T17630] EXT4-fs (loop4): Ignoring removed orlov option
[  962.967685][T17630] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,sysvgroups,commit=0x0000000000000005,orlov,nobarrier,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  962.988403][T17635] bridge0: port 3(dummy0) entered blocking state
[  963.003578][ T2533] usb 1-1: new high-speed USB device number 59 using dummy_hcd
[  963.043578][   T30] audit: type=1400 audit(2000000908.100:11739): avc:  denied  { map } for  pid=17625 comm="syz.3.4733" path="/202/bus" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  963.523719][T17638] overlayfs: failed to resolve './file0': -2
[  963.544026][T17635] bridge0: port 3(dummy0) entered disabled state
[  963.552866][T17635] device dummy0 entered promiscuous mode
[  963.560649][T17635] bridge0: port 3(dummy0) entered blocking state
[  963.566840][T17635] bridge0: port 3(dummy0) entered forwarding state
[  963.801852][ T2533] usb 1-1: Using ep0 maxpacket: 16
[  963.914294][T17654] fuse: Unknown parameter 'user_i00000000000000000000'
[  964.429431][ T2533] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  964.450211][ T2533] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  964.497980][ T2533] usb 1-1: Product: syz
[  964.525216][ T2533] usb 1-1: Manufacturer: syz
[  964.576611][ T2533] usb 1-1: SerialNumber: syz
[  964.582234][ T2533] usb 1-1: config 0 descriptor??
[  964.618398][ T2533] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  964.626428][ T2533] usb 1-1: Detected FT232H
[  964.643852][T17673] loop2: detected capacity change from 0 to 256
[  964.869518][T17680] loop4: detected capacity change from 0 to 1024
[  964.876419][ T2533] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  964.886885][T17678] loop1: detected capacity change from 0 to 1024
[  964.900385][T17673] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  964.915361][T17680] EXT4-fs (loop4): Test dummy encryption mode enabled
[  964.922264][T17680] EXT4-fs (loop4): Test dummy encryption mode enabled
[  964.951594][T17680] EXT4-fs (loop4): Ignoring removed orlov option
[  964.960850][T17678] EXT4-fs (loop1): Test dummy encryption mode enabled
[  964.969206][T17680] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  964.994885][T17678] EXT4-fs (loop1): Test dummy encryption mode enabled
[  965.001537][T17678] EXT4-fs (loop1): Ignoring removed orlov option
[  965.040180][T17678] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  965.085059][T17687] overlayfs: missing 'lowerdir'
[  965.868530][T17691] overlayfs: failed to resolve './file0': -2
[  966.050919][T17692] overlayfs: failed to resolve './file0': -2
[  966.065742][T17693] overlayfs: failed to resolve './file0': -2
[  966.367983][ T2533] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[  966.384487][ T2533] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  966.406573][T17696] fuse: Unknown parameter 'user_i00000000000000000000'
[  966.413676][ T2533] usb 1-1: USB disconnect, device number 59
[  966.461196][T17708] syz.1.4754[17708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  966.461803][T17708] syz.1.4754[17708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  966.474389][ T2533] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  966.495889][ T2533] ftdi_sio 1-1:0.0: device disconnected
[  966.674438][T17723] loop2: detected capacity change from 0 to 256
[  966.852196][T17723] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  966.852363][ T2533] usb 1-1: new full-speed USB device number 60 using dummy_hcd
[  966.976169][T17726] overlayfs: missing 'lowerdir'
[  967.010884][ T8561] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[  967.215886][ T2533] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  967.224511][ T2533] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 4
[  967.235201][ T2533] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  967.243786][ T8561] usb 5-1: Using ep0 maxpacket: 32
[  967.280920][T17728] loop1: detected capacity change from 0 to 1024
[  967.329734][T17728] EXT4-fs (loop1): Test dummy encryption mode enabled
[  967.338244][T17728] EXT4-fs (loop1): Test dummy encryption mode enabled
[  967.344920][T17728] EXT4-fs (loop1): Ignoring removed orlov option
[  967.364109][T17728] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  967.422004][ T2533] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  967.459988][ T2533] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  967.491995][ T2533] usb 1-1: Product: syz
[  967.496182][ T2533] usb 1-1: Manufacturer: syz
[  967.500585][ T2533] usb 1-1: SerialNumber: syz
[  967.533656][T17739] FAULT_INJECTION: forcing a failure.
[  967.533656][T17739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  967.917615][T17742] overlayfs: failed to resolve './file0': -2
[  968.136666][T17743] overlayfs: failed to resolve './file0': -2
[  968.805171][T17739] CPU: 1 PID: 17739 Comm: syz.2.4765 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[  968.816377][T17739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  968.826411][T17739] Call Trace:
[  968.829532][T17739]  <TASK>
[  968.832315][T17739]  dump_stack_lvl+0x151/0x1c0
[  968.836823][T17739]  ? io_uring_drop_tctx_refs+0x190/0x190
[  968.842298][T17739]  ? __kasan_check_write+0x14/0x20
[  968.847321][T17739]  ? __alloc_skb+0x355/0x550
[  968.851750][T17739]  dump_stack+0x15/0x20
[  968.855743][T17739]  should_fail+0x3c6/0x510
[  968.859994][T17739]  should_fail_usercopy+0x1a/0x20
[  968.864853][T17739]  _copy_from_iter+0x22f/0xdc0
[  968.869456][T17739]  ? copy_mc_pipe_to_iter+0x760/0x760
[  968.874663][T17739]  ? __check_object_size+0x2ec/0x3d0
[  968.879782][T17739]  skb_copy_datagram_from_iter+0x100/0x6d0
[  968.885426][T17739]  tun_get_user+0x112d/0x3aa0
[  968.890118][T17739]  ? putname+0xfa/0x150
[  968.894102][T17739]  ? __x64_sys_openat+0x1c0/0x290
[  968.898963][T17739]  ? x64_sys_call+0x6bf/0x9a0
[  968.903564][T17739]  ? _kstrtoull+0x3a0/0x4a0
[  968.907904][T17739]  ? tun_do_read+0x2010/0x2010
[  968.912504][T17739]  ? kstrtouint_from_user+0x20a/0x2a0
[  968.917713][T17739]  ? kstrtol_from_user+0x310/0x310
[  968.922666][T17739]  ? avc_policy_seqno+0x1b/0x70
[  968.927345][T17739]  ? selinux_file_permission+0x2c4/0x570
[  968.932815][T17739]  tun_chr_write_iter+0x1e1/0x2e0
[  968.937679][T17739]  vfs_write+0xd5d/0x1110
[  968.941844][T17739]  ? file_end_write+0x1c0/0x1c0
[  968.946529][T17739]  ? __fdget_pos+0x209/0x3a0
[  968.950952][T17739]  ? ksys_write+0x77/0x2c0
[  968.955206][T17739]  ksys_write+0x199/0x2c0
[  968.959372][T17739]  ? __ia32_sys_read+0x90/0x90
[  968.963975][T17739]  ? debug_smp_processor_id+0x17/0x20
[  968.969180][T17739]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  968.975084][T17739]  __x64_sys_write+0x7b/0x90
[  968.979511][T17739]  x64_sys_call+0x2f/0x9a0
[  968.983762][T17739]  do_syscall_64+0x3b/0xb0
[  968.988013][T17739]  ? clear_bhb_loop+0x35/0x90
[  968.992530][T17739]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  968.998258][T17739] RIP: 0033:0x7f48921fdff9
[  969.002510][T17739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  969.022039][T17739] RSP: 002b:00007f4890e77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  969.030282][T17739] RAX: ffffffffffffffda RBX: 00007f48923b5f80 RCX: 00007f48921fdff9
[  969.038094][T17739] RDX: 000000000000ffdd RSI: 0000000020000700 RDI: 0000000000000003
[  969.045906][T17739] RBP: 00007f4890e77090 R08: 0000000000000000 R09: 0000000000000000
[  969.053718][T17739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  969.061528][T17739] R13: 0000000000000000 R14: 00007f48923b5f80 R15: 00007ffff0caf148
[  969.069344][T17739]  </TASK>
[  969.072277][ T8561] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  969.073880][T17747] fuse: Unknown parameter 'user_id00000000000000000000'
[  969.092367][ T8561] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  969.106373][ T8561] usb 5-1: Product: syz
[  969.110501][ T8561] usb 5-1: Manufacturer: syz
[  969.114902][ T8561] usb 5-1: SerialNumber: syz
[  969.120297][ T8561] usb 5-1: config 0 descriptor??
[  969.128731][T17698] device pim6reg1 entered promiscuous mode
[  969.167870][T17751] loop1: detected capacity change from 0 to 2048
[  969.201664][ T2533] usb 1-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  969.209911][ T2533] usb 1-1: found format II with max.bitrate = 0, frame size=0
[  969.219384][T17751] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  969.227145][ T2533] usb 1-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  969.235828][ T2533] usb 1-1: found format II with max.bitrate = 0, frame size=0
[  969.258597][T17751] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,journal_ioprio=0x0000000000000005,errors=remount-ro,norecovery,max_batch_time=0x0000000000000005,mblk_io_submit,nobarrier,barrier=0x0000000000000003,grpjquota=,bsddf,. Quota mode: none.
[  969.285595][   T30] audit: type=1400 audit(2000000914.827:11740): avc:  denied  { mount } for  pid=17750 comm="syz.1.4767" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  969.309623][T17751] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.4767: bg 0: block 234: padding at end of block bitmap is not set
[  969.343727][ T2533] usb 1-1: USB disconnect, device number 60
[  969.353596][T17751] EXT4-fs (loop1): Remounting filesystem read-only
[  969.363697][T17761] syz.4.4772[17761] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  969.363801][T17761] syz.4.4772[17761] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  969.409287][T17763] netlink: 'syz.1.4767': attribute type 1 has an invalid length.
[  969.435854][T17763] __nla_validate_parse: 5 callbacks suppressed
[  969.450097][T17763] netlink: 1264 bytes leftover after parsing attributes in process `syz.1.4767'.
[  969.460558][   T30] audit: type=1400 audit(2000000915.009:11741): avc:  denied  { map } for  pid=17750 comm="syz.1.4767" path="/35/file1/io.stat" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  969.543962][ T3123] usb 3-1: new full-speed USB device number 56 using dummy_hcd
[  969.601908][T17769] overlayfs: missing 'lowerdir'
[  969.851270][T17773] overlayfs: failed to resolve './file0': -2
[  969.919215][ T3123] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  969.932623][ T3123] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  969.974207][T17202] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /35/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  969.974219][ T3123] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  969.974252][ T3123] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  969.995279][   T30] audit: type=1400 audit(2000000915.589:11742): avc:  denied  { unmount } for  pid=17202 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  970.004186][ T3123] usb 3-1: New USB device found, idVendor=17ef, idProduct=6085, bcdDevice= 0.00
[  970.046593][T17202] EXT4-fs error (device loop1): ext4_lookup:1856: inode #14: comm syz-executor: iget: bad extra_isize 1056 (inode size 256)
[  970.059565][ T3123] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  970.067493][T17202] EXT4-fs error (device loop1): ext4_lookup:1856: inode #14: comm syz-executor: iget: bad extra_isize 1056 (inode size 256)
[  970.081537][ T3123] usb 3-1: config 0 descriptor??
[  970.226131][T17778] bridge0: port 1(bridge_slave_0) entered blocking state
[  970.233045][T17778] bridge0: port 1(bridge_slave_0) entered disabled state
[  970.240733][T17778] device bridge_slave_0 entered promiscuous mode
[  970.249061][T17778] bridge0: port 2(bridge_slave_1) entered blocking state
[  970.255958][T17778] bridge0: port 2(bridge_slave_1) entered disabled state
[  970.263193][T17778] device bridge_slave_1 entered promiscuous mode
[  970.319281][T17783] fuse: Unknown parameter 'user_id00000000000000000000'
[  970.334721][T17778] bridge0: port 2(bridge_slave_1) entered blocking state
[  970.341608][T17778] bridge0: port 2(bridge_slave_1) entered forwarding state
[  970.348705][T17778] bridge0: port 1(bridge_slave_0) entered blocking state
[  970.355538][T17778] bridge0: port 1(bridge_slave_0) entered forwarding state
[  970.375403][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  970.383014][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  970.395496][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  970.408443][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  970.416475][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[  970.423319][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[  970.434312][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  970.442345][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[  970.449176][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[  970.478239][T17778] device veth0_vlan entered promiscuous mode
[  970.492391][T17778] device veth1_macvtap entered promiscuous mode
[  970.513613][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  970.522331][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  970.525647][ T3123] hid-rmi 0003:17EF:6085.004B: unknown main item tag 0x0
[  970.533753][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  970.539885][ T3123] hid-rmi 0003:17EF:6085.004B: unknown main item tag 0x0
[  970.546971][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  970.553875][ T3123] hid-rmi 0003:17EF:6085.004B: item fetching failed at offset 2/5
[  970.564011][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  970.571579][ T3123] hid-rmi 0003:17EF:6085.004B: parse failed
[  970.574903][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  970.580088][ T3123] hid-rmi: probe of 0003:17EF:6085.004B failed with error -22
[  970.587581][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  970.602874][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  970.610980][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  970.643630][T17793] loop1: detected capacity change from 0 to 1024
[  970.665760][T17793] EXT4-fs (loop1): Test dummy encryption mode enabled
[  970.672501][T17793] EXT4-fs (loop1): Test dummy encryption mode enabled
[  970.679199][T17793] EXT4-fs (loop1): Ignoring removed orlov option
[  970.687281][T17793] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  970.728643][ T9773] usb 3-1: USB disconnect, device number 56
[  970.786076][  T627] device bridge_slave_1 left promiscuous mode
[  970.792067][  T627] bridge0: port 2(bridge_slave_1) entered disabled state
[  970.799531][  T627] device bridge_slave_0 left promiscuous mode
[  970.805542][  T627] bridge0: port 1(bridge_slave_0) entered disabled state
[  970.813958][ T9778] usb 1-1: new high-speed USB device number 61 using dummy_hcd
[  971.047938][T17797] overlayfs: failed to resolve './file0': -2
[  971.065556][   T30] audit: type=1400 audit(2000000916.737:11743): avc:  denied  { execute } for  pid=17790 comm="syz.3.4783" name="file1" dev="tmpfs" ino=1336 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  971.088407][  T627] device veth1_macvtap left promiscuous mode
[  971.094676][  T627] device veth0_vlan left promiscuous mode
[  971.100292][   T30] audit: type=1400 audit(2000000916.737:11744): avc:  denied  { execute_no_trans } for  pid=17790 comm="syz.3.4783" path="/215/file1" dev="tmpfs" ino=1336 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  971.289054][ T9778] usb 1-1: Using ep0 maxpacket: 32
[  971.454451][T17800] syz.2.4785[17800] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  971.454513][T17800] syz.2.4785[17800] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  971.495146][T17804] loop1: detected capacity change from 0 to 1024
[  971.499671][T17806] syz.2.4787[17806] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  971.512784][T17806] syz.2.4787[17806] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  971.541132][T17810] fuse: Unknown parameter 'user_id00000000000000000000'
[  971.572395][T17804] EXT4-fs (loop1): Test dummy encryption mode enabled
[  971.579462][T17804] EXT4-fs (loop1): Test dummy encryption mode enabled
[  971.586273][T17804] EXT4-fs (loop1): Ignoring removed orlov option
[  971.606476][T17804] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  971.628675][ T9778] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  971.647268][ T9778] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  971.659024][ T9778] usb 1-1: Product: syz
[  971.663275][ T9778] usb 1-1: Manufacturer: syz
[  971.667795][ T9778] usb 1-1: SerialNumber: syz
[  971.676864][ T9778] usb 1-1: config 0 descriptor??
[  972.036707][T17815] overlayfs: failed to resolve './file0': -2
[  972.438872][T17826] loop2: detected capacity change from 0 to 512
[  972.481134][T17826] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  972.491320][T17826] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  972.509917][ T8561] rtl8150 5-1:0.0: couldn't reset the device
[  972.515880][ T8561] rtl8150: probe of 5-1:0.0 failed with error -5
[  972.532975][ T8561] usb 5-1: USB disconnect, device number 67
[  972.561833][T17820] loop1: detected capacity change from 0 to 40427
[  972.573548][T17820] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  972.582048][T17820] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  972.646214][T17832] overlayfs: failed to resolve './file0': -2
[  972.851042][T17826] A link change request failed with some changes committed already. Interface sit1 may have been left with an inconsistent configuration, please check.
[  972.868007][T17826] tipc: Started in network mode
[  972.872756][T17826] tipc: Node identity d2e0fd5e4294, cluster identity 4711
[  972.881045][T17820] F2FS-fs (loop1): Found nat_bits in checkpoint
[  972.893390][T17826] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  972.912285][T17825] tipc: Disabling bearer <eth:syzkaller0>
[  972.931264][T17820] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  972.967192][T17836] syz.4.4797[17836] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.967268][T17836] syz.4.4797[17836] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.971933][T17820] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  973.077566][T17820] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  973.101235][   T30] audit: type=1400 audit(2000000918.915:11745): avc:  denied  { execute } for  pid=17819 comm="syz.1.4791" path="/2/file0/bus" dev="loop1" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  973.125597][T17820] attempt to access beyond end of device
[  973.125597][T17820] loop1: rw=2049, want=45112, limit=40427
[  973.137520][T17820] attempt to access beyond end of device
[  973.137520][T17820] loop1: rw=2049, want=45176, limit=40427
[  973.278114][ T9778] (unnamed net_device) (uninitialized): Assigned a random MAC address: 52:a0:8c:ac:54:30
[  973.300735][ T9778] rtl8150 1-1:0.0: eth1: rtl8150 is detected
[  973.315580][ T9778] usb 1-1: USB disconnect, device number 61
[  973.441988][T17859] loop1: detected capacity change from 0 to 1024
[  973.515289][T17859] EXT4-fs (loop1): Test dummy encryption mode enabled
[  973.531057][T17859] EXT4-fs (loop1): Test dummy encryption mode enabled
[  973.614416][T17859] EXT4-fs (loop1): Ignoring removed orlov option
[  973.682275][T17859] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  973.957859][T17886] overlayfs: failed to resolve './file0': -2
[  974.150510][ T2533] usb 1-1: new high-speed USB device number 62 using dummy_hcd
[  974.216144][   T30] audit: type=1326 audit(2000000920.084:11746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.268900][   T30] audit: type=1326 audit(2000000920.084:11747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.341020][   T30] audit: type=1326 audit(2000000920.084:11748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.378968][T17902] loop2: detected capacity change from 0 to 256
[  974.420672][T17902] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x726052d3, utbl_chksum : 0xe619d30d)
[  974.492210][   T30] audit: type=1326 audit(2000000920.084:11749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.559531][   T30] audit: type=1326 audit(2000000920.084:11750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.586423][   T30] audit: type=1326 audit(2000000920.084:11751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.610858][   T30] audit: type=1326 audit(2000000920.084:11752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.635112][   T30] audit: type=1326 audit(2000000920.084:11753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.660615][   T30] audit: type=1326 audit(2000000920.084:11754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.684647][   T30] audit: type=1326 audit(2000000920.084:11755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17892 comm="syz.3.4808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[  974.700721][ T2533] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xB has an invalid bInterval 255, changing to 11
[  974.719402][T17906] overlayfs: missing 'lowerdir'
[  974.724292][ T2533] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 59391, setting to 1024
[  974.755954][T17841] loop4: detected capacity change from 0 to 131072
[  974.784137][ T3123] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[  974.834256][T17841] F2FS-fs (loop4): Found nat_bits in checkpoint
[  974.856338][T17841] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0
[  974.863069][T17841] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  974.877505][ T2533] usb 1-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  974.893096][ T2533] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  974.901456][ T2533] usb 1-1: Product: syz
[  974.905559][ T2533] usb 1-1: Manufacturer: syz
[  974.909997][ T2533] usb 1-1: SerialNumber: syz
[  974.916782][ T2533] usb 1-1: config 0 descriptor??
[  974.933623][T17881] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  975.019568][T17912] FAULT_INJECTION: forcing a failure.
[  975.019568][T17912] name failslab, interval 1, probability 0, space 0, times 0
[  975.027100][ T3123] usb 2-1: Using ep0 maxpacket: 16
[  975.038832][T17912] CPU: 0 PID: 17912 Comm: syz.2.4813 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[  975.050035][T17912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  975.059924][T17912] Call Trace:
[  975.063044][T17912]  <TASK>
[  975.065822][T17912]  dump_stack_lvl+0x151/0x1c0
[  975.070430][T17912]  ? io_uring_drop_tctx_refs+0x190/0x190
[  975.075898][T17912]  dump_stack+0x15/0x20
[  975.079884][T17912]  should_fail+0x3c6/0x510
[  975.084136][T17912]  __should_failslab+0xa4/0xe0
[  975.088733][T17912]  ? __build_skb+0x2a/0x300
[  975.093080][T17912]  should_failslab+0x9/0x20
[  975.097418][T17912]  slab_pre_alloc_hook+0x37/0xd0
[  975.102191][T17912]  ? __build_skb+0x2a/0x300
[  975.106524][T17912]  kmem_cache_alloc+0x44/0x200
[  975.111129][T17912]  __build_skb+0x2a/0x300
[  975.115296][T17912]  build_skb+0x25/0x1f0
[  975.119306][T17912]  tun_get_user+0x1c7e/0x3aa0
[  975.123801][T17912]  ? tun_do_read+0x2010/0x2010
[  975.128401][T17912]  ? kstrtouint_from_user+0x20a/0x2a0
[  975.133606][T17912]  ? kstrtol_from_user+0x310/0x310
[  975.138553][T17912]  ? 0xffffffff81000000
[  975.142553][T17912]  ? avc_policy_seqno+0x1b/0x70
[  975.147231][T17912]  ? selinux_file_permission+0x2c4/0x570
[  975.152700][T17912]  tun_chr_write_iter+0x1e1/0x2e0
[  975.157566][T17912]  vfs_write+0xd5d/0x1110
[  975.161730][T17912]  ? file_end_write+0x1c0/0x1c0
[  975.166415][T17912]  ? __fdget_pos+0x209/0x3a0
[  975.170841][T17912]  ? ksys_write+0x77/0x2c0
[  975.175096][T17912]  ksys_write+0x199/0x2c0
[  975.179263][T17912]  ? __ia32_sys_read+0x90/0x90
[  975.183866][T17912]  ? debug_smp_processor_id+0x17/0x20
[  975.189067][T17912]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  975.194969][T17912]  __x64_sys_write+0x7b/0x90
[  975.199397][T17912]  x64_sys_call+0x2f/0x9a0
[  975.203648][T17912]  do_syscall_64+0x3b/0xb0
[  975.207899][T17912]  ? clear_bhb_loop+0x35/0x90
[  975.212431][T17912]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  975.218143][T17912] RIP: 0033:0x7f48921fcadf
[  975.222402][T17912] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  975.241842][T17912] RSP: 002b:00007f4890e77000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  975.250094][T17912] RAX: ffffffffffffffda RBX: 00007f48923b5f80 RCX: 00007f48921fcadf
[  975.257893][T17912] RDX: 000000000000003e RSI: 00000000200000c0 RDI: 00000000000000c8
[  975.265705][T17912] RBP: 00007f4890e77090 R08: 0000000000000000 R09: 0000000000000000
[  975.273603][T17912] R10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001
[  975.281414][T17912] R13: 0000000000000000 R14: 00007f48923b5f80 R15: 00007ffff0caf148
[  975.289238][T17912]  </TASK>
[  975.329055][T17881] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4806'.
[  975.387710][T17881] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4806'.
[  975.734778][ T2533] usb 1-1: USB disconnect, device number 62
[  976.061111][ T3123] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  976.082509][ T3123] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  976.095777][ T3123] usb 2-1: Product: syz
[  976.100472][ T3123] usb 2-1: Manufacturer: syz
[  976.105094][ T3123] usb 2-1: SerialNumber: syz
[  976.498715][ T3123] usb 2-1: config 0 descriptor??
[  976.563674][T17937] FAULT_INJECTION: forcing a failure.
[  976.563674][T17937] name failslab, interval 1, probability 0, space 0, times 0
[  976.600342][T17938] loop4: detected capacity change from 0 to 1024
[  976.602263][T17937] CPU: 0 PID: 17937 Comm: syz.3.4820 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[  976.612394][ T3123] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[  976.617682][T17937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  976.617698][T17937] Call Trace:
[  976.617704][T17937]  <TASK>
[  976.617711][T17937]  dump_stack_lvl+0x151/0x1c0
[  976.617737][T17937]  ? io_uring_drop_tctx_refs+0x190/0x190
[  976.650759][T17937]  ? __kasan_check_read+0x11/0x20
[  976.655612][T17937]  ? preempt_schedule_irq+0xe7/0x140
[  976.660730][T17937]  ? __cond_resched+0x20/0x20
[  976.665245][T17937]  dump_stack+0x15/0x20
[  976.669236][T17937]  should_fail+0x3c6/0x510
[  976.673493][T17937]  __should_failslab+0xa4/0xe0
[  976.678090][T17937]  should_failslab+0x9/0x20
[  976.682428][T17937]  slab_pre_alloc_hook+0x37/0xd0
[  976.687203][T17937]  __kmalloc+0x6d/0x270
[  976.691194][T17937]  ? sk_prot_alloc+0xf9/0x330
[  976.695708][T17937]  sk_prot_alloc+0xf9/0x330
[  976.700057][T17937]  ? _copy_from_user+0x96/0xd0
[  976.704654][T17937]  sk_alloc+0x38/0x430
[  976.708558][T17937]  bpf_prog_test_run_skb+0x362/0x1420
[  976.713766][T17937]  ? kvm_sched_clock_read+0x18/0x40
[  976.718815][T17937]  ? sched_clock+0x9/0x10
[  976.722961][T17937]  ? native_set_ldt+0x360/0x360
[  976.727650][T17937]  ? __bpf_prog_test_run_raw_tp+0x2e0/0x2e0
[  976.733377][T17937]  ? __kasan_check_write+0x14/0x20
[  976.738324][T17937]  ? fput_many+0x160/0x1b0
[  976.742576][T17937]  ? __bpf_prog_test_run_raw_tp+0x2e0/0x2e0
[  976.748309][T17937]  bpf_prog_test_run+0x3b0/0x630
[  976.753081][T17937]  ? bpf_prog_query+0x220/0x220
[  976.757765][T17937]  ? selinux_bpf+0xd2/0x100
[  976.762109][T17937]  ? security_bpf+0x82/0xb0
[  976.766469][T17937]  __sys_bpf+0x525/0x760
[  976.770533][T17937]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[  976.775734][T17937]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  976.781209][T17937]  __x64_sys_bpf+0x7c/0x90
[  976.785453][T17937]  x64_sys_call+0x87f/0x9a0
[  976.789795][T17937]  do_syscall_64+0x3b/0xb0
[  976.794045][T17937]  ? clear_bhb_loop+0x35/0x90
[  976.798560][T17937]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  976.804287][T17937] RIP: 0033:0x7f3225077ff9
[  976.808715][T17937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  976.828161][T17937] RSP: 002b:00007f3223cf1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  976.836403][T17937] RAX: ffffffffffffffda RBX: 00007f322522ff80 RCX: 00007f3225077ff9
[  976.844214][T17937] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a
[  976.852023][T17937] RBP: 00007f3223cf1090 R08: 0000000000000000 R09: 0000000000000000
[  976.859837][T17937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  976.867647][T17937] R13: 0000000000000000 R14: 00007f322522ff80 R15: 00007ffd6ebfc348
[  976.875551][T17937]  </TASK>
[  976.892599][ T3123] usb 2-1: Detected FT232H
[  976.921916][T17938] EXT4-fs (loop4): Test dummy encryption mode enabled
[  976.927940][ T3123] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  976.928823][T17938] EXT4-fs (loop4): Test dummy encryption mode enabled
[  976.942636][T17938] EXT4-fs (loop4): Ignoring removed orlov option
[  976.943055][T17943] loop2: detected capacity change from 0 to 1024
[  976.976041][T17938] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  977.117197][T17943] EXT4-fs (loop2): Test dummy encryption mode enabled
[  977.123929][T17943] EXT4-fs (loop2): Test dummy encryption mode enabled
[  977.141940][T17943] EXT4-fs (loop2): Ignoring removed orlov option
[  977.161039][T17943] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  977.258056][T17953] overlayfs: failed to resolve './file0': -2
[  977.422954][ T3123] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  977.543012][T17958] loop4: detected capacity change from 0 to 256
[  978.016354][T17960] overlayfs: failed to resolve './file0': -2
[  978.070500][ T3123] usb 2-1: USB disconnect, device number 60
[  978.082632][ T3123] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  978.102481][ T3123] ftdi_sio 2-1:0.0: device disconnected
[  978.379837][T17958] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  978.507866][T17972] loop2: detected capacity change from 0 to 256
[  978.556978][T17971] overlayfs: missing 'lowerdir'
[  978.581539][T17972] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  980.242505][ T9775] usb 1-1: new full-speed USB device number 63 using dummy_hcd
[  980.385809][ T8561] usb 5-1: new high-speed USB device number 68 using dummy_hcd
[  980.478929][  T310] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[  980.581537][ T9775] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  980.592390][ T9775] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  980.603266][ T9775] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  980.612813][ T9775] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  980.625683][ T8561] usb 5-1: Using ep0 maxpacket: 16
[  980.630705][ T9775] usb 1-1: New USB device found, idVendor=17ef, idProduct=6085, bcdDevice= 0.00
[  980.639516][ T9775] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  980.648019][ T9775] usb 1-1: config 0 descriptor??
[  980.727933][    C1] eth0: bad gso: type: 1, size: 1408
[  980.733298][  T310] usb 3-1: Using ep0 maxpacket: 16
[  980.769996][T18005] loop1: detected capacity change from 0 to 1024
[  980.853334][T18005] EXT4-fs (loop1): Test dummy encryption mode enabled
[  980.860168][T18005] EXT4-fs (loop1): Ignoring removed orlov option
[  980.869021][T18005] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,sysvgroups,commit=0x0000000000000005,orlov,nobarrier,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  980.926489][ T8561] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  980.935534][ T8561] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  980.945572][ T8561] usb 5-1: Product: syz
[  980.949608][ T8561] usb 5-1: Manufacturer: syz
[  980.954011][ T8561] usb 5-1: SerialNumber: syz
[  980.959440][ T8561] usb 5-1: config 0 descriptor??
[  981.159715][  T310] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  981.169173][  T310] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  981.170121][ T9775] hid-rmi 0003:17EF:6085.004C: unknown main item tag 0x0
[  981.179894][  T310] usb 3-1: Product: syz
[  981.186368][ T8561] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  981.188908][  T310] usb 3-1: Manufacturer: syz
[  981.195625][ T8561] usb 5-1: Detected FT232H
[  981.199910][  T310] usb 3-1: SerialNumber: syz
[  981.203998][ T9775] hid-rmi 0003:17EF:6085.004C: unknown main item tag 0x0
[  981.209720][  T310] usb 3-1: config 0 descriptor??
[  981.217240][ T9775] hid-rmi 0003:17EF:6085.004C: item fetching failed at offset 2/5
[  981.227769][ T9775] hid-rmi 0003:17EF:6085.004C: parse failed
[  981.233486][ T9775] hid-rmi: probe of 0003:17EF:6085.004C failed with error -22
[  981.240871][ T8561] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  981.253142][  T310] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  981.260744][  T310] usb 3-1: Detected FT232H
[  981.286347][ T9775] usb 1-1: USB disconnect, device number 63
[  981.448414][  T310] ftdi_sio ttyUSB1: Unable to read latency timer: -32
[  982.071353][ T8561] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71
[  982.080123][ T8561] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  982.089562][ T8561] usb 5-1: USB disconnect, device number 68
[  982.098366][ T8561] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  982.107815][ T8561] ftdi_sio 5-1:0.0: device disconnected
[  982.111149][  T310] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB1
[  982.426579][ T9773] usb 3-1: USB disconnect, device number 57
[  982.437349][ T9773] ftdi_sio ttyUSB1: FTDI USB Serial Device converter now disconnected from ttyUSB1
[  982.447053][ T9773] ftdi_sio 3-1:0.0: device disconnected
[  983.484576][T18035] loop4: detected capacity change from 0 to 40427
[  983.566207][T18035] F2FS-fs (loop4): Unrecognized mount option "·" or missing value
[  983.786435][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  983.786452][   T30] audit: type=1400 audit(2000000930.373:11759): avc:  denied  { create } for  pid=18028 comm="syz.4.4847" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  983.812400][   T30] audit: type=1400 audit(2000000930.373:11760): avc:  denied  { bind } for  pid=18028 comm="syz.4.4847" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  984.032107][T18053] overlayfs: failed to resolve './file0': -2
[  984.253573][T18038] loop1: detected capacity change from 0 to 40427
[  984.291196][T18038] F2FS-fs (loop1): invalid crc value
[  984.301853][T18038] F2FS-fs (loop1): Found nat_bits in checkpoint
[  984.324483][T18042] loop2: detected capacity change from 0 to 40427
[  984.340619][T18038] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  984.351952][T18042] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  984.362720][T18042] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  984.371695][ T9773] usb 5-1: new high-speed USB device number 69 using dummy_hcd
[  984.388178][T18042] F2FS-fs (loop2): Found nat_bits in checkpoint
[  984.448450][T18042] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  984.459828][T18042] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  984.466767][T18042] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  984.607102][  T365] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[  984.761138][T17778] attempt to access beyond end of device
[  984.761138][T17778] loop1: rw=2049, want=45104, limit=40427
[  984.772567][ T9773] usb 5-1: Using ep0 maxpacket: 32
[  984.887593][ T9773] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  984.898684][ T9773] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  984.909734][ T9773] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  984.918774][ T9773] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  984.927236][ T9773] usb 5-1: config 0 descriptor??
[  984.934411][  T365] usb 1-1: Using ep0 maxpacket: 32
[  984.944144][T18051] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  984.962726][ T9773] hub 5-1:0.0: USB hub found
[  985.056049][  T365] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  985.067155][  T365] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  985.078125][  T365] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  985.086934][  T365] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  985.093062][ T8561] usb 4-1: new high-speed USB device number 75 using dummy_hcd
[  985.098729][  T365] usb 1-1: config 0 descriptor??
[  985.130145][T18057] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  985.130200][  T310] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[  985.144333][ T3123] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[  985.154440][  T365] hub 1-1:0.0: USB hub found
[  985.577906][  T310] usb 3-1: Using ep0 maxpacket: 16
[  985.582891][ T3123] usb 2-1: Using ep0 maxpacket: 8
[  985.595882][ T8561] usb 4-1: Using ep0 maxpacket: 32
[  985.773365][ T3123] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  985.884919][ T8561] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  985.895929][ T8561] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  985.906856][ T8561] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  985.915679][ T8561] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  985.924573][ T8561] usb 4-1: config 0 descriptor??
[  985.940851][T18069] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  985.959510][  T310] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  985.960085][ T8561] hub 4-1:0.0: USB hub found
[  985.972303][ T3123] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  985.981798][  T310] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  985.989894][ T3123] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  985.997765][  T310] usb 3-1: Product: syz
[  986.001698][  T310] usb 3-1: Manufacturer: syz
[  986.006152][ T3123] usb 2-1: Product: syz
[  986.010213][  T310] usb 3-1: SerialNumber: syz
[  986.014618][ T3123] usb 2-1: Manufacturer: syz
[  986.019590][ T3123] usb 2-1: SerialNumber: syz
[  986.024265][  T310] usb 3-1: config 0 descriptor??
[  986.081157][  T310] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  986.089139][  T310] usb 3-1: Detected FT232H
[  986.276375][  T310] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  986.723778][  T310] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71
[  986.730745][  T310] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  986.741502][  T310] usb 3-1: USB disconnect, device number 58
[  986.748106][  T310] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  986.770446][ T9773] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  986.782172][  T310] ftdi_sio 3-1:0.0: device disconnected
[  986.800949][T18083] loop4: detected capacity change from 0 to 512
[  986.845508][T18083] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  986.855052][T18083] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  986.863529][ T9773] usbhid 5-1:0.0: can't add hid device: -71
[  986.869362][ T9773] usbhid: probe of 5-1:0.0 failed with error -71
[  986.901067][ T9773] usb 5-1: USB disconnect, device number 69
[  987.148580][ T3123] cdc_ncm 2-1:1.0: MAC-Address: 42:42:42:42:42:42
[  987.156730][ T3123] cdc_ncm 2-1:1.0: setting tx_max = 184
[  987.180733][  T365] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[  987.212330][T18092] loop2: detected capacity change from 0 to 1024
[  987.234946][T18092] EXT4-fs (loop2): Test dummy encryption mode enabled
[  987.241703][T18092] EXT4-fs (loop2): Ignoring removed orlov option
[  987.250140][T18092] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,sysvgroups,commit=0x0000000000000005,orlov,nobarrier,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  987.277184][ T3123] cdc_ncm 2-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.1-1, CDC NCM, 42:42:42:42:42:42
[  987.401168][T18096] overlayfs: failed to resolve './file0': -2
[  988.103416][  T365] usbhid 1-1:0.0: can't add hid device: -71
[  988.117009][  T365] usbhid: probe of 1-1:0.0 failed with error -71
[  988.363921][ T3123] usb 2-1: USB disconnect, device number 61
[  988.375706][ T8561] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  988.380561][ T3123] cdc_ncm 2-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.1-1, CDC NCM
[  988.401026][T18108] syz.2.4867[18108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  988.401105][T18108] syz.2.4867[18108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  988.420478][  T365] usb 1-1: USB disconnect, device number 64
[  988.513369][ T8561] usbhid 4-1:0.0: can't add hid device: -71
[  988.519141][ T8561] usbhid: probe of 4-1:0.0 failed with error -71
[  988.561226][ T8561] usb 4-1: USB disconnect, device number 75
[  989.027729][T18141] overlayfs: failed to resolve './file0': -2
[  989.527097][T18157] syz.0.4875[18157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  989.527176][T18157] syz.0.4875[18157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  989.812778][   T30] audit: type=1326 audit(2000000936.843:11761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  989.937435][   T30] audit: type=1326 audit(2000000936.886:11762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  989.961986][   T30] audit: type=1326 audit(2000000936.886:11763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.130446][   T30] audit: type=1326 audit(2000000936.886:11764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.154378][   T30] audit: type=1326 audit(2000000936.886:11765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.178465][   T30] audit: type=1326 audit(2000000936.886:11766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.286745][   T30] audit: type=1326 audit(2000000936.886:11767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.286925][T18163] loop1: detected capacity change from 0 to 131072
[  990.311738][   T30] audit: type=1326 audit(2000000936.886:11768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.343000][   T30] audit: type=1326 audit(2000000936.886:11769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.367541][   T30] audit: type=1326 audit(2000000936.886:11770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18158 comm="syz.4.4876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[  990.374425][T18163] F2FS-fs (loop1): invalid crc value
[  990.396542][T18172] FAULT_INJECTION: forcing a failure.
[  990.396542][T18172] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  990.398146][T18163] F2FS-fs (loop1): Invalid segment type: 16, segno: 21
[  990.416534][T18172] CPU: 0 PID: 18172 Comm: syz.3.4879 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[  990.427810][T18172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  990.437705][T18172] Call Trace:
[  990.440826][T18172]  <TASK>
[  990.443692][T18172]  dump_stack_lvl+0x151/0x1c0
[  990.448226][T18172]  ? io_uring_drop_tctx_refs+0x190/0x190
[  990.453761][T18172]  dump_stack+0x15/0x20
[  990.457750][T18172]  should_fail+0x3c6/0x510
[  990.462093][T18172]  should_fail_alloc_page+0x5a/0x80
[  990.467135][T18172]  prepare_alloc_pages+0x15c/0x700
[  990.472075][T18172]  ? __alloc_pages_bulk+0xe40/0xe40
[  990.477106][T18172]  ? proc_fail_nth_write+0x20b/0x290
[  990.482314][T18172]  ? selinux_file_permission+0x2c4/0x570
[  990.487783][T18172]  __alloc_pages+0x18c/0x8f0
[  990.492215][T18172]  ? prep_new_page+0x110/0x110
[  990.496807][T18172]  ? vfs_write+0x94d/0x1110
[  990.501151][T18172]  ? file_end_write+0x1c0/0x1c0
[  990.505839][T18172]  new_slab+0x9a/0x4e0
[  990.509744][T18172]  ___slab_alloc+0x39e/0x830
[  990.514168][T18172]  ? getname_flags+0xba/0x520
[  990.518679][T18172]  ? __kasan_check_write+0x14/0x20
[  990.523629][T18172]  ? getname_flags+0xba/0x520
[  990.528142][T18172]  __slab_alloc+0x4a/0x90
[  990.532307][T18172]  ? getname_flags+0xba/0x520
[  990.536820][T18172]  kmem_cache_alloc+0x134/0x200
[  990.541511][T18172]  getname_flags+0xba/0x520
[  990.545854][T18172]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  990.551749][T18172]  __x64_sys_mkdir+0x5f/0x80
[  990.556174][T18172]  x64_sys_call+0x26d/0x9a0
[  990.560515][T18172]  do_syscall_64+0x3b/0xb0
[  990.564766][T18172]  ? clear_bhb_loop+0x35/0x90
[  990.569280][T18172]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  990.575010][T18172] RIP: 0033:0x7f3225077ff9
[  990.579266][T18172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  990.598706][T18172] RSP: 002b:00007f3223cf1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  990.606950][T18172] RAX: ffffffffffffffda RBX: 00007f322522ff80 RCX: 00007f3225077ff9
[  990.614762][T18172] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180
[  990.622571][T18172] RBP: 00007f3223cf1090 R08: 0000000000000000 R09: 0000000000000000
[  990.630556][T18172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  990.638803][T18172] R13: 0000000000000000 R14: 00007f322522ff80 R15: 00007ffd6ebfc348
[  990.646620][T18172]  </TASK>
[  990.655218][T18163] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-117)
[  990.663469][T18176] FAULT_INJECTION: forcing a failure.
[  990.663469][T18176] name failslab, interval 1, probability 0, space 0, times 0
[  990.689266][T18176] CPU: 0 PID: 18176 Comm: syz.0.4880 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[  990.700472][T18176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  990.701584][T18180] syz.3.4882[18180] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  990.710371][T18176] Call Trace:
[  990.710384][T18176]  <TASK>
[  990.710390][T18176]  dump_stack_lvl+0x151/0x1c0
[  990.710415][T18176]  ? io_uring_drop_tctx_refs+0x190/0x190
[  990.710433][T18176]  ? __kasan_kmalloc+0x9/0x10
[  990.710448][T18176]  ? btf_new_fd+0x297/0x910
[  990.710465][T18176]  ? bpf_btf_load+0x6f/0x90
[  990.710480][T18176]  ? __sys_bpf+0x50e/0x760
[  990.721693][T18180] syz.3.4882[18180] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  990.724679][T18176]  ? x64_sys_call+0x87f/0x9a0
[  990.724698][T18176]  ? do_syscall_64+0x3b/0xb0
[  990.775025][T18176]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  990.780935][T18176]  dump_stack+0x15/0x20
[  990.785120][T18176]  should_fail+0x3c6/0x510
[  990.789453][T18176]  __should_failslab+0xa4/0xe0
[  990.794045][T18176]  should_failslab+0x9/0x20
[  990.798392][T18176]  slab_pre_alloc_hook+0x37/0xd0
[  990.803156][T18176]  __kmalloc+0x6d/0x270
[  990.807147][T18176]  ? kvmalloc_node+0x1f0/0x4d0
[  990.811759][T18176]  kvmalloc_node+0x1f0/0x4d0
[  990.816264][T18176]  ? vm_mmap+0xb0/0xb0
[  990.820170][T18176]  ? kmem_cache_alloc_trace+0x115/0x210
[  990.825547][T18176]  ? btf_new_fd+0x297/0x910
[  990.829887][T18176]  btf_new_fd+0x2d3/0x910
[  990.834054][T18176]  bpf_btf_load+0x6f/0x90
[  990.838219][T18176]  __sys_bpf+0x50e/0x760
[  990.842449][T18176]  ? fput_many+0x160/0x1b0
[  990.846693][T18176]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[  990.851905][T18176]  ? debug_smp_processor_id+0x17/0x20
[  990.857111][T18176]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  990.863009][T18176]  __x64_sys_bpf+0x7c/0x90
[  990.867265][T18176]  x64_sys_call+0x87f/0x9a0
[  990.871604][T18176]  do_syscall_64+0x3b/0xb0
[  990.875855][T18176]  ? clear_bhb_loop+0x35/0x90
[  990.880368][T18176]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  990.886096][T18176] RIP: 0033:0x7f373acf5ff9
[  990.890369][T18176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  990.909794][T18176] RSP: 002b:00007f373996f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  990.918040][T18176] RAX: ffffffffffffffda RBX: 00007f373aeadf80 RCX: 00007f373acf5ff9
[  990.925849][T18176] RDX: 0000000000000028 RSI: 0000000020000280 RDI: 0000000000000012
[  990.933660][T18176] RBP: 00007f373996f090 R08: 0000000000000000 R09: 0000000000000000
[  990.941472][T18176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  990.949287][T18176] R13: 0000000000000000 R14: 00007f373aeadf80 R15: 00007ffc580435b8
[  990.957102][T18176]  </TASK>
[  990.960206][  T365] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[  991.201455][T18194] overlayfs: failed to resolve './file1': -2
[  991.300530][  T365] usb 3-1: config 0 has an invalid descriptor of length 1, skipping remainder of the config
[  991.311246][  T365] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  991.320428][  T365] usb 3-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  991.329637][  T365] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  991.338694][  T365] usb 3-1: config 0 descriptor??
[  991.496793][ T8561] kernel write not supported for file bpf-prog (pid: 8561 comm: kworker/0:5)
[  991.563229][T18153] UDC core: couldn't find an available UDC or it's busy: -16
[  991.570711][T18153] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  991.578420][T18153] UDC core: couldn't find an available UDC or it's busy: -16
[  991.585716][T18153] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  991.812402][T18205] loop1: detected capacity change from 0 to 1024
[  991.851673][T18205] EXT4-fs (loop1): Test dummy encryption mode enabled
[  991.859447][T18205] EXT4-fs (loop1): Test dummy encryption mode enabled
[  991.866207][T18205] EXT4-fs (loop1): Ignoring removed orlov option
[  991.897693][T18205] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  992.532486][T18215] overlayfs: failed to resolve './file0': -2
[  992.678061][T18217] overlayfs: failed to resolve './file0': -2
[  993.145644][T18229] A link change request failed with some changes committed already. Interface sit1 may have been left with an inconsistent configuration, please check.
[  993.215996][T18234] xt_hashlimit: size too large, truncated to 1048576
[  993.443196][T18233] syz.0.4899[18233] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  993.443273][T18233] syz.0.4899[18233] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  993.500263][T18247] overlayfs: failed to resolve './file0': -2
[  994.161501][ T3123] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[  994.392567][T18273] syz.1.4914[18273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  994.392624][T18273] syz.1.4914[18273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  994.633295][ T3123] usb 5-1: Using ep0 maxpacket: 16
[  994.651114][T18263] overlayfs: failed to resolve './file0': -2
[  994.680426][   T26] usb 3-1: USB disconnect, device number 59
[  994.684272][T18277] loop1: detected capacity change from 0 to 1024
[  994.730088][T18277] EXT4-fs (loop1): Test dummy encryption mode enabled
[  994.736909][T18277] EXT4-fs (loop1): Test dummy encryption mode enabled
[  994.744128][T18277] EXT4-fs (loop1): Ignoring removed orlov option
[  994.759387][T18277] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  994.796810][T18277] overlayfs: failed to resolve './file0': -2
[  994.841012][T18280] loop1: detected capacity change from 0 to 256
[  994.882357][T18280] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  994.939001][ T3123] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  994.948311][ T3123] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  994.956369][ T3123] usb 5-1: Product: syz
[  994.960499][ T3123] usb 5-1: Manufacturer: syz
[  994.964991][ T3123] usb 5-1: SerialNumber: syz
[  994.974126][ T3123] usb 5-1: config 0 descriptor??
[  995.252186][ T3123] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  995.262246][ T3123] usb 5-1: Detected FT232H
[  995.266559][T18284] A link change request failed with some changes committed already. Interface sit1 may have been left with an inconsistent configuration, please check.
[  995.429176][ T3123] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  995.672625][T18294] loop1: detected capacity change from 0 to 1024
[  995.728210][T18294] EXT4-fs (loop1): Test dummy encryption mode enabled
[  995.734985][T18294] EXT4-fs (loop1): Test dummy encryption mode enabled
[  995.741996][T18294] EXT4-fs (loop1): Ignoring removed orlov option
[  995.750696][T18294] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  995.876550][ T3123] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71
[  995.883505][ T3123] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  995.899409][ T3123] usb 5-1: USB disconnect, device number 70
[  995.910936][ T3123] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  995.923626][ T3123] ftdi_sio 5-1:0.0: device disconnected
[  995.996409][T18299] overlayfs: failed to resolve './file0': -2
[  996.141678][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  996.141691][   T30] audit: type=1326 audit(2000000943.634:11790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  996.149408][T18301] FAULT_INJECTION: forcing a failure.
[  996.149408][T18301] name failslab, interval 1, probability 0, space 0, times 0
[  996.193421][T18301] CPU: 0 PID: 18301 Comm: syz.0.4922 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[  996.204625][T18301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  996.214520][T18301] Call Trace:
[  996.217642][T18301]  <TASK>
[  996.220421][T18301]  dump_stack_lvl+0x151/0x1c0
[  996.224935][T18301]  ? io_uring_drop_tctx_refs+0x190/0x190
[  996.230402][T18301]  dump_stack+0x15/0x20
[  996.234397][T18301]  should_fail+0x3c6/0x510
[  996.238644][T18301]  __should_failslab+0xa4/0xe0
[  996.243243][T18301]  should_failslab+0x9/0x20
[  996.247583][T18301]  slab_pre_alloc_hook+0x37/0xd0
[  996.252359][T18301]  ? audit_log_start+0x456/0xa80
[  996.257218][T18301]  __kmalloc_track_caller+0x6c/0x260
[  996.262337][T18301]  ? audit_log_start+0x456/0xa80
[  996.267112][T18301]  ? audit_log_start+0x456/0xa80
[  996.271886][T18301]  __alloc_skb+0x10c/0x550
[  996.276138][T18301]  audit_log_start+0x456/0xa80
[  996.280740][T18301]  ? audit_serial+0x30/0x30
[  996.285077][T18301]  ? __kasan_check_write+0x14/0x20
[  996.290026][T18301]  ? migrate_enable+0x1c1/0x2a0
[  996.294716][T18301]  audit_seccomp+0x61/0x1e0
[  996.299051][T18301]  ? migrate_disable+0xd9/0x190
[  996.303737][T18301]  __seccomp_filter+0xc08/0x1c60
[  996.308515][T18301]  ? file_end_write+0x1c0/0x1c0
[  996.313201][T18301]  ? __kasan_check_write+0x14/0x20
[  996.318146][T18301]  ? __secure_computing+0x300/0x300
[  996.323180][T18301]  ? __mutex_lock_slowpath+0x10/0x10
[  996.328311][T18301]  ? __kasan_check_write+0x14/0x20
[  996.333252][T18301]  ? fput_many+0x160/0x1b0
[  996.337506][T18301]  ? __ia32_sys_read+0x90/0x90
[  996.342101][T18301]  __secure_computing+0xf0/0x300
[  996.346877][T18301]  syscall_enter_from_user_mode+0xd5/0x1b0
[  996.352525][T18301]  do_syscall_64+0x1e/0xb0
[  996.356770][T18301]  ? clear_bhb_loop+0x35/0x90
[  996.361284][T18301]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  996.367013][T18301] RIP: 0033:0x7f373acf5ff9
[  996.371270][T18301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  996.390709][T18301] RSP: 002b:00007f373996f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[  996.398951][T18301] RAX: ffffffffffffffda RBX: 00007f373aeadf80 RCX: 00007f373acf5ff9
[  996.406762][T18301] RDX: 0000000000000000 RSI: 0000000000000009 RDI: ffffffffffffffff
[  996.414575][T18301] RBP: 00007f373996f090 R08: 0000000000000000 R09: 0000000000000000
[  996.422385][T18301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  996.430197][T18301] R13: 0000000000000000 R14: 00007f373aeadf80 R15: 00007ffc580435b8
[  996.438010][T18301]  </TASK>
[  996.440997][   T30] audit: type=1326 audit(2000000943.634:11791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  996.447464][T18301] audit: audit_lost=10 audit_rate_limit=0 audit_backlog_limit=64
[  996.464710][   T30] audit: type=1326 audit(2000000943.645:11792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  996.485436][T18301] audit: out of memory in audit_log_start
[  996.495582][   T30] audit: type=1326 audit(2000000943.645:11793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  996.525871][   T30] audit: type=1326 audit(2000000943.645:11794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  996.549543][   T30] audit: type=1326 audit(2000000943.645:11795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  996.986404][   T30] audit: type=1326 audit(2000000943.645:11796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  997.013362][   T30] audit: type=1326 audit(2000000943.645:11797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18300 comm="syz.0.4922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f373acf5ff9 code=0x7ffc0000
[  997.053102][T18311] syz.4.4926[18311] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  997.053183][T18311] syz.4.4926[18311] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  997.127825][T18315] loop4: detected capacity change from 0 to 1024
[  997.166956][T18315] EXT4-fs (loop4): Test dummy encryption mode enabled
[  997.269165][T18315] EXT4-fs (loop4): Test dummy encryption mode enabled
[  997.360008][T18315] EXT4-fs (loop4): Ignoring removed orlov option
[  997.423109][T18319] loop1: detected capacity change from 0 to 512
[  997.439357][T18319] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  997.445515][T18315] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[  997.446763][T18319] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[  997.545938][T18319] tipc: Started in network mode
[  997.550663][T18319] tipc: Node identity c2c45a96162d, cluster identity 4711
[  997.557912][T18319] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  997.566574][T18318] tipc: Disabling bearer <eth:syzkaller0>
[  997.649188][T18329] overlayfs: failed to resolve './file0': -2
[  997.786871][T18331] loop1: detected capacity change from 0 to 256
[  997.871879][T18331] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  997.951971][    C1] eth0: bad gso: type: 1, size: 1408
[  998.132083][ T3123] usb 4-1: new high-speed USB device number 76 using dummy_hcd
[  998.393639][ T3123] usb 4-1: Using ep0 maxpacket: 32
[  998.487366][T18345] loop4: detected capacity change from 0 to 40427
[  998.504968][ T3123] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  998.516169][ T3123] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  998.527179][ T3123] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  998.539981][T18345] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  998.546627][ T3123] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  998.554498][T18345] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  998.592654][ T3123] usb 4-1: config 0 descriptor??
[  998.599390][T18345] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  998.608141][T18333] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  998.627619][ T3123] hub 4-1:0.0: USB hub found
[  998.671299][T18345] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  998.678401][T18345] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  998.697186][T16673] attempt to access beyond end of device
[  998.697186][T16673] loop4: rw=2049, want=45104, limit=40427
[  998.809871][T18362] loop4: detected capacity change from 0 to 512
[  998.849804][ T9773] usb 1-1: new high-speed USB device number 65 using dummy_hcd
[  998.893543][T18362] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  998.900934][T18362] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  999.008543][T18362] tipc: Started in network mode
[  999.013368][T18362] tipc: Node identity 7a39ede12c43, cluster identity 4711
[  999.021626][T18362] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  999.033387][T18361] tipc: Disabling bearer <eth:syzkaller0>
[  999.092066][ T9773] usb 1-1: Using ep0 maxpacket: 16
[  999.264131][ T2719] tipc: Left network mode
[  999.409228][ T9773] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  999.429079][ T9773] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  999.459994][ T9773] usb 1-1: Product: syz
[  999.479910][ T9773] usb 1-1: Manufacturer: syz
[  999.688287][ T9773] usb 1-1: SerialNumber: syz
[  999.697503][ T9773] usb 1-1: config 0 descriptor??
[  999.746335][ T9773] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  999.755205][ T9773] usb 1-1: Detected FT232H
[  999.781585][T18370] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.797467][T18370] bridge0: port 1(bridge_slave_0) entered disabled state
[  999.807295][T18370] device bridge_slave_0 entered promiscuous mode
[  999.828113][T18370] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.848153][T18370] bridge0: port 2(bridge_slave_1) entered disabled state
[  999.872262][T18370] device bridge_slave_1 entered promiscuous mode
[  999.940302][ T2533] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[  999.949854][ T9773] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1000.084540][ T2719] device bridge_slave_1 left promiscuous mode
[ 1000.091077][ T2719] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1000.096879][T18369] loop4: detected capacity change from 0 to 40427
[ 1000.115433][ T2719] device bridge_slave_0 left promiscuous mode
[ 1000.121773][ T2719] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1000.143700][T18369] F2FS-fs (loop4): invalid crc value
[ 1000.151905][ T2719] device veth1_macvtap left promiscuous mode
[ 1000.152138][T18369] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1000.164097][ T2719] device veth0_vlan left promiscuous mode
[ 1000.169738][ T2533] usb 2-1: Using ep0 maxpacket: 32
[ 1000.213550][T18369] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1000.305191][ T2533] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1000.329985][ T2533] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1000.341039][ T2533] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1000.349817][ T2533] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1000.360742][ T2533] usb 2-1: config 0 descriptor??
[ 1000.378680][T18373] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 1000.400020][ T2533] hub 2-1:0.0: USB hub found
[ 1000.653699][ T9773] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[ 1000.666927][ T9773] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1000.685958][ T9773] usb 1-1: USB disconnect, device number 65
[ 1000.705328][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1000.713624][ T9773] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1000.717549][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1000.723751][T16673] attempt to access beyond end of device
[ 1000.723751][T16673] loop4: rw=2049, want=45104, limit=40427
[ 1000.730764][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1000.742708][ T9773] ftdi_sio 1-1:0.0: device disconnected
[ 1000.749980][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1000.807892][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1000.815397][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1000.824062][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1000.832535][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1000.839393][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1000.846942][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1000.855221][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1000.863249][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1000.870127][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1000.998303][T18370] device veth0_vlan entered promiscuous mode
[ 1001.162501][T18370] device veth1_macvtap entered promiscuous mode
[ 1001.185241][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1001.206962][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1001.224801][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1001.238837][ T3123] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1001.242598][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1001.262491][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1001.270813][   T30] kauditd_printk_skb: 14 callbacks suppressed
[ 1001.270827][   T30] audit: type=1326 audit(2000000949.138:11812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18386 comm="syz.3.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[ 1001.301996][T18387] syz.3.4947[18387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1001.302050][T18387] syz.3.4947[18387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1001.316081][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1001.317823][   T30] audit: type=1326 audit(2000000949.171:11813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18386 comm="syz.3.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[ 1001.333568][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1001.366600][ T3123] usbhid 4-1:0.0: can't add hid device: -71
[ 1001.373422][   T30] audit: type=1326 audit(2000000949.256:11814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18386 comm="syz.3.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[ 1001.400389][ T3123] usbhid: probe of 4-1:0.0 failed with error -71
[ 1001.406486][   T30] audit: type=1326 audit(2000000949.256:11815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18386 comm="syz.3.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[ 1001.406554][   T30] audit: type=1326 audit(2000000949.278:11816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18386 comm="syz.3.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[ 1001.406816][   T30] audit: type=1326 audit(2000000949.278:11817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18386 comm="syz.3.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3225077ff9 code=0x7ffc0000
[ 1001.453722][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1001.492061][ T3123] usb 4-1: USB disconnect, device number 76
[ 1001.504330][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1001.585932][T18403] loop4: detected capacity change from 0 to 1024
[ 1001.594468][T18402] loop2: detected capacity change from 0 to 512
[ 1001.610101][T18403] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1001.616828][T18403] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1001.623738][T18403] EXT4-fs (loop4): Ignoring removed orlov option
[ 1001.796662][T18403] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1001.842263][T18402] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1001.856753][T18402] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038 (0x7fffffff)
[ 1001.875472][T18403] overlayfs: failed to resolve './file0': -2
[ 1001.988773][T18412] loop4: detected capacity change from 0 to 512
[ 1002.124473][T18412] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[ 1002.164070][T18412] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[ 1002.407870][T18412] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1002.443375][T18411] tipc: Disabling bearer <eth:syzkaller0>
[ 1002.503445][ T2533] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1002.545987][   T30] audit: type=1400 audit(2000000950.501:11818): avc:  denied  { write } for  pid=18420 comm="syz.0.4956" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1002.625101][T18421] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4956'.
[ 1002.652698][ T2533] usbhid 2-1:0.0: can't add hid device: -71
[ 1002.735704][ T2533] usbhid: probe of 2-1:0.0 failed with error -71
[ 1002.744902][   T30] audit: type=1326 audit(2000000950.716:11819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18430 comm="syz.4.4958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[ 1002.746552][T18433] syz.4.4958[18433] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1002.768645][T18433] syz.4.4958[18433] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1002.768936][ T2533] usb 2-1: USB disconnect, device number 62
[ 1002.797228][ T3123] usb 3-1: new full-speed USB device number 60 using dummy_hcd
[ 1002.815024][   T30] audit: type=1326 audit(2000000950.716:11820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18430 comm="syz.4.4958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[ 1002.839540][   T30] audit: type=1326 audit(2000000950.716:11821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18430 comm="syz.4.4958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4eedcd7ff9 code=0x7ffc0000
[ 1002.918377][T18443] loop4: detected capacity change from 0 to 1024
[ 1002.990030][T18443] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1002.997107][T18443] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1003.004910][T18443] EXT4-fs (loop4): Ignoring removed orlov option
[ 1003.017376][T18443] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1003.061360][T18443] overlayfs: failed to resolve './file0': -2
[ 1003.122087][T18453] loop4: detected capacity change from 0 to 256
[ 1003.174576][ T3123] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1003.205693][ T3123] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1003.218832][ T3123] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1003.219021][T18453] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1003.228536][ T3123] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1003.253794][ T3123] usb 3-1: New USB device found, idVendor=17ef, idProduct=6085, bcdDevice= 0.00
[ 1003.263316][ T3123] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1003.371879][T18463] syz.1.4970[18463] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1003.371955][T18463] syz.1.4970[18463] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1003.379583][ T3123] usb 3-1: config 0 descriptor??
[ 1003.418049][T18465] loop1: detected capacity change from 0 to 256
[ 1003.445716][T18465] exfat: Unknown parameter ''
[ 1003.757442][T18477] overlayfs: failed to resolve './file0': -2
[ 1003.894847][T18490] loop1: detected capacity change from 0 to 256
[ 1003.928129][ T3123] hid-rmi 0003:17EF:6085.004D: unknown main item tag 0x0
[ 1003.936795][ T3123] hid-rmi 0003:17EF:6085.004D: unknown main item tag 0x0
[ 1003.937475][T18490] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1003.944000][ T3123] hid-rmi 0003:17EF:6085.004D: item fetching failed at offset 2/5
[ 1003.964434][T18491] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4976'.
[ 1003.978532][ T3123] hid-rmi 0003:17EF:6085.004D: parse failed
[ 1003.984371][ T3123] hid-rmi: probe of 0003:17EF:6085.004D failed with error -22
[ 1004.159322][T18500] syz.3.4981[18500] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1004.159411][T18500] syz.3.4981[18500] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1004.171187][ T9773] usb 3-1: USB disconnect, device number 60
[ 1004.974955][T18517] loop2: detected capacity change from 0 to 1024
[ 1004.987170][T18521] loop4: detected capacity change from 0 to 512
[ 1005.011955][T18517] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1005.018681][T18517] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1005.025545][T18517] EXT4-fs (loop2): Ignoring removed orlov option
[ 1005.034284][T18517] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1005.056798][T18521] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[ 1005.068348][T18521] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b816c118, mo2=0002]
[ 1005.076513][T18521] System zones: 1-12
[ 1005.094705][T18521] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2219: inode #15: comm syz.4.4988: corrupted in-inode xattr
[ 1005.106885][T18521] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.4988: couldn't read orphan inode 15 (err -117)
[ 1005.121311][T18521] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,grpquota,,errors=continue. Quota mode: writeback.
[ 1005.144895][T18517] overlayfs: failed to resolve './file0': -2
[ 1005.290279][T18527] loop2: detected capacity change from 0 to 256
[ 1005.355791][T18529] FAULT_INJECTION: forcing a failure.
[ 1005.355791][T18529] name failslab, interval 1, probability 0, space 0, times 0
[ 1005.369643][T18529] CPU: 0 PID: 18529 Comm: syz.3.4990 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[ 1005.380826][T18529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1005.390721][T18529] Call Trace:
[ 1005.393840][T18529]  <TASK>
[ 1005.396616][T18529]  dump_stack_lvl+0x151/0x1c0
[ 1005.401216][T18529]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1005.406685][T18529]  dump_stack+0x15/0x20
[ 1005.410680][T18529]  should_fail+0x3c6/0x510
[ 1005.414929][T18529]  __should_failslab+0xa4/0xe0
[ 1005.419529][T18529]  should_failslab+0x9/0x20
[ 1005.423869][T18529]  slab_pre_alloc_hook+0x37/0xd0
[ 1005.428825][T18529]  ? tipc_msg_build+0x149/0x1230
[ 1005.433589][T18529]  __kmalloc_track_caller+0x6c/0x260
[ 1005.438713][T18529]  ? tipc_msg_build+0x149/0x1230
[ 1005.443486][T18529]  ? tipc_msg_build+0x149/0x1230
[ 1005.448258][T18529]  __alloc_skb+0x10c/0x550
[ 1005.452512][T18529]  tipc_msg_build+0x149/0x1230
[ 1005.457109][T18529]  ? new_inode+0x28/0x1c0
[ 1005.461279][T18529]  ? proc_tid_base_lookup+0x2b/0x30
[ 1005.466313][T18529]  ? __x64_sys_openat+0x243/0x290
[ 1005.471172][T18529]  ? tipc_node_find+0x206/0x4c0
[ 1005.475859][T18529]  ? memcpy+0x56/0x70
[ 1005.479685][T18529]  ? tipc_msg_fragment+0x760/0x760
[ 1005.484626][T18529]  ? avc_has_perm_noaudit+0x2dd/0x430
[ 1005.489833][T18529]  ? tipc_node_get_mtu+0x20f/0x2b0
[ 1005.494780][T18529]  __tipc_sendmsg+0x1c7b/0x3240
[ 1005.499468][T18529]  ? avc_has_perm_noaudit+0x2dd/0x430
[ 1005.504683][T18529]  ? local_bh_enable+0x30/0x30
[ 1005.509274][T18529]  ? avc_denied+0x1b0/0x1b0
[ 1005.513615][T18529]  ? avc_has_perm+0x16f/0x260
[ 1005.518126][T18529]  ? stack_trace_save+0x1c0/0x1c0
[ 1005.522989][T18529]  ? avc_has_perm_noaudit+0x430/0x430
[ 1005.528197][T18529]  ? __kasan_check_write+0x14/0x20
[ 1005.533144][T18529]  ? _raw_spin_lock_bh+0xa4/0x1b0
[ 1005.538005][T18529]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[ 1005.543038][T18529]  ? __local_bh_enable_ip+0x58/0x80
[ 1005.548072][T18529]  ? lock_sock_nested+0x266/0x300
[ 1005.552933][T18529]  ? sock_init_data+0xc0/0xc0
[ 1005.557445][T18529]  ? wait_woken+0x170/0x170
[ 1005.561786][T18529]  ? asm_sysvec_call_function_single+0x1b/0x20
[ 1005.567777][T18529]  tipc_sendmsg+0x55/0x70
[ 1005.572027][T18529]  ? tipc_recvmsg+0x13b0/0x13b0
[ 1005.576716][T18529]  ____sys_sendmsg+0x59e/0x8f0
[ 1005.581318][T18529]  ? __sys_sendmsg_sock+0x40/0x40
[ 1005.586175][T18529]  ? import_iovec+0xe5/0x120
[ 1005.590601][T18529]  ___sys_sendmsg+0x252/0x2e0
[ 1005.595115][T18529]  ? __sys_sendmsg+0x260/0x260
[ 1005.599720][T18529]  ? __fdget+0x1bc/0x240
[ 1005.603793][T18529]  __se_sys_sendmsg+0x19a/0x260
[ 1005.608480][T18529]  ? __x64_sys_sendmsg+0x90/0x90
[ 1005.613254][T18529]  ? ksys_write+0x260/0x2c0
[ 1005.617595][T18529]  ? debug_smp_processor_id+0x17/0x20
[ 1005.622803][T18529]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1005.628702][T18529]  __x64_sys_sendmsg+0x7b/0x90
[ 1005.633307][T18529]  x64_sys_call+0x16a/0x9a0
[ 1005.637644][T18529]  do_syscall_64+0x3b/0xb0
[ 1005.641895][T18529]  ? clear_bhb_loop+0x35/0x90
[ 1005.646408][T18529]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1005.652310][T18529] RIP: 0033:0x7f3225077ff9
[ 1005.656564][T18529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1005.676093][T18529] RSP: 002b:00007f3223cf1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1005.684339][T18529] RAX: ffffffffffffffda RBX: 00007f322522ff80 RCX: 00007f3225077ff9
[ 1005.692151][T18529] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000000000006
[ 1005.699963][T18529] RBP: 00007f3223cf1090 R08: 0000000000000000 R09: 0000000000000000
[ 1005.707770][T18529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1005.715668][T18529] R13: 0000000000000000 R14: 00007f322522ff80 R15: 00007ffd6ebfc348
[ 1005.723487][T18529]  </TASK>
[ 1005.750662][T18527] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1005.755702][T18534] loop1: detected capacity change from 0 to 512
[ 1005.777632][T18531] A link change request failed with some changes committed already. Interface sit1 may have been left with an inconsistent configuration, please check.
[ 1005.793761][T18531] tipc: Started in network mode
[ 1005.803755][T18531] tipc: Node identity 6a6b4c30723e, cluster identity 4711
[ 1005.810740][T18531] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1005.819354][T18530] tipc: Disabling bearer <eth:syzkaller0>
[ 1005.861231][T18534] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[ 1005.870803][T18534] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[ 1006.414340][T18534] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1006.423609][T18533] tipc: Disabling bearer <eth:syzkaller0>
[ 1006.430024][T18547] loop2: detected capacity change from 0 to 1024
[ 1006.437069][T18547] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1006.443809][T18547] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1006.450570][T18547] EXT4-fs (loop2): Ignoring removed orlov option
[ 1006.458837][T18547] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1006.483253][  T485] usb 5-1: new high-speed USB device number 71 using dummy_hcd
[ 1006.647002][T18558] overlayfs: './file1' not a directory
[ 1006.916909][T18562] overlayfs: failed to resolve './file0': -2
[ 1007.061526][  T485] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1007.072306][  T485] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1007.081809][  T485] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1007.094442][  T485] usb 5-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[ 1007.103310][  T485] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1007.112089][  T485] usb 5-1: config 0 descriptor??
[ 1007.266200][T18365] usb 1-1: new high-speed USB device number 66 using dummy_hcd
[ 1007.300205][T18568] loop1: detected capacity change from 0 to 512
[ 1007.348055][T18566] loop2: detected capacity change from 0 to 40427
[ 1007.357319][   T30] kauditd_printk_skb: 32 callbacks suppressed
[ 1007.357334][   T30] audit: type=1326 audit(2000000955.672:11854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18567 comm="syz.1.5003" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7af126cff9 code=0x0
[ 1007.412869][T18577] loop1: detected capacity change from 0 to 256
[ 1007.419328][T18575] tipc: Started in network mode
[ 1007.424282][T18575] tipc: Node identity 060cfcb9d032, cluster identity 4711
[ 1007.431378][T18575] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1007.434199][T18566] F2FS-fs (loop2): invalid crc value
[ 1007.444826][T18566] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1007.453614][T18574] tipc: Disabling bearer <eth:syzkaller0>
[ 1007.462402][T18577] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1007.488755][T18566] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1007.537053][T18365] usb 1-1: Using ep0 maxpacket: 32
[ 1007.547014][  T485] prodikeys 0003:041E:2801.004E: item fetching failed at offset 4/5
[ 1007.565516][  T485] prodikeys 0003:041E:2801.004E: hid parse failed
[ 1007.577142][  T485] prodikeys: probe of 0003:041E:2801.004E failed with error -22
[ 1008.277988][T18587] overlayfs: failed to resolve './file0': -2
[ 1008.863167][T15131] usb 5-1: USB disconnect, device number 71
[ 1008.940451][T18370] attempt to access beyond end of device
[ 1008.940451][T18370] loop2: rw=2049, want=45104, limit=40427
[ 1008.972052][T18365] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1009.000393][T18365] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1009.012805][T18365] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1009.021718][T18365] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1009.037330][T18365] usb 1-1: config 0 descriptor??
[ 1009.084296][T18564] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[ 1009.103430][T18365] hub 1-1:0.0: USB hub found
[ 1009.118511][T18608] loop2: detected capacity change from 0 to 1024
[ 1009.198851][T18608] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1009.205836][T18608] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1009.212516][T18608] EXT4-fs (loop2): Ignoring removed orlov option
[ 1009.221143][T18608] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1009.396546][T18614] overlayfs: './file1' not a directory
[ 1010.634271][  T485] usb 2-1: new high-speed USB device number 63 using dummy_hcd
[ 1010.737692][    C1] eth0: bad gso: type: 1, size: 1408
[ 1010.760236][T18634] loop4: detected capacity change from 0 to 1024
[ 1012.003456][T18634] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1012.010392][T18634] EXT4-fs (loop4): Ignoring removed orlov option
[ 1012.023068][    C1] eth0: bad gso: type: 1, size: 1408
[ 1012.053171][T18634] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,sysvgroups,commit=0x0000000000000005,orlov,nobarrier,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1012.162397][T18365] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1012.325006][T18658] overlayfs: failed to resolve './file0': -2
[ 1012.552940][  T485] usb 2-1: Using ep0 maxpacket: 16
[ 1012.700114][T18365] usbhid 1-1:0.0: can't add hid device: -71
[ 1012.705960][T18365] usbhid: probe of 1-1:0.0 failed with error -71
[ 1012.712222][  T485] usb 2-1: device descriptor read/all, error -71
[ 1012.728726][  T310] usb 4-1: new high-speed USB device number 77 using dummy_hcd
[ 1012.774838][T18365] usb 1-1: USB disconnect, device number 66
[ 1012.792511][T18664] syz.4.5028[18664] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1012.792583][T18664] syz.4.5028[18664] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1012.829732][T18666] loop4: detected capacity change from 0 to 1024
[ 1012.887122][T18666] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1012.894067][T18666] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1012.900780][T18666] EXT4-fs (loop4): Ignoring removed orlov option
[ 1012.909274][T18666] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1012.983129][  T310] usb 4-1: Using ep0 maxpacket: 16
[ 1013.100535][T18678] overlayfs: './file1' not a directory
[ 1013.138160][   T26] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[ 1013.166603][  T310] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1013.195940][  T310] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1013.242782][  T310] usb 4-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.40
[ 1013.261342][  T310] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1013.278582][  T310] usb 4-1: config 0 descriptor??
[ 1013.371218][   T26] usb 3-1: Using ep0 maxpacket: 16
[ 1013.726014][   T26] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 1013.753087][   T26] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1013.764002][  T310] cp2112 0003:10C4:EA90.004F: unbalanced delimiter at end of report description
[ 1013.782132][   T26] usb 3-1: Product: syz
[ 1013.786403][  T310] cp2112 0003:10C4:EA90.004F: parse failed
[ 1013.792339][   T26] usb 3-1: Manufacturer: syz
[ 1013.796867][   T26] usb 3-1: SerialNumber: syz
[ 1013.890343][  T310] cp2112: probe of 0003:10C4:EA90.004F failed with error -22
[ 1013.899021][    C1] eth0: bad gso: type: 1, size: 1408
[ 1013.904523][   T26] usb 3-1: config 0 descriptor??
[ 1013.943252][   T26] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[ 1013.959263][   T26] usb 3-1: Detected FT232H
[ 1014.054304][  T310] usb 4-1: USB disconnect, device number 77
[ 1014.144979][   T26] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1014.205391][T18684] loop4: detected capacity change from 0 to 40427
[ 1014.267995][T18684] F2FS-fs (loop4): invalid crc value
[ 1014.275971][T18684] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1014.293878][T18365] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[ 1014.303175][T18684] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1014.548124][T18365] usb 1-1: Using ep0 maxpacket: 32
[ 1014.661927][T18697] syz.1.5036[18697] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1014.662003][T18697] syz.1.5036[18697] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1014.695301][   T26] ftdi_sio 3-1:0.0: GPIO initialisation failed: -5
[ 1014.713227][T16673] attempt to access beyond end of device
[ 1014.713227][T16673] loop4: rw=2049, want=45104, limit=40427
[ 1014.714269][   T26] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1014.769651][T18365] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1014.788281][T18365] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1014.800890][T18365] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1014.810186][T18365] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1014.830919][T18365] usb 1-1: config 0 descriptor??
[ 1014.874853][T18689] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 1015.048380][T18365] hub 1-1:0.0: USB hub found
[ 1015.053355][ T9764] usb 3-1: USB disconnect, device number 61
[ 1015.059841][ T9764] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1015.077499][ T9764] ftdi_sio 3-1:0.0: device disconnected
[ 1015.123861][  T485] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[ 1015.403010][   T26] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[ 1015.468335][  T485] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1015.486587][  T485] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1015.505564][  T485] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1015.524123][  T485] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1015.538878][  T485] usb 2-1: config 0 descriptor??
[ 1015.636430][   T26] usb 4-1: Using ep0 maxpacket: 8
[ 1015.794670][   T26] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1015.858760][T18721] overlayfs: failed to resolve './file1': -2
[ 1015.987381][ T9764] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[ 1015.995770][   T30] audit: type=1400 audit(2000000964.931:11855): avc:  denied  { mounton } for  pid=18696 comm="syz.1.5036" path="/proc/143/task" dev="proc" ino=123094 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[ 1016.018666][   T26] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1016.027553][   T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1016.035464][   T26] usb 4-1: Product: syz
[ 1016.039517][   T26] usb 4-1: Manufacturer: syz
[ 1016.043879][   T26] usb 4-1: SerialNumber: syz
[ 1016.213947][  T485] usbhid 2-1:0.0: can't add hid device: -71
[ 1016.219787][  T485] usbhid: probe of 2-1:0.0 failed with error -71
[ 1016.228608][  T485] usb 2-1: USB disconnect, device number 65
[ 1016.251203][ T9764] usb 3-1: Using ep0 maxpacket: 8
[ 1016.381738][ T9764] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1016.500564][T18724] loop4: detected capacity change from 0 to 1024
[ 1016.568189][ T9764] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1016.577759][T18724] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1016.584032][ T9764] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1016.587564][T18724] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1016.594956][ T9764] usb 3-1: Product: syz
[ 1016.602335][T18724] EXT4-fs (loop4): Ignoring removed orlov option
[ 1016.609316][ T9764] usb 3-1: Manufacturer: syz
[ 1016.614640][T18724] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1016.616724][ T9764] usb 3-1: SerialNumber: syz
[ 1016.745176][T18365] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1016.846342][T18734] overlayfs: failed to resolve './file0': -2
[ 1017.071987][T18365] usbhid 1-1:0.0: can't add hid device: -71
[ 1017.077764][T18365] usbhid: probe of 1-1:0.0 failed with error -71
[ 1017.118259][T18365] usb 1-1: USB disconnect, device number 67
[ 1017.164618][   T26] cdc_ncm 4-1:1.0: MAC-Address: 42:42:42:42:42:42
[ 1017.170887][   T26] cdc_ncm 4-1:1.0: setting tx_max = 184
[ 1017.409312][   T26] cdc_ncm 4-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.3-1, CDC NCM, 42:42:42:42:42:42
[ 1017.464284][   T26] usb 4-1: USB disconnect, device number 78
[ 1017.482967][   T26] cdc_ncm 4-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.3-1, CDC NCM
[ 1017.593168][   T30] audit: type=1400 audit(2000000966.648:11856): avc:  denied  { read } for  pid=18755 comm="syz.0.5048" name="loop-control" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[ 1017.628719][T18756] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5048'.
[ 1017.637786][   T30] audit: type=1400 audit(2000000966.648:11857): avc:  denied  { open } for  pid=18755 comm="syz.0.5048" path="/dev/loop-control" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[ 1017.793918][T18747] loop4: detected capacity change from 0 to 40427
[ 1017.807888][ T9764] cdc_ncm 3-1:1.0: MAC-Address: 42:42:42:42:42:42
[ 1017.814424][ T9764] cdc_ncm 3-1:1.0: setting tx_max = 184
[ 1017.819781][T18747] F2FS-fs (loop4): invalid crc value
[ 1017.830856][T18747] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1017.938777][T18747] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1018.178167][ T9764] cdc_ncm 3-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.2-1, CDC NCM, 42:42:42:42:42:42
[ 1018.191519][ T9764] usb 3-1: USB disconnect, device number 62
[ 1018.200461][ T9764] cdc_ncm 3-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.2-1, CDC NCM
[ 1018.437870][    C1] eth0: bad gso: type: 1, size: 1408
[ 1018.624751][T18827] loop2: detected capacity change from 0 to 512
[ 1018.637965][   T26] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[ 1018.709714][T18827] EXT4-fs (loop2): 1 truncate cleaned up
[ 1018.718325][T18827] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1018.867793][T18833] overlayfs: failed to resolve './file0': -2
[ 1019.483005][   T30] audit: type=1400 audit(2000000968.644:11858): avc:  denied  { read } for  pid=18826 comm="syz.2.5054" name="rtc0" dev="devtmpfs" ino=167 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1019.545025][   T30] audit: type=1400 audit(2000000968.644:11859): avc:  denied  { open } for  pid=18826 comm="syz.2.5054" path="/dev/rtc0" dev="devtmpfs" ino=167 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1019.568590][   T26] usb 2-1: Using ep0 maxpacket: 16
[ 1019.635021][   T30] audit: type=1400 audit(2000000968.665:11860): avc:  denied  { ioctl } for  pid=18826 comm="syz.2.5054" path="/dev/rtc0" dev="devtmpfs" ino=167 ioctlcmd=0x700f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1019.695065][T18844] loop4: detected capacity change from 0 to 256
[ 1019.720038][T18846] loop2: detected capacity change from 0 to 256
[ 1019.814334][T18847] overlayfs: failed to resolve './file0': -2
[ 1020.222722][T18844] exfat: Unknown parameter ''
[ 1020.431509][T18846] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1020.604527][   T26] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 1020.667572][   T26] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1020.669587][T18858] FAULT_INJECTION: forcing a failure.
[ 1020.669587][T18858] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1020.675714][   T26] usb 2-1: Product: syz
[ 1020.692289][   T26] usb 2-1: Manufacturer: syz
[ 1020.696672][   T26] usb 2-1: SerialNumber: syz
[ 1020.703275][   T26] usb 2-1: config 0 descriptor??
[ 1020.708138][T18858] CPU: 1 PID: 18858 Comm: syz.4.5065 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[ 1020.719236][T18858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1020.729124][T18858] Call Trace:
[ 1020.732283][T18858]  <TASK>
[ 1020.732296][T18858]  dump_stack_lvl+0x151/0x1c0
[ 1020.732322][T18858]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1020.745091][T18858]  ? task_rq_lock+0xd2/0x2b0
[ 1020.749521][T18858]  dump_stack+0x15/0x20
[ 1020.753506][T18858]  should_fail+0x3c6/0x510
[ 1020.757759][T18858]  should_fail_usercopy+0x1a/0x20
[ 1020.762619][T18858]  _copy_to_user+0x20/0x90
[ 1020.766871][T18858]  __htab_map_lookup_and_delete_batch+0x1c08/0x1eb0
[ 1020.773298][T18858]  ? htab_free_prealloced_timers+0x2e0/0x2e0
[ 1020.779110][T18858]  htab_percpu_map_lookup_batch+0x30/0x40
[ 1020.784705][T18858]  ? __htab_percpu_map_update_elem+0x600/0x600
[ 1020.790667][T18858]  bpf_map_do_batch+0x2dc/0x620
[ 1020.795606][T18858]  __sys_bpf+0x5dc/0x760
[ 1020.799684][T18858]  ? fput_many+0x160/0x1b0
[ 1020.803935][T18858]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[ 1020.809146][T18858]  ? debug_smp_processor_id+0x17/0x20
[ 1020.814349][T18858]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1020.820253][T18858]  __x64_sys_bpf+0x7c/0x90
[ 1020.824505][T18858]  x64_sys_call+0x87f/0x9a0
[ 1020.828843][T18858]  do_syscall_64+0x3b/0xb0
[ 1020.833099][T18858]  ? clear_bhb_loop+0x35/0x90
[ 1020.837608][T18858]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1020.843337][T18858] RIP: 0033:0x7f4eedcd7ff9
[ 1020.847592][T18858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1020.867043][T18858] RSP: 002b:00007f4eec951038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1020.875284][T18858] RAX: ffffffffffffffda RBX: 00007f4eede8ff80 RCX: 00007f4eedcd7ff9
[ 1020.883100][T18858] RDX: 0000000000000038 RSI: 0000000020000080 RDI: 0000000000000018
[ 1020.890900][T18858] RBP: 00007f4eec951090 R08: 0000000000000000 R09: 0000000000000000
[ 1020.898712][T18858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1020.906529][T18858] R13: 0000000000000000 R14: 00007f4eede8ff80 R15: 00007ffd2715e718
[ 1020.914340][T18858]  </TASK>
[ 1020.995438][ T9773] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[ 1021.009723][T18867] loop2: detected capacity change from 0 to 256
[ 1021.016480][   T26] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[ 1021.024309][   T26] usb 2-1: Detected FT232H
[ 1021.089284][T18869] overlayfs: failed to resolve './file1': -2
[ 1021.163522][T18867] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1021.255476][   T26] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1021.274918][   T26] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1021.291582][T18876] loop1: detected capacity change from 0 to 512
[ 1021.293587][   T26] ftdi_sio 2-1:0.0: GPIO initialisation failed: -71
[ 1021.304553][   T26] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1021.315556][   T26] usb 2-1: USB disconnect, device number 66
[ 1021.351910][   T26] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1021.362402][   T26] ftdi_sio 2-1:0.0: device disconnected
[ 1021.516571][ T9764] usb 5-1: new high-speed USB device number 72 using dummy_hcd
[ 1021.536717][T18876] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.5070: invalid indirect mapped block 256 (level 2)
[ 1021.550429][T18876] EXT4-fs (loop1): 2 truncates cleaned up
[ 1021.556437][T18876] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1021.601177][ T9773] usb 4-1: Using ep0 maxpacket: 16
[ 1021.619004][T18876] FAULT_INJECTION: forcing a failure.
[ 1021.619004][T18876] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1021.632141][T18876] CPU: 1 PID: 18876 Comm: syz.1.5070 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[ 1021.643310][T18876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1021.653206][T18876] Call Trace:
[ 1021.656331][T18876]  <TASK>
[ 1021.659113][T18876]  dump_stack_lvl+0x151/0x1c0
[ 1021.663621][T18876]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1021.669092][T18876]  dump_stack+0x15/0x20
[ 1021.673079][T18876]  should_fail+0x3c6/0x510
[ 1021.677341][T18876]  should_fail_usercopy+0x1a/0x20
[ 1021.682192][T18876]  _copy_from_user+0x20/0xd0
[ 1021.686619][T18876]  strndup_user+0xb3/0x150
[ 1021.690876][T18876]  __se_sys_mount+0x9b/0x3b0
[ 1021.695299][T18876]  ? __x64_sys_mount+0xd0/0xd0
[ 1021.699900][T18876]  ? debug_smp_processor_id+0x17/0x20
[ 1021.705106][T18876]  __x64_sys_mount+0xbf/0xd0
[ 1021.709532][T18876]  x64_sys_call+0x49d/0x9a0
[ 1021.713873][T18876]  do_syscall_64+0x3b/0xb0
[ 1021.718133][T18876]  ? clear_bhb_loop+0x35/0x90
[ 1021.722638][T18876]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1021.728378][T18876] RIP: 0033:0x7f7af126cff9
[ 1021.732625][T18876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1021.752063][T18876] RSP: 002b:00007f7aefee6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1021.760306][T18876] RAX: ffffffffffffffda RBX: 00007f7af1424f80 RCX: 00007f7af126cff9
[ 1021.768212][T18876] RDX: 0000000020000200 RSI: 0000000020000040 RDI: 0000000020000140
[ 1021.776017][T18876] RBP: 00007f7aefee6090 R08: 0000000000000000 R09: 0000000000000000
[ 1021.783853][T18876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1021.791643][T18876] R13: 0000000000000000 R14: 00007f7af1424f80 R15: 00007fff52ff4398
[ 1021.799454][T18876]  </TASK>
[ 1021.899929][ T9773] usb 4-1: config index 0 descriptor too short (expected 192, got 92)
[ 1021.926786][ T9773] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1021.930613][T18893] loop1: detected capacity change from 0 to 1024
[ 1021.936825][ T9764] usb 5-1: Using ep0 maxpacket: 32
[ 1021.955552][ T9773] usb 4-1: config 0 has no interfaces?
[ 1021.966077][T18893] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1021.979915][T18893] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1021.998715][T18893] EXT4-fs (loop1): Ignoring removed orlov option
[ 1022.024760][T18893] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,errors=remount-ro,test_dummy_encryption,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,noquota,data_err=abort,. Quota mode: writeback.
[ 1022.132548][ T9773] usb 4-1: New USB device found, idVendor=0525, idProduct=9ea1, bcdDevice= 0.40
[ 1022.143702][ T9773] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1022.151677][ T9773] usb 4-1: Product: syz
[ 1022.155716][ T9773] usb 4-1: Manufacturer: syz
[ 1022.160121][ T9773] usb 4-1: SerialNumber: syz
[ 1022.169233][ T9773] usb 4-1: config 0 descriptor??
[ 1022.177777][T18897] overlayfs: failed to resolve './file0': -2
[ 1022.262963][ T9764] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[ 1022.277080][ T9764] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1022.294113][ T9764] usb 5-1: Product: syz
[ 1022.302253][ T9764] usb 5-1: Manufacturer: syz
[ 1022.310645][ T9764] usb 5-1: SerialNumber: syz
[ 1022.321439][ T9764] usb 5-1: config 0 descriptor??
[ 1022.401872][   T30] audit: type=1400 audit(2000000971.809:11861): avc:  denied  { accept } for  pid=18898 comm="syz.0.5075" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1022.469727][ T9773] usb 4-1: USB disconnect, device number 79
[ 1022.813025][T18911] FAULT_INJECTION: forcing a failure.
[ 1022.813025][T18911] name failslab, interval 1, probability 0, space 0, times 0
[ 1022.828253][T18911] CPU: 0 PID: 18911 Comm: syz.1.5078 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[ 1022.839460][T18911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1022.849347][T18911] Call Trace:
[ 1022.852471][T18911]  <TASK>
[ 1022.855247][T18911]  dump_stack_lvl+0x151/0x1c0
[ 1022.859763][T18911]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1022.865231][T18911]  dump_stack+0x15/0x20
[ 1022.869220][T18911]  should_fail+0x3c6/0x510
[ 1022.873474][T18911]  __should_failslab+0xa4/0xe0
[ 1022.878074][T18911]  ? __build_skb+0x2a/0x300
[ 1022.882415][T18911]  should_failslab+0x9/0x20
[ 1022.886752][T18911]  slab_pre_alloc_hook+0x37/0xd0
[ 1022.891529][T18911]  ? __build_skb+0x2a/0x300
[ 1022.895866][T18911]  kmem_cache_alloc+0x44/0x200
[ 1022.900468][T18911]  __build_skb+0x2a/0x300
[ 1022.904641][T18911]  build_skb+0x25/0x1f0
[ 1022.908629][T18911]  tun_get_user+0x1c7e/0x3aa0
[ 1022.913146][T18911]  ? __x64_sys_openat+0x1c0/0x290
[ 1022.918007][T18911]  ? tun_do_read+0x2010/0x2010
[ 1022.922597][T18911]  ? kstrtouint_from_user+0x20a/0x2a0
[ 1022.927806][T18911]  ? kstrtol_from_user+0x310/0x310
[ 1022.932756][T18911]  ? avc_policy_seqno+0x1b/0x70
[ 1022.937442][T18911]  ? selinux_file_permission+0x2c4/0x570
[ 1022.942909][T18911]  tun_chr_write_iter+0x1e1/0x2e0
[ 1022.947771][T18911]  vfs_write+0xd5d/0x1110
[ 1022.951940][T18911]  ? file_end_write+0x1c0/0x1c0
[ 1022.956625][T18911]  ? __fdget_pos+0x209/0x3a0
[ 1022.961048][T18911]  ? ksys_write+0x77/0x2c0
[ 1022.965304][T18911]  ksys_write+0x199/0x2c0
[ 1022.969470][T18911]  ? __ia32_sys_read+0x90/0x90
[ 1022.974075][T18911]  ? debug_smp_processor_id+0x17/0x20
[ 1022.979279][T18911]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1022.985178][T18911]  __x64_sys_write+0x7b/0x90
[ 1022.989602][T18911]  x64_sys_call+0x2f/0x9a0
[ 1022.993854][T18911]  do_syscall_64+0x3b/0xb0
[ 1022.998105][T18911]  ? clear_bhb_loop+0x35/0x90
[ 1023.002620][T18911]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1023.008348][T18911] RIP: 0033:0x7f7af126badf
[ 1023.012605][T18911] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[ 1023.032045][T18911] RSP: 002b:00007f7aefee6000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1023.040288][T18911] RAX: ffffffffffffffda RBX: 00007f7af1424f80 RCX: 00007f7af126badf
[ 1023.048099][T18911] RDX: 000000000000003e RSI: 00000000200000c0 RDI: 00000000000000c8
[ 1023.055912][T18911] RBP: 00007f7aefee6090 R08: 0000000000000000 R09: 0000000000000000
[ 1023.063721][T18911] R10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001
[ 1023.071535][T18911] R13: 0000000000000000 R14: 00007f7af1424f80 R15: 00007fff52ff4398
[ 1023.079353][T18911]  </TASK>
[ 1023.394995][T18918] overlayfs: failed to resolve './file1': -2
[ 1023.471319][T18924] loop2: detected capacity change from 0 to 512
[ 1023.541061][T18924] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[ 1023.566764][T18924] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[ 1024.786566][T18924] A link change request failed with some changes committed already. Interface sit1 may have been left with an inconsistent configuration, please check.
[ 1024.811725][T18924] tipc: Started in network mode
[ 1024.821214][T18924] tipc: Node identity 2666d77f964f, cluster identity 4711
[ 1024.836054][T18924] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1024.854392][T18921] tipc: Disabling bearer <eth:syzkaller0>
[ 1024.920327][T18943] syz.2.5087[18943] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1024.920430][T18943] syz.2.5087[18943] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1024.932839][T18943] FAULT_INJECTION: forcing a failure.
[ 1024.932839][T18943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1024.957056][T18943] CPU: 0 PID: 18943 Comm: syz.2.5087 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[ 1024.968242][T18943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1024.978132][T18943] Call Trace:
[ 1024.981263][T18943]  <TASK>
[ 1024.984038][T18943]  dump_stack_lvl+0x151/0x1c0
[ 1024.988558][T18943]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1024.994017][T18943]  ? kasan_set_track+0x5d/0x70
[ 1024.998616][T18943]  ? kasan_set_track+0x4b/0x70
[ 1025.003214][T18943]  ? kasan_set_free_info+0x23/0x40
[ 1025.008161][T18943]  ? __kasan_slab_free+0x11/0x20
[ 1025.012935][T18943]  dump_stack+0x15/0x20
[ 1025.016931][T18943]  should_fail+0x3c6/0x510
[ 1025.021181][T18943]  should_fail_usercopy+0x1a/0x20
[ 1025.026040][T18943]  strncpy_from_user+0x24/0x2d0
[ 1025.030729][T18943]  strncpy_from_user_nofault+0x73/0x150
[ 1025.036110][T18943]  bpf_probe_read_user_str+0x2a/0x70
[ 1025.041236][T18943]  bpf_prog_b1bc9f7c1f89903c+0x38/0xc64
[ 1025.046612][T18943]  bpf_trace_run3+0x11e/0x250
[ 1025.051123][T18943]  ? bpf_trace_run2+0x210/0x210
[ 1025.055818][T18943]  ? kfree_skbmem+0x104/0x170
[ 1025.060333][T18943]  ? kasan_quarantine_put+0x34/0x1a0
[ 1025.065452][T18943]  ? kfree_skbmem+0x104/0x170
[ 1025.069961][T18943]  ? kfree_skbmem+0x104/0x170
[ 1025.074476][T18943]  __bpf_trace_kmem_cache_free+0x99/0xc0
[ 1025.079943][T18943]  ? kfree_skbmem+0x104/0x170
[ 1025.084455][T18943]  __traceiter_kmem_cache_free+0x32/0x50
[ 1025.089926][T18943]  kmem_cache_free+0x2c3/0x2e0
[ 1025.094524][T18943]  kfree_skbmem+0x104/0x170
[ 1025.098862][T18943]  ? tsk_advance_rx_queue+0x10a/0x260
[ 1025.104069][T18943]  kfree_skb+0xc2/0x360
[ 1025.108063][T18943]  tsk_advance_rx_queue+0x10a/0x260
[ 1025.113097][T18943]  tipc_recvmsg+0xb9a/0x13b0
[ 1025.117610][T18943]  ? tipc_send_packet+0xa0/0xa0
[ 1025.122298][T18943]  ? security_socket_recvmsg+0x87/0xb0
[ 1025.127591][T18943]  ? tipc_send_packet+0xa0/0xa0
[ 1025.132281][T18943]  ____sys_recvmsg+0x286/0x530
[ 1025.136884][T18943]  ? __sys_recvmsg_sock+0x50/0x50
[ 1025.141739][T18943]  ? import_iovec+0xe5/0x120
[ 1025.146163][T18943]  ___sys_recvmsg+0x1ec/0x690
[ 1025.150827][T18943]  ? __sys_recvmsg+0x260/0x260
[ 1025.155428][T18943]  ? __fdget+0x1bc/0x240
[ 1025.159504][T18943]  __x64_sys_recvmsg+0x1dc/0x2b0
[ 1025.164279][T18943]  ? ___sys_recvmsg+0x690/0x690
[ 1025.168966][T18943]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 1025.174873][T18943]  ? exit_to_user_mode_prepare+0x39/0xa0
[ 1025.180335][T18943]  x64_sys_call+0x171/0x9a0
[ 1025.184675][T18943]  do_syscall_64+0x3b/0xb0
[ 1025.188925][T18943]  ? clear_bhb_loop+0x35/0x90
[ 1025.193449][T18943]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1025.199169][T18943] RIP: 0033:0x7f36b1c14ff9
[ 1025.203423][T18943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1025.222864][T18943] RSP: 002b:00007f36b088e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[ 1025.231108][T18943] RAX: ffffffffffffffda RBX: 00007f36b1dccf80 RCX: 00007f36b1c14ff9
[ 1025.238920][T18943] RDX: 0000000000000000 RSI: 0000000020000b00 RDI: 0000000000000005
[ 1025.246817][T18943] RBP: 00007f36b088e090 R08: 0000000000000000 R09: 0000000000000000
[ 1025.254628][T18943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1025.262440][T18943] R13: 0000000000000000 R14: 00007f36b1dccf80 R15: 00007fff84cd7838
[ 1025.270259][T18943]  </TASK>
[ 1025.553083][ T9773] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[ 1025.963203][ T9773] usb 4-1: Using ep0 maxpacket: 8
[ 1026.075109][ T9773] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1026.130917][ T2017] usb 2-1: new high-speed USB device number 67 using dummy_hcd
[ 1026.233732][ T9773] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1026.242842][ T9773] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1026.250820][ T9773] usb 4-1: Product: syz
[ 1026.254884][ T9773] usb 4-1: Manufacturer: syz
[ 1026.259260][ T9773] usb 4-1: SerialNumber: syz
[ 1026.341550][T18976] loop4: detected capacity change from 0 to 512
[ 1026.424813][T18978] overlayfs: failed to resolve './file1': -2
[ 1026.495028][ T2017] usb 2-1: Using ep0 maxpacket: 16
[ 1026.525748][T18976] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[ 1026.534990][T18976] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[ 1026.640662][T18976] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1026.649143][T18975] tipc: Disabling bearer <eth:syzkaller0>
[ 1026.684414][T18982] syz.4.5100[18982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1026.684496][T18982] syz.4.5100[18982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1026.696976][   T30] audit: type=1400 audit(2000000976.422:11862): avc:  denied  { ioctl } for  pid=18981 comm="syz.4.5100" path="socket:[123987]" dev="sockfs" ino=123987 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1026.733210][T18365] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[ 1026.775375][ T2017] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 1026.785051][ T2017] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1026.796906][ T2017] usb 2-1: Product: syz
[ 1026.800934][ T2017] usb 2-1: Manufacturer: syz
[ 1026.805813][ T2017] usb 2-1: SerialNumber: syz
[ 1026.811066][ T2017] usb 2-1: config 0 descriptor??
[ 1026.858753][ T2017] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[ 1026.866560][ T2017] usb 2-1: Detected FT232H
[ 1026.960707][T18365] usb 1-1: Using ep0 maxpacket: 8
[ 1027.053844][ T2017] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1027.072492][T18365] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1027.185649][T18996] loop2: detected capacity change from 0 to 1024
[ 1027.240596][T18996] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1027.242896][T18365] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1027.247926][T18996] EXT4-fs (loop2): Ignoring removed orlov option
[ 1027.257131][T18365] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1027.270925][T18365] usb 1-1: Product: syz
[ 1027.275067][T18365] usb 1-1: Manufacturer: syz
[ 1027.276837][T18996] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,sysvgroups,commit=0x0000000000000005,orlov,nobarrier,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1027.279519][T18365] usb 1-1: SerialNumber: syz
[ 1027.380209][ T9773] cdc_ncm 4-1:1.0: MAC-Address: 42:42:42:42:42:42
[ 1027.386559][ T9773] cdc_ncm 4-1:1.0: setting tx_max = 184
[ 1027.505597][T18970] loop1: detected capacity change from 0 to 256
[ 1027.628209][ T9773] cdc_ncm 4-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.3-1, CDC NCM, 42:42:42:42:42:42
[ 1027.634669][   T30] audit: type=1400 audit(2000000977.420:11863): avc:  denied  { watch } for  pid=18969 comm="syz.1.5094" path="/61/file0" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[ 1027.641743][ T9773] usb 4-1: USB disconnect, device number 80
[ 1027.675336][ T9773] cdc_ncm 4-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.3-1, CDC NCM
[ 1027.683720][ T9764] rtl8150 5-1:0.0: couldn't reset the device
[ 1027.689625][ T2017] ftdi_sio 2-1:0.0: GPIO initialisation failed: -5
[ 1027.696341][ T2017] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1027.704433][ T9764] rtl8150: probe of 5-1:0.0 failed with error -5
[ 1027.730495][ T9764] usb 5-1: USB disconnect, device number 72
[ 1027.745551][ T9778] ==================================================================
[ 1027.753526][ T9778] BUG: KASAN: use-after-free in worker_thread+0xaaa/0x12a0
[ 1027.760551][ T9778] Read of size 8 at addr ffff88810fac4c60 by task kworker/0:22/9778
[ 1027.768365][ T9778] 
[ 1027.770541][ T9778] CPU: 0 PID: 9778 Comm: kworker/0:22 Tainted: G        W         5.15.165-syzkaller-01568-g80dd36dca275 #0
[ 1027.781816][ T9778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1027.791720][ T9778] Workqueue:  0x0 (wg-crypt-wg0)
[ 1027.796486][ T9778] Call Trace:
[ 1027.799613][ T9778]  <TASK>
[ 1027.802389][ T9778]  dump_stack_lvl+0x151/0x1c0
[ 1027.806903][ T9778]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1027.812368][ T9778]  ? panic+0x760/0x760
[ 1027.816273][ T9778]  ? __schedule+0xcd4/0x1590
[ 1027.820701][ T9778]  print_address_description+0x87/0x3b0
[ 1027.826085][ T9778]  kasan_report+0x179/0x1c0
[ 1027.830539][ T9778]  ? _raw_spin_lock_irqsave+0x210/0x210
[ 1027.835910][ T9778]  ? worker_thread+0xaaa/0x12a0
[ 1027.840597][ T9778]  ? worker_thread+0xaaa/0x12a0
[ 1027.845281][ T9778]  __asan_report_load8_noabort+0x14/0x20
[ 1027.850749][ T9778]  worker_thread+0xaaa/0x12a0
[ 1027.855286][ T9778]  kthread+0x421/0x510
[ 1027.859167][ T9778]  ? worker_clr_flags+0x180/0x180
[ 1027.864029][ T9778]  ? kthread_blkcg+0xd0/0xd0
[ 1027.868454][ T9778]  ret_from_fork+0x1f/0x30
[ 1027.872710][ T9778]  </TASK>
[ 1027.875573][ T9778] 
[ 1027.877746][ T9778] Allocated by task 9773:
[ 1027.881910][ T9778]  ____kasan_kmalloc+0xdb/0x110
[ 1027.886594][ T9778]  __kasan_kmalloc+0x9/0x10
[ 1027.890937][ T9778]  __kmalloc+0x13a/0x270
[ 1027.895011][ T9778]  kvmalloc_node+0x1f0/0x4d0
[ 1027.899497][ T9778]  alloc_netdev_mqs+0x8c/0xc90
[ 1027.904150][ T9778]  alloc_etherdev_mqs+0x33/0x40
[ 1027.908828][ T9778]  usbnet_probe+0x1ff/0x2830
[ 1027.913263][ T9778]  usb_probe_interface+0x5b6/0xa90
[ 1027.918202][ T9778]  really_probe+0x28d/0x970
[ 1027.922543][ T9778]  __driver_probe_device+0x1a0/0x310
[ 1027.927664][ T9778]  driver_probe_device+0x54/0x3d0
[ 1027.932523][ T9778]  __device_attach_driver+0x2c5/0x470
[ 1027.937820][ T9778]  bus_for_each_drv+0x183/0x200
[ 1027.942507][ T9778]  __device_attach+0x312/0x510
[ 1027.947106][ T9778]  device_initial_probe+0x1a/0x20
[ 1027.951967][ T9778]  bus_probe_device+0xbe/0x1e0
[ 1027.956565][ T9778]  device_add+0xb60/0xf10
[ 1027.960818][ T9778]  usb_set_configuration+0x190f/0x1e80
[ 1027.966111][ T9778]  usb_generic_driver_probe+0x8b/0x150
[ 1027.971495][ T9778]  usb_probe_device+0x144/0x260
[ 1027.976180][ T9778]  really_probe+0x28d/0x970
[ 1027.980521][ T9778]  __driver_probe_device+0x1a0/0x310
[ 1027.985643][ T9778]  driver_probe_device+0x54/0x3d0
[ 1027.990501][ T9778]  __device_attach_driver+0x2c5/0x470
[ 1027.995709][ T9778]  bus_for_each_drv+0x183/0x200
[ 1028.000397][ T9778]  __device_attach+0x312/0x510
[ 1028.004998][ T9778]  device_initial_probe+0x1a/0x20
[ 1028.009856][ T9778]  bus_probe_device+0xbe/0x1e0
[ 1028.014492][ T9778]  device_add+0xb60/0xf10
[ 1028.018622][ T9778]  usb_new_device+0x1038/0x1c00
[ 1028.023309][ T9778]  hub_event+0x2def/0x4770
[ 1028.027563][ T9778]  process_one_work+0x6bb/0xc10
[ 1028.032251][ T9778]  worker_thread+0xad5/0x12a0
[ 1028.036763][ T9778]  kthread+0x421/0x510
[ 1028.040669][ T9778]  ret_from_fork+0x1f/0x30
[ 1028.044922][ T9778] 
[ 1028.047090][ T9778] Freed by task 9773:
[ 1028.050998][ T9778]  kasan_set_track+0x4b/0x70
[ 1028.055426][ T9778]  kasan_set_free_info+0x23/0x40
[ 1028.060196][ T9778]  ____kasan_slab_free+0x126/0x160
[ 1028.065144][ T9778]  __kasan_slab_free+0x11/0x20
[ 1028.069743][ T9778]  slab_free_freelist_hook+0xbd/0x190
[ 1028.074952][ T9778]  kfree+0xc8/0x220
[ 1028.078597][ T9778]  kvfree+0x35/0x40
[ 1028.082242][ T9778]  netdev_freemem+0x3f/0x60
[ 1028.086827][ T9778]  netdev_release+0x7f/0xb0
[ 1028.091164][ T9778]  device_release+0x95/0x1c0
[ 1028.095675][ T9778]  kobject_put+0x178/0x260
[ 1028.099929][ T9778]  put_device+0x1f/0x30
[ 1028.103918][ T9778]  free_netdev+0x34f/0x440
[ 1028.108172][ T9778]  usbnet_disconnect+0x245/0x390
[ 1028.112945][ T9778]  usb_unbind_interface+0x1fa/0x8c0
[ 1028.117979][ T9778]  device_release_driver_internal+0x50b/0x7d0
[ 1028.123889][ T9778]  device_release_driver+0x19/0x20
[ 1028.128830][ T9778]  bus_remove_device+0x2f8/0x360
[ 1028.133605][ T9778]  device_del+0x663/0xe90
[ 1028.137775][ T9778]  usb_disable_device+0x380/0x720
[ 1028.142630][ T9778]  usb_disconnect+0x32a/0x890
[ 1028.147141][ T9778]  hub_event+0x1d42/0x4770
[ 1028.151395][ T9778]  process_one_work+0x6bb/0xc10
[ 1028.156081][ T9778]  worker_thread+0xe02/0x12a0
[ 1028.160594][ T9778]  kthread+0x421/0x510
[ 1028.164503][ T9778]  ret_from_fork+0x1f/0x30
[ 1028.168753][ T9778] 
[ 1028.170922][ T9778] Last potentially related work creation:
[ 1028.176479][ T9778]  kasan_save_stack+0x3b/0x60
[ 1028.180993][ T9778]  __kasan_record_aux_stack+0xd3/0xf0
[ 1028.186199][ T9778]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 1028.191841][ T9778]  insert_work+0x56/0x320
[ 1028.196006][ T9778]  __queue_work+0x92a/0xcd0
[ 1028.200351][ T9778]  queue_work_on+0x105/0x170
[ 1028.204773][ T9778]  usbnet_link_change+0xeb/0x100
[ 1028.209551][ T9778]  usbnet_probe+0x1dd3/0x2830
[ 1028.214062][ T9778]  usb_probe_interface+0x5b6/0xa90
[ 1028.219010][ T9778]  really_probe+0x28d/0x970
[ 1028.223347][ T9778]  __driver_probe_device+0x1a0/0x310
[ 1028.228467][ T9778]  driver_probe_device+0x54/0x3d0
[ 1028.233328][ T9778]  __device_attach_driver+0x2c5/0x470
[ 1028.238537][ T9778]  bus_for_each_drv+0x183/0x200
[ 1028.243227][ T9778]  __device_attach+0x312/0x510
[ 1028.247822][ T9778]  device_initial_probe+0x1a/0x20
[ 1028.252701][ T9778]  bus_probe_device+0xbe/0x1e0
[ 1028.257283][ T9778]  device_add+0xb60/0xf10
[ 1028.261452][ T9778]  usb_set_configuration+0x190f/0x1e80
[ 1028.266746][ T9778]  usb_generic_driver_probe+0x8b/0x150
[ 1028.272038][ T9778]  usb_probe_device+0x144/0x260
[ 1028.276811][ T9778]  really_probe+0x28d/0x970
[ 1028.281151][ T9778]  __driver_probe_device+0x1a0/0x310
[ 1028.286271][ T9778]  driver_probe_device+0x54/0x3d0
[ 1028.291133][ T9778]  __device_attach_driver+0x2c5/0x470
[ 1028.296342][ T9778]  bus_for_each_drv+0x183/0x200
[ 1028.301030][ T9778]  __device_attach+0x312/0x510
[ 1028.305628][ T9778]  device_initial_probe+0x1a/0x20
[ 1028.310492][ T9778]  bus_probe_device+0xbe/0x1e0
[ 1028.315088][ T9778]  device_add+0xb60/0xf10
[ 1028.319254][ T9778]  usb_new_device+0x1038/0x1c00
[ 1028.323941][ T9778]  hub_event+0x2def/0x4770
[ 1028.328193][ T9778]  process_one_work+0x6bb/0xc10
[ 1028.332881][ T9778]  worker_thread+0xad5/0x12a0
[ 1028.337394][ T9778]  kthread+0x421/0x510
[ 1028.341299][ T9778]  ret_from_fork+0x1f/0x30
[ 1028.345553][ T9778] 
[ 1028.347722][ T9778] The buggy address belongs to the object at ffff88810fac4000
[ 1028.347722][ T9778]  which belongs to the cache kmalloc-4k of size 4096
[ 1028.361698][ T9778] The buggy address is located 3168 bytes inside of
[ 1028.361698][ T9778]  4096-byte region [ffff88810fac4000, ffff88810fac5000)
[ 1028.374979][ T9778] The buggy address belongs to the page:
[ 1028.380459][ T9778] page:ffffea00043eb000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10fac0
[ 1028.390515][ T9778] head:ffffea00043eb000 order:3 compound_mapcount:0 compound_pincount:0
[ 1028.398671][ T9778] flags: 0x4000000000010200(slab|head|zone=1)
[ 1028.404581][ T9778] raw: 4000000000010200 dead000000000100 dead000000000122 ffff888100043380
[ 1028.412998][ T9778] raw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000
[ 1028.421411][ T9778] page dumped because: kasan: bad access detected
[ 1028.427671][ T9778] page_owner tracks the page as allocated
[ 1028.433216][ T9778] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d60c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 6947, ts 383085617564, free_ts 383080931505
[ 1028.455435][ T9778]  post_alloc_hook+0x1a3/0x1b0
[ 1028.460033][ T9778]  prep_new_page+0x1b/0x110
[ 1028.464372][ T9778]  get_page_from_freelist+0x3550/0x35d0
[ 1028.469754][ T9778]  __alloc_pages+0x27e/0x8f0
[ 1028.474181][ T9778]  new_slab+0x9a/0x4e0
[ 1028.478087][ T9778]  ___slab_alloc+0x39e/0x830
[ 1028.482515][ T9778]  __slab_alloc+0x4a/0x90
[ 1028.486679][ T9778]  __kmalloc+0x16d/0x270
[ 1028.490759][ T9778]  kvmalloc_node+0x1f0/0x4d0
[ 1028.495185][ T9778]  alloc_netdev_mqs+0x8c/0xc90
[ 1028.499785][ T9778]  rtnl_create_link+0x2e1/0x9d0
[ 1028.504472][ T9778]  rtnl_newlink+0x13dc/0x2050
[ 1028.508984][ T9778]  rtnetlink_rcv_msg+0x951/0xc40
[ 1028.513759][ T9778]  netlink_rcv_skb+0x1cf/0x410
[ 1028.518358][ T9778]  rtnetlink_rcv+0x1c/0x20
[ 1028.522610][ T9778]  netlink_unicast+0x8df/0xac0
[ 1028.527226][ T9778] page last free stack trace:
[ 1028.531725][ T9778]  free_unref_page_prepare+0x7c8/0x7d0
[ 1028.537020][ T9778]  free_unref_page+0xe8/0x750
[ 1028.541532][ T9778]  __free_pages+0x61/0xf0
[ 1028.545698][ T9778]  __free_slab+0xec/0x1d0
[ 1028.549867][ T9778]  __unfreeze_partials+0x165/0x1a0
[ 1028.554812][ T9778]  put_cpu_partial+0xc4/0x120
[ 1028.559325][ T9778]  __slab_free+0x1c8/0x290
[ 1028.563578][ T9778]  ___cache_free+0x109/0x120
[ 1028.568005][ T9778]  qlink_free+0x4d/0x90
[ 1028.571998][ T9778]  qlist_free_all+0x44/0xb0
[ 1028.576336][ T9778]  kasan_quarantine_reduce+0x15a/0x180
[ 1028.581631][ T9778]  __kasan_slab_alloc+0x2f/0xe0
[ 1028.586316][ T9778]  slab_post_alloc_hook+0x53/0x2c0
[ 1028.591265][ T9778]  kmem_cache_alloc+0xf5/0x200
[ 1028.595865][ T9778]  getname_flags+0xba/0x520
[ 1028.600204][ T9778]  getname+0x19/0x20
[ 1028.603938][ T9778] 
[ 1028.606106][ T9778] Memory state around the buggy address:
[ 1028.611578][ T9778]  ffff88810fac4b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1028.619475][ T9778]  ffff88810fac4b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1028.627376][ T9778] >ffff88810fac4c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1028.635404][ T9778]                                                        ^
[ 1028.642417][ T9778]  ffff88810fac4c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1028.650327][ T9778]  ffff88810fac4d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1028.658303][ T9778] ==================================================================
[ 1028.666197][ T9778] Disabling lock debugging due to kernel taint
[ 1028.738489][ T9778] usb 2-1: USB disconnect, device number 67
[ 1028.746497][ T9778] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1028.757515][ T9778] ftdi_sio 2-1:0.0: device disconnected
[ 1029.122845][T18365] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[ 1029.129106][T18365] cdc_ncm 1-1:1.0: setting tx_max = 184
[ 1029.320394][T18365] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM, 42:42:42:42:42:42
[ 1029.335343][T18365] usb 1-1: USB disconnect, device number 68
[ 1029.342618][T18365] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM