last executing test programs:

24m27.081315152s ago: executing program 32 (id=1876):
syz_open_dev$ttys(0xc, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e85"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0xa000, 0x1da)

24m26.336711452s ago: executing program 33 (id=1884):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000030000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000480), &(0x7f0000000080)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
utime(0x0, 0x0)

24m3.481284643s ago: executing program 34 (id=2079):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3)

23m49.380788s ago: executing program 35 (id=2203):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10)
setsockopt$inet_udp_int(r2, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
sendmmsg$inet(r2, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044)
sendmsg(r2, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000040)="fbe65dc390da7ee179a4", 0xa}, {&(0x7f0000000700)="fdc913c5fb15c710950f8e561c846edc4223d841cad2a2154e3bad5fc74c8e5172171929da09a2e314c77de173e154838fc39c1684ea331216706f4d645dc0aea3d0e06b72545914394805a2513f1cc11bea6266382e51a10d7021329f79eb6067dfb71729c45f1c6833a0c39fab03fe8b0287fb43941b186dca8a2566859bd9d703269b72961338b8770982f94f867fb9cbdfbad33279788d610dc62ac87a843b674dcd97fd1ac6cb09047da172", 0xae}, {&(0x7f0000000f40)="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", 0x445}], 0x3}, 0x40080)

16m52.640662101s ago: executing program 36 (id=5110):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x6, &(0x7f0000000040)=0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f00000001c0)=0x47)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x20182)
ioctl$USBDEVFS_ALLOW_SUSPEND(r2, 0x5522)
ioctl$USBDEVFS_BULK(r2, 0x5523, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x5522, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_ALLOW_SUSPEND(r1, 0x5522)
ioctl$USBDEVFS_SETINTERFACE(r1, 0x80045510, &(0x7f0000000000))
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x20})

15m37.648649617s ago: executing program 37 (id=5458):
readlinkat(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

14m31.845181473s ago: executing program 7 (id=5803):
timer_create(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
clock_getres(0x0, 0x0)
ppoll(0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)
setpriority(0x1, 0x0, 0x3)

14m31.546268356s ago: executing program 7 (id=5807):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000050000000200"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x32, 0x0, @rand_addr=0x64010101, @broadcast}, @timestamp_reply={0x11}}}}}, 0x0)

14m31.508094497s ago: executing program 7 (id=5808):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x66, &(0x7f00000002c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x30, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "00641a", 0x0, 0x3a, 0x0, @mcast1, @mcast1}}}}}}}, 0x0)

14m31.208296631s ago: executing program 7 (id=5809):
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x8, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
open(&(0x7f00000002c0)='./file0/file0\x00', 0x141840, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
open(&(0x7f0000000200)='./file0/file0\x00', 0x0, 0x0)

14m31.174935461s ago: executing program 7 (id=5811):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r2, &(0x7f0000000340), &(0x7f0000000f00)=""/161}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x1f, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
inotify_init1(0x80000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000480)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000140)={0x0, 0x2, 0x6, 0xd, 0x2000000000, 0x2000000000002, 0x95, 0x80000001, 0x7ffd})
socket$packet(0x11, 0x3, 0x300)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4d8, 0x0, 0x11, 0x148, 0x0, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x20000000, 0x3, 0x7, 0x0, 0x40}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x589)
getdents64(r4, &(0x7f0000001f00)=""/4093, 0xffd)

14m31.091978932s ago: executing program 7 (id=5814):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r5, &(0x7f0000000180), 0x400008a, 0x0)
pipe2$9p(&(0x7f0000000380)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r7}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000018c0)={0x0, 0x0, 0x0}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
dup(r6)
timer_create(0x5, &(0x7f0000000300)={0x0, 0x20, 0x0, @tid=r0}, &(0x7f0000000340))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
unshare(0x44040000)

14m31.073904722s ago: executing program 38 (id=5814):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r5, &(0x7f0000000180), 0x400008a, 0x0)
pipe2$9p(&(0x7f0000000380)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r7}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000018c0)={0x0, 0x0, 0x0}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
dup(r6)
timer_create(0x5, &(0x7f0000000300)={0x0, 0x20, 0x0, @tid=r0}, &(0x7f0000000340))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
unshare(0x44040000)

14m8.149513141s ago: executing program 5 (id=5957):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x4}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',fscache'])
chdir(&(0x7f0000000000)='./file0\x00')
mount$incfs(0x0, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40140, 0x101)

14m8.113732771s ago: executing program 5 (id=5958):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
io_setup(0x8, &(0x7f0000004200)=<r2=>0x0)
io_pgetevents(r2, 0x3, 0x3, &(0x7f0000000440)=[{}, {}, {}], &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

14m7.842377854s ago: executing program 5 (id=5959):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth0_to_team\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x48000, 0x0)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(0xffffffffffffffff, 0x4068aea3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x3c, 0x2, [@TCA_TBF_PBURST={0x8, 0x7, 0x577}, @TCA_TBF_BURST={0x8, 0x6, 0x40000000}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0xe0a2ff6baa7cc2d2}, {0xde, 0x0, 0x0, 0x0, 0x0, 0x100}, 0xffffffff}}]}}]}, 0x68}}, 0x4800)

14m6.510984632s ago: executing program 5 (id=5966):
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x8, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
open(&(0x7f00000002c0)='./file0/file0\x00', 0x141840, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
open(&(0x7f0000000200)='./file0/file0\x00', 0x0, 0x0)

14m6.462171122s ago: executing program 5 (id=5967):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000010c0)=@newlink={0x40, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2004, 0x1006}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IGNORE_DF={0x5, 0x13, 0x4}]}}}]}, 0x40}}, 0x40080c0)
r1 = openat$selinux_enforce(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffffffffffe65, 0x10, &(0x7f0000000540), 0xffffff95, 0x0, 0xffffffffffffffff, 0xd, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
ioprio_get$pid(0x0, r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000040), r1)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0200000004000000080000000100000080", @ANYRES32=0x0, @ANYBLOB="0300000000", @ANYRES32=0x0, @ANYBLOB='\x00'/11], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
sendto$inet6(r7, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)

14m6.241445026s ago: executing program 5 (id=5970):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
setrlimit(0x1, &(0x7f00000001c0)={0x7a44, 0x3})
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="01030000000000000000320000000c009900000000000000000007001801"], 0x28}}, 0x0)

14m6.024049898s ago: executing program 39 (id=5970):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
setrlimit(0x1, &(0x7f00000001c0)={0x7a44, 0x3})
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00'})
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="01030000000000000000320000000c009900000000000000000007001801"], 0x28}}, 0x0)

5m56.656627459s ago: executing program 9 (id=8776):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0xb, 0x5, 0x400, 0x7, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r3}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r4, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0)

5m56.62500918s ago: executing program 9 (id=8778):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='fdb_delete\x00', r1}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

5m56.59164331s ago: executing program 9 (id=8780):
socket(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
write$P9_RREMOVE(r4, &(0x7f00000002c0)={0x7, 0x7b, 0x2}, 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r6 = dup(r5)
connect$bt_rfcomm(r6, &(0x7f00000008c0)={0x1f, @none, 0x6}, 0xa)

5m55.314876249s ago: executing program 9 (id=8785):
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000300)=ANY=[@ANYRES32=r0], 0x15)
r1 = dup(r0)
write$FUSE_BMAP(r1, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)

5m55.258728059s ago: executing program 9 (id=8786):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
socket$key(0xf, 0x3, 0x2)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001040)=ANY=[@ANYBLOB="38010000100013070000000000000000ffffffff000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000ff0100000000000000000000000000010000000000000000862300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000159e000000000000000000000a000200000000000000000048000200656362286369706865725f6e756c6c29"], 0x138}, 0x1, 0xe}, 0x40000)

5m54.809434626s ago: executing program 9 (id=8787):
r0 = socket(0x1e, 0x4, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
dup3(r1, r0, 0x80000)
recvmmsg$unix(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000740)=""/128, 0x80}], 0x1}}], 0x1, 0x2101, 0x0)

5m54.809118826s ago: executing program 40 (id=8787):
r0 = socket(0x1e, 0x4, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
dup3(r1, r0, 0x80000)
recvmmsg$unix(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000740)=""/128, 0x80}], 0x1}}], 0x1, 0x2101, 0x0)

5m17.655567644s ago: executing program 3 (id=8974):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r2}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

5m17.642635964s ago: executing program 3 (id=8975):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}})

5m17.622409724s ago: executing program 3 (id=8976):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x801, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r2, 0x0, 0xe803, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10)
sendto$inet(r2, &(0x7f00000001c0), 0xfffffffffffffe58, 0x2000c094, 0x0, 0xffffffe6)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
splice(r2, 0x0, r3, 0x0, 0x100000000800, 0xb)

5m17.603852814s ago: executing program 3 (id=8977):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)

5m17.592781545s ago: executing program 3 (id=8978):
rename(0x0, &(0x7f0000001300)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r0 = socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5m17.529230746s ago: executing program 3 (id=8979):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x40000002}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
add_key(&(0x7f0000000140)='encrypted\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000020b600000000000000008500000053000000850000007d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r3, 0x1100100)
keyctl$chown(0x6, r3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0xfffffffffffffffe)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x40000000)

5m17.528966705s ago: executing program 41 (id=8979):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x40000002}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
add_key(&(0x7f0000000140)='encrypted\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000020b600000000000000008500000053000000850000007d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r3, 0x1100100)
keyctl$chown(0x6, r3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0xfffffffffffffffe)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x40000000)

5.013405228s ago: executing program 1 (id=10602):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x10, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x7, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0)

4.972043688s ago: executing program 1 (id=10604):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r4, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r5}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

4.85334739s ago: executing program 1 (id=10608):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000001f0900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x54}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000050a09000000000000000000020000000900010073797a30000000000900030073797a32"], 0x54}}, 0x0)

4.791052761s ago: executing program 1 (id=10610):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000480)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0/file0\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x3125899, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x202)

4.711598062s ago: executing program 1 (id=10613):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000001c0)={[{@lazytime}, {@nobh}, {@errors_remount}, {@block_validity}, {@max_batch_time}, {@delalloc}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}]}, 0xfc, 0x56d, &(0x7f00000002c0)="$eJzs3c9rG0cbAOB3ZTtx4nyfHQih7aEYcmhKGjm2+yOFHtJjaUMD7b0VtmKC5ShYcojdQJNDc+mlhEIpDZT23nuPoafe+lcE2kAowbSHXFRWXjlKLNmyI1tO9Dyw9szOSjOzu+8wq12hAPrWePonF/FyRHyTRIw2lQ1GVji+tt3qw+sz6ZJErfbJ30kk2brG9kn2fyTLvBQRv30VcSq3sd7K8sp8oVQqLmb5ierClYnK8srpSwuFueJc8fLU9PTZt6an3n3n7a719fUL/37/8d0Pzn59YvW7X+4fvZ3EuTiSlTX34xncaM6Mx3i2T4bi3FMbTnahsv0k6XUD2JGBLM6HIh0DRmMgi/qWaqN72TRgl32ZhjXQpxLxD32qMQ9oXNt36Tr4ufHg/bULoI39H1z7bCSG69dGh1eTJ66M0uvdsS7Un9bx6193bqdLdO9zCIAt3bgZEWcGBzeOf0k2/u3cmQ62eboO4x/snbvp/OeNVvOf3Pr8J1rMf0ZaxO5ObB3/uftdqKatdP73Xsv57/pNq7GBLPe/+pxvKLl4qVRMx7b/R8TJGDqY5je5n/N5bvVerV1h8/wvXdL6G3PBrB33Bw8++ZrZQrXwTJ1u8uBmxCst57/J+vFPWhz/dH9c6LCO48U7rz61an3nbt3/3VX7KeK1lsf/8R2tZPP7kxP182GicVZs9M+t43+0q7/X/U+P/+HN+z+WNN+vrWy/jh+HHxXble30/D+QfFpPH8jWXStUq4uTEQeSjzaun3r82ka+sX3a/5MnNh//Wp3/h9LA7rD/t47dat50eHv9311p/2e3dfy3n7j34Rc/tKu/s+P/Zj11MlvTyfjXaQOfZd8BAAAAAADAfpOLiCOR5PLr6Vwun197vuNYHM6VypXqqYvlpcuzUf+u7FgM5Rp3ukebnoeYzJ6HzfK/j2Tv3yifjoijEfHtwKF6Pj9TLs32uO8AAAAAAAAAAAAAAAAAAACwX4xEDLf6/n/qz4Fetw7YdZv85Dfwgmsf/1lJN37pCdiXmuJ/uJftAPae+T/0L/EP/Uv8Q/8S/9C/xD/0L/EP/Ws78f/z+V1sCAAAAAAAAAAAAAAAAAAAAAAAAAAAALwYLpw/ny611YfXZ9L87NXlpfny1dOzxcp8fmFpJj9TXrySnyuX50rF/Ex5Yav3K5XLVyanYunaRLVYqU5Ullc+WygvXX5UW1Mc2pNeAQAAAAAAAAAAAAAAAAAAwPOlsrwyXyiViosSEjtKDM4XnEgvYKLXIxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPPZfAAAA//8RVz43")
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000100), &(0x7f0000000180)=@v2={0x2000000, [{0x6, 0xdf21}, {0x9, 0xa}]}, 0x14, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x580000a, 0x13, r0, 0x0)
pwritev2(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)='\"', 0x1}], 0x1, 0x1002020, 0x1020884, 0x12)

4.609721724s ago: executing program 1 (id=10621):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10)
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000002d00)={0x0, 0x0, 0xffffffff})

4.561861294s ago: executing program 42 (id=10621):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10)
r2 = gettid()
rt_sigqueueinfo(r2, 0x21, &(0x7f0000002d00)={0x0, 0x0, 0xffffffff})

809.916919ms ago: executing program 2 (id=10776):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r2, &(0x7f0000000180), 0x40010)

809.557089ms ago: executing program 2 (id=10778):
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x48, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x48}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007801800018014000240"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000057c0)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private1}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000084)

798.330539ms ago: executing program 2 (id=10780):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000380)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffbff8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d40)=@base={0x12, 0x5, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, 0x0}, 0x20)

762.23292ms ago: executing program 2 (id=10782):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x17c, 0x19, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @empty}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, [@tmpl={0xc4, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x34ff}, {{@in6=@remote, 0x0, 0x3c}, 0x0, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x4}, {{@in6=@mcast2, 0x0, 0x6c}, 0x0, @in=@local, 0x0, 0x5, 0x3, 0x1, 0x101}]}]}, 0x17c}}, 0x4)

761.936329ms ago: executing program 2 (id=10784):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc2001}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0xb)
timer_getoverrun(0x0)

761.5565ms ago: executing program 2 (id=10786):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000640)="98", 0x1}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x0, 0x44, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r4}, 0x10)
recvfrom$unix(r2, &(0x7f00000002c0)=""/236, 0xec, 0x10120, 0x0, 0x0)

576.842032ms ago: executing program 8 (id=10799):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000640)={0x2c, r2, 0x1, 0xd0, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800)

562.791712ms ago: executing program 8 (id=10800):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%-010d \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2a240, 0x0)
fremovexattr(r2, &(0x7f00000004c0)=@known='trusted.overlay.redirect\x00')
clock_gettime(0x0, 0x0)

546.558612ms ago: executing program 8 (id=10801):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="f0ff00"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r1, 0xffffffffffffffff, 0x17, 0x0, @void}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x10000}, 0x18)
socket$inet(0x2, 0x3, 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000f00)={[{@shortname_winnt}, {@utf8no}, {@fat=@showexec}, {@fat=@discard}, {@shortname_winnt}, {@fat=@nfs}, {@shortname_win95}, {@shortname_lower}, {@utf8}]}, 0xfd, 0x2a0, &(0x7f0000000540)="$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")
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
lseek(r3, 0x10001, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x529, &(0x7f00000008c0)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0)
r6 = openat(0xffffffffffffff9c, 0x0, 0x187842, 0x3)
r7 = open(&(0x7f00000002c0)='./file2\x00', 0x189242, 0x0)
fallocate(r7, 0x10, 0x2, 0x7000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES8=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000240)={0x3920e, r5, 0x0, 0x0, 0x8, 0x8010000})
ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000080)={0x0, 0x4, 0x1, 0x5, 0x7})
r8 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x800000001fe, 0x2)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000ec0)=[{&(0x7f0000000400)="0c328af8ead5", 0x6}, {&(0x7f0000000440)}, {&(0x7f0000000e00)="da4e9e71f9d84759330587271c9bb10610c5ccf699adaf20882f8392be86d3bf51289f42052d915ed19cef3a7b2d56e8b964cb990cbd93a791968668d5306935e6cde157dd2b9d01d0e4627c0986795cc247852a3d6d3c3787af55e6c3fe98bd2bbfb3a2a97b6234d654315b9300d07631087ac896c44d7605435720b318b87f41416e", 0x83}, {&(0x7f0000000800)="fedadae42fce3917cf634449d2ac55c0df37b5a9a5d314e49a34a90718521eedbff7f1099327b65f254447421af9439325a1af82cb08867ebfeabca09dd35d7d0276784c8215e5a39c7aa5c25665123415e2b7c5b1435ac9e14b3faecb76d4", 0x5f}], 0x4, 0x0, 0x0, 0x8010}, 0x24000000)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(r9, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r10 = dup(r8)
ioctl$USBDEVFS_CONTROL(r10, 0xc0185500, 0x0)
r11 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x2000, 0x80)
write$binfmt_aout(r11, 0x0, 0x0)

314.653736ms ago: executing program 8 (id=10810):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000140)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000100)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x8)

313.926366ms ago: executing program 6 (id=10811):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f00000002c0)=[{0x6}]}, 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
bind$bt_hci(r0, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)

278.985136ms ago: executing program 6 (id=10815):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)

247.801937ms ago: executing program 0 (id=10817):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
close(r0)

247.247557ms ago: executing program 0 (id=10818):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x20840, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000140)={0x17e})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = getpid()
syz_pidfd_open(r1, 0x0)
r2 = socket(0x2, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
prctl$PR_SET_NAME(0xf, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, 0x0, 0x0)
listen(r4, 0x9)
sendmmsg(0xffffffffffffffff, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000)
process_madvise(0xffffffffffffffff, &(0x7f00000008c0), 0x0, 0xa, 0x0)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r5, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
syz_open_procfs$userns(r1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, &(0x7f00000018c0)=ANY=[@ANYBLOB="91104f000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NL80211_CMD_DEL_KEY(r0, 0x0, 0x44004000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

217.201967ms ago: executing program 6 (id=10820):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000002fc0)=@newtfilter={0xe84, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x810, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x97, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x8}, {0x0, 0x5, 0x1437, 0x1, 0xee57, 0x9}, {0x77d, 0x8, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x3, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x3, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x4}, {0xfffffffc, 0x4, 0xffff, 0x2, 0xffffffff, 0xfffffffa}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x6}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x40, 0xeac}, {0x9, 0x2, 0x4, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x8, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x9, 0xe, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x100, 0x4, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0x9, 0x1}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0x7}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0x0, 0x8, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x8, 0xffffffff}, {0x4d9, 0xc, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x7, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x1, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0xffff, 0x8}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x2, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x6, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x5, 0x2, 0xffff, 0x2, 0x2}, {0x80000001, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x6, 0x1000, 0x9, 0x9}, {0xa, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0x2, 0x8, 0xfffffff7, 0x1, 0x6, 0xa}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x7, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x80, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0xe000, 0x8, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x3, 0x9, 0x0, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x5, 0x5, 0x3, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x7, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x100, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0x3, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0xc}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0xd9, 0x6, 0x1, 0x9, 0xfffffff7}, {0x3, 0x3, 0x7, 0x69a0, 0x10, 0x1}, {0x8f000000, 0x100, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0xa, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x3}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x694c, 0x10000, 0x9, 0x0, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0xfce, 0x80000001, 0x5, 0x4, 0x1ff}, {0x3, 0x0, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0x2}, {0x10001, 0x100, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x0, 0x3, 0x6, 0x800, 0x3}, {0x0, 0x0, 0x3, 0x8, 0x1, 0x3}, {0x3, 0x3, 0xffffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x5, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x3, 0x5, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x3, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0x7}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x6}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0x1, 0x3}, {0x1, 0xe2, 0x7ff, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x6, 0x0, 0x7, 0x9, 0x7, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6c}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x2, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe71, 0xc5c3, 0x3, 0x1}, {0x7, 0x2, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x7, 0x6, 0x10001, 0xce7, 0xec, 0x1000}, {0x3, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0x6}, {0x37, 0x622, 0x2, 0x1, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x2, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159, 0x1}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x3}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x2}, {}, {0x2, 0x1}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x1, 0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xe84}, 0x1, 0x0, 0x0, 0x81}, 0x800)

170.983498ms ago: executing program 0 (id=10821):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x10)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000000280)='./file0\x00', 0x40000120)
lseek(r0, 0x101, 0x0)
getdents64(r0, 0x0, 0x0)

170.720668ms ago: executing program 8 (id=10822):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0x5, &(0x7f0000000240)={@local, @dev={0xac, 0x14, 0x14, 0x3f}, 0xfffe, "66c5aff8a7eb3af1f6cec2e7420000008c84aea31700", 0x23, 0x1000000, 0x7e, 0x6b}, 0x3c)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fcntl$setlease(r2, 0x400, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback=0x28, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000740)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@auto_da_alloc}, {@noload}, {@nodiscard}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")

170.458738ms ago: executing program 0 (id=10824):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
syz_emit_ethernet(0x76, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd602e5cea00403c0020010000000000000002000000000000ff0200000000000000000000000000010004000000000000c910ff"], 0x0)

170.330038ms ago: executing program 4 (id=10825):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000f00)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x1c}}, 0x0)

170.077368ms ago: executing program 0 (id=10826):
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)

129.144499ms ago: executing program 6 (id=10827):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)

128.992928ms ago: executing program 4 (id=10828):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300), 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x145000, 0x6b)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)

128.733619ms ago: executing program 4 (id=10829):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@jqfmt_vfsv1}, {}, {@quota}, {@noauto_da_alloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x5}}, {@orlov}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
symlink(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

117.024609ms ago: executing program 6 (id=10830):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000140000e0b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet6(r0, 0x0, 0x2, 0xc4ffffff, 0x0, 0x0)

103.315809ms ago: executing program 4 (id=10831):
socket$netlink(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
syz_read_part_table(0x5c9, &(0x7f0000000880)="$eJzs0jFoW0cYAOD/vaKoHYJFCLjQpRCTSUmKOiRQiVKMIrzYIaQhQ+dCMhQSyODBSFUyp8nULSGJDcaL6dBOhi7GMhgb5MnIq+dCvWkwr8h6XmxTCsZ13XzfoNP999/9d/wvONfS+CPLsiQisuJB7Md8JeLxF3+/+9uF+u2Jz+98c/deRBKPImLy2qPfBitJnnFw6i/5fCqfTxQr3bdr47sLpfUrm52x92lEYRC/EBGtwf7W7MjRekl8dfIn8z+yWFsZefb8SePFdO3hVmNmp5DHX918V23eH60+SIfzpfS43dkx39jJ6u+N3prbyKb+fH3xeqHT7VdW87xyctJK/Bct7mUDn2aD/n89s/PmcrvX7k9enX96o3ypt9x8ud/338/6mgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAdgsbYy8uz5k8aL6drDrcbMzpffX6t/9lP9h1c331Wb90erD9Jh3lL679Qf696a28g+jtcXrxc6F/qV1TyvnJxOfc7W4f6/udzutfuTV+ef3ihf6i03XyY/Pz7rOwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA50v99nZE3L0XkcR3ETGelmYH8awYUdo+mj9VHI4TxUr37dr47kJp/cpmZ+z9nTy+lEa04pP9/7/u/04fOuGj4dCKiPT03sU/81cAAAD//xmKiIU=")

102.904899ms ago: executing program 0 (id=10832):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000680)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$eJzs3MtvG8UfAPDv+pG+m/yq/oA+gCBAlAJJk5bSAxcQSBxAQoJDOYYkrUrdBjVBIlUFBaFyRJU4cUEckfgLOMEFASckLhzgjipVqJcWTkYb76a2a+dVP0j9+UjrzuyuO/P1ztizM7EDGFij6UMSsTMifo+I4Vq28YTR2j+3blya/vvGpekkqtU3/kpK6eGbNy5N56fmz9sREdVqtRqliMInSRxoUe784sWzU5XK7IUsP75w7t3x+cWLz5w5N3V69vTs+ckTJ44dnXju+OSzHYkzjevm/g/mDu575a2rr02fvPr2T98kefxNcXTI6EoHH69WO1xcf+2qS9daBptBMSLtplFe6v/DUYzbF284Xv64r5UDuir9nL6v/eHLVeAelkS/awD0R/5Bn97/5luPhh7/CddfqN0ApXHfyrbakVIUsnPKTfe3nTQaEScv//NlukV35iEAABp8l45/nm41/itE/bzQ7mwNZSQi/hcReyLieETsjYj/Ryyde39EPLDO8psXSe4c/xSubSiwNUrHf89na1uN47989BcjxSy3ayn+cnLqTGX2SPaaHIryljQ/sUIZ37/062ftjtWP/9ItLT8fC2b1uFba0vicmamFqbuJud71jyL2l1rFnyyvBCQRsS8i9m+wjDOHvz7Y7tjq8a+gA+tM1a8inqhd/8vRFH8uWXl9cnxrVGaPjOet4k4//3Ll9Xbl31X8HZBe/+0t2/9y/CNJ/Xrt/Hr+9y+eTB+v/PFp23uajbb/oeTNhn3vTy0sXJiIGEperVW6fv9k03mTt89P4z/0aOv+vyduvxIHIiJtxA9GxEMR8XBW90d+273qq/Dji4+9s/H4uyuNf2bt1786HJE3hMWhyBLLe1onimd/+Lah0JHW8e9ue/2PLaUOZXvW8v63lnqttzUDAADAZlWIiJ2RFMaW04XC2Fjtb/j3xvZCZW5+4alTc++dn6l9R2AkyoV8pmu4bj50Irutz/OTTfmj2bzx58VtS/mx6bnKTL+DhwG3o03/T/1Z7HftgK7zfS0YXPo/DC79HwbXnf1/a1/qAfRei8//bf2oB9B7rcb/H67liTs7Xxegt5r6v2U/GCDm/2BwbaT/e8+Ae0NppZ9sHuppVYDemd8Wq39JXmIzJfJfrulGEeW0tRyOiMWLUeh7pBJdTPT7nQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKAz/g0AAP//H+zlZw==")
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x400, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0x1018000, &(0x7f00000002c0)=ANY=[@ANYRES8=0x0, @ANYBLOB="8fa25bfc83f54cce79168961c7c2dfd3af9e5a31f2e53ff05ce32b40dd981da3fb83f169b7c7a3a8d1f4e0da092a992c5e6c610c78ae50f34ad99e3c643f36009326349fa4ee3e659c666766404bddb5a198c273bbce285d3dbd4257ebe2bc21379d692e904e0ebc755ad3583cc233576b9b9ef976d934f58059fd13901aa80cbb1b95ce7cb46112900bc71e3359f8d2a1f0f8a1c65a5eb78c836396b2934308d139553d75b355563d6f8ce8c0", @ANYRES16, @ANYRESOCT, @ANYRES32, @ANYRESDEC], 0x1, 0x2f2, &(0x7f0000000b00)="$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")
open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r0 = gettid()
rt_sigaction(0x16, &(0x7f0000000080)={0x0, 0x90000000, 0x0}, 0x0, 0x8, &(0x7f0000000200))
tkill(r0, 0x16)
r1 = open(&(0x7f0000000300)='.\x00', 0xa000, 0x124)
mkdirat(r1, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xe5ff)
open(0x0, 0x0, 0x145)

97.865049ms ago: executing program 6 (id=10833):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r2 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000002c0)={r3, 0x0, {0x2a00, 0x80010000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fcffffffffffffff2000b8785d960000000000000000000000000f00000000000100000000000000000000000000000200", "28030000000000000082525edd665240f45f819e01982861ac000000000000000000110000000000000000000000000000000000000000701400", "90be8b1c551265406c7f306003d8a0f4bd00", [0x20, 0xfffffffffffffffc]}})
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1)

49.573669ms ago: executing program 4 (id=10834):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x2b8}, 0x1, 0x0, 0x0, 0x20000000}, 0x4048010)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
r4 = inotify_init()
inotify_add_watch(r4, &(0x7f0000000240)='./file0\x00', 0x8c7)
close(r4)

1.48219ms ago: executing program 4 (id=10835):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r5, 0x0, 0xffffffffffffffff}, 0x18)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0x6}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x655c, 0x2, 0x1ffffffe, 0x9, 0x800}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

0s ago: executing program 8 (id=10836):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r3}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u}, {@access_client}], [], 0x6b}})

kernel console output (not intermixed with test programs):

[ 1491.985056][   T24] audit: type=1326 audit(1747238925.806:3866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1492.027631][T30270] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1492.052463][   T24] audit: type=1326 audit(1747238925.843:3867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1492.369702][  T432] usb 5-1: Using ep0 maxpacket: 8
[ 1492.778922][   T24] audit: type=1326 audit(1747238926.535:3868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1492.814408][   T24] audit: type=1326 audit(1747238926.545:3869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1492.847753][   T24] audit: type=1326 audit(1747238926.573:3870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1492.904548][  T432] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1492.922092][  T432] usb 5-1: config 0 has no interface number 0
[ 1492.931516][   T24] audit: type=1326 audit(1747238926.610:3871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1492.938139][  T432] usb 5-1: config 0 interface 1 has no altsetting 0
[ 1492.970235][   T24] audit: type=1326 audit(1747238926.648:3872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1492.994803][   T24] audit: type=1326 audit(1747238926.666:3873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1493.018467][   T24] audit: type=1326 audit(1747238926.769:3874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1493.042067][   T24] audit: type=1326 audit(1747238926.797:3875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30271 comm="syz.4.9658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9f954e56b code=0x7ffc0000
[ 1493.050986][T30288] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[ 1493.075274][T30288] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1493.084721][T30288] F2FS-fs (loop8): invalid crc value
[ 1493.091782][T30288] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1493.213011][T30288] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1493.220300][T30288] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1493.246385][  T432] usb 5-1: New USB device found, idVendor=041e, idProduct=0005, bcdDevice=da.9a
[ 1493.255514][  T432] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1493.264174][  T432] usb 5-1: Product: syz
[ 1494.815924][T30304] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1494.862520][T30302] syz.2.9663[30302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1494.862580][T30302] syz.2.9663[30302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1494.876187][ T6313] Bluetooth: hci0: command 0x1003 tx timeout
[ 1494.947668][T29615] Bluetooth: hci0: sending frame failed (-49)
[ 1495.110556][T30303] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1495.222303][T30303] EXT4-fs error (device loop6): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1495.237228][T30303] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.9664: Failed to acquire dquot type 1
[ 1495.249362][T30303] EXT4-fs (loop6): 1 truncate cleaned up
[ 1495.255029][T30303] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1495.500809][  T432] usb 5-1: Manufacturer: syz
[ 1495.505532][  T432] usb 5-1: SerialNumber: syz
[ 1495.617611][  T432] usb 5-1: config 0 descriptor??
[ 1495.641053][  T432] usb 5-1: can't set config #0, error -71
[ 1495.649332][  T432] usb 5-1: USB disconnect, device number 37
[ 1495.737624][T30322] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1496.282467][  T432] usb 7-1: new high-speed USB device number 77 using dummy_hcd
[ 1496.560390][  T432] usb 7-1: Using ep0 maxpacket: 16
[ 1496.710476][  T432] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11
[ 1496.757208][  T432] usb 7-1: New USB device found, idVendor=056a, idProduct=0319, bcdDevice= 0.00
[ 1496.831268][  T432] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1496.882252][  T432] usb 7-1: config 0 descriptor??
[ 1497.137725][ T6313] Bluetooth: hci0: command 0x1001 tx timeout
[ 1497.143821][T29615] Bluetooth: hci0: sending frame failed (-49)
[ 1497.182747][T30324] udc-core: couldn't find an available UDC or it's busy
[ 1497.190087][T30324] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1497.629727][   T24] kauditd_printk_skb: 16 callbacks suppressed
[ 1497.629742][   T24] audit: type=1326 audit(1747238931.081:3888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30323 comm="syz.6.9671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1497.660040][   T24] audit: type=1326 audit(1747238931.091:3889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30323 comm="syz.6.9671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1497.685679][  T432] wacom 0003:056A:0319.0031: unknown main item tag 0x0
[ 1497.867701][T30341] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[ 1497.875606][T30341] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1498.132518][T30341] F2FS-fs (loop8): invalid crc value
[ 1498.138742][T26333] usb 7-1: USB disconnect, device number 77
[ 1498.154224][T30341] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1498.164665][   T24] audit: type=1326 audit(1747238931.586:3890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.189638][   T24] audit: type=1326 audit(1747238931.586:3891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.202466][T30341] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1498.213257][   T24] audit: type=1326 audit(1747238931.586:3892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.220581][T30341] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1498.243791][   T24] audit: type=1326 audit(1747238931.586:3893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.275216][   T24] audit: type=1326 audit(1747238931.586:3894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.299040][   T24] audit: type=1326 audit(1747238931.586:3895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.322608][   T24] audit: type=1326 audit(1747238931.586:3896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.346241][   T24] audit: type=1326 audit(1747238931.586:3897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30352 comm="syz.2.9678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1498.452704][ T6311] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1498.605093][T30362] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1498.762902][ T6311] usb 3-1: Using ep0 maxpacket: 8
[ 1498.830196][T30362] EXT4-fs error (device loop8): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1498.845166][T30362] EXT4-fs error (device loop8): ext4_acquire_dquot:6226: comm syz.8.9681: Failed to acquire dquot type 1
[ 1498.859468][T30362] EXT4-fs (loop8): 1 truncate cleaned up
[ 1498.865129][T30362] EXT4-fs (loop8): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1498.987372][ T6311] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1499.017049][ T6311] usb 3-1: config 0 has no interface number 0
[ 1499.067567][ T6311] usb 3-1: config 0 interface 1 has no altsetting 0
[ 1499.420314][T26333] Bluetooth: hci0: command 0x1009 tx timeout
[ 1499.611078][ T6311] usb 3-1: New USB device found, idVendor=041e, idProduct=0005, bcdDevice=da.9a
[ 1499.620173][ T6311] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1499.629359][ T6311] usb 3-1: Product: syz
[ 1499.633549][ T6311] usb 3-1: Manufacturer: syz
[ 1499.638136][ T6311] usb 3-1: SerialNumber: syz
[ 1499.650551][ T6311] usb 3-1: config 0 descriptor??
[ 1499.783287][T30376] EXT4-fs (loop6): mounted filesystem without journal. Opts: noinit_itable,nodelalloc,,errors=continue
[ 1499.794512][T30376] ext4 filesystem being mounted at /322/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1500.409852][ T6311] snd-usb-audio: probe of 3-1:0.1 failed with error -22
[ 1500.432618][ T6311] usb 3-1: USB disconnect, device number 58
[ 1500.581595][T30387] EXT4-fs (loop6): Ignoring removed orlov option
[ 1500.588222][T30387] EXT4-fs (loop6): Ignoring removed nomblk_io_submit option
[ 1500.602843][T30387] EXT4-fs (loop6): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,grpjquota=,barrier,nomblk_io_submit,,errors=continue
[ 1501.796669][T30412] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1501.805651][T30412] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.9694: bg 0: block 248: padding at end of block bitmap is not set
[ 1501.821102][T30412] EXT4-fs error (device loop8): ext4_acquire_dquot:6226: comm syz.8.9694: Failed to acquire dquot type 1
[ 1501.911135][T30412] EXT4-fs (loop8): 1 truncate cleaned up
[ 1501.917503][T30412] EXT4-fs (loop8): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1503.692817][T30436] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1503.834344][   T24] kauditd_printk_skb: 45 callbacks suppressed
[ 1503.834359][   T24] audit: type=1326 audit(1747238936.890:3937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30443 comm="syz.6.9704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1503.894654][   T24] audit: type=1326 audit(1747238936.918:3938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30443 comm="syz.6.9704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1504.077466][   T24] audit: type=1326 audit(1747238936.918:3939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30443 comm="syz.6.9704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1504.102026][   T24] audit: type=1326 audit(1747238936.918:3940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30443 comm="syz.6.9704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1504.129063][T30436] EXT4-fs error (device loop1): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1504.143396][T30436] Quota error (device loop1): write_blk: dquota write failed
[ 1504.150817][T30436] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5
[ 1504.160230][T30436] Quota error (device loop1): write_blk: dquota write failed
[ 1504.167850][T30436] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[ 1504.177733][T30436] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.9702: Failed to acquire dquot type 1
[ 1504.189877][T30436] EXT4-fs (loop1): 1 truncate cleaned up
[ 1504.195569][T30436] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1504.893173][   T24] audit: type=1326 audit(1747238936.918:3941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30443 comm="syz.6.9704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1504.917771][   T24] audit: type=1326 audit(1747238936.918:3942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30443 comm="syz.6.9704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1505.066196][T20821] usb 7-1: new high-speed USB device number 78 using dummy_hcd
[ 1505.248130][T30457] netlink: 9 bytes leftover after parsing attributes in process `syz.2.9707'.
[ 1505.551486][T20821] usb 7-1: Using ep0 maxpacket: 8
[ 1505.690598][T20821] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[ 1505.712296][T20821] usb 7-1: config 0 has no interface number 0
[ 1505.754527][T20821] usb 7-1: config 0 interface 1 has no altsetting 0
[ 1506.203565][T20821] usb 7-1: New USB device found, idVendor=041e, idProduct=0005, bcdDevice=da.9a
[ 1506.326422][T20821] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1506.426915][T20821] usb 7-1: Product: syz
[ 1506.469995][T20821] usb 7-1: Manufacturer: syz
[ 1506.523576][T20821] usb 7-1: SerialNumber: syz
[ 1506.536660][T20821] usb 7-1: config 0 descriptor??
[ 1506.877233][T20821] snd-usb-audio: probe of 7-1:0.1 failed with error -22
[ 1506.925553][T20821] usb 7-1: USB disconnect, device number 78
[ 1508.766164][T30525] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1508.788644][T30525] ext4 filesystem being mounted at /197/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1509.747805][T30551] 8021q: VLANs not supported on tunl0
[ 1510.779182][T30564] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1511.219368][T30539] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[ 1511.233134][T30539] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1511.242817][T30539] F2FS-fs (loop8): invalid crc value
[ 1511.303747][T30539] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1511.374261][T30539] F2FS-fs (loop8): Cannot turn on quotas: -2 on 2
[ 1511.381123][T30539] F2FS-fs (loop8): Start checkpoint disabled!
[ 1511.388013][T30539] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1511.395194][T30539] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[ 1511.464816][T24417] attempt to access beyond end of device
[ 1511.464816][T24417] loop8: rw=2049, want=40992, limit=40427
[ 1511.499840][T30582] SELinux: failed to load policy
[ 1511.648916][ T6313] usb 2-1: new full-speed USB device number 65 using dummy_hcd
[ 1511.695814][T30589] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1511.711149][T30589] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1512.440743][T30606] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1512.696905][ T6313] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1512.710658][ T6313] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1512.743537][   T24] kauditd_printk_skb: 37 callbacks suppressed
[ 1512.743551][   T24] audit: type=1326 audit(1747238945.215:3980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1512.806060][   T24] audit: type=1326 audit(1747238945.243:3981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1512.843169][   T24] audit: type=1326 audit(1747238945.243:3982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1512.871509][   T24] audit: type=1326 audit(1747238945.243:3983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1512.895996][T30625] netlink: 72 bytes leftover after parsing attributes in process `syz.2.9767'.
[ 1512.896545][   T24] audit: type=1326 audit(1747238945.243:3984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1512.962629][   T24] audit: type=1326 audit(1747238945.243:3985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1512.986459][ T6313] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1512.999269][ T6313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1513.013752][ T6313] usb 2-1: Product: syz
[ 1513.017927][ T6313] usb 2-1: Manufacturer: syz
[ 1513.056188][ T6313] usb 2-1: SerialNumber: syz
[ 1513.061045][   T24] audit: type=1326 audit(1747238945.243:3986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1513.086344][   T24] audit: type=1326 audit(1747238945.243:3987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30613 comm="syz.2.9763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1513.703664][T30639] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1513.714069][T30639] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.9770: bg 0: block 248: padding at end of block bitmap is not set
[ 1513.730353][ T6313] usb 2-1: 0:2 : does not exist
[ 1513.760394][T30639] Quota error (device loop6): write_blk: dquota write failed
[ 1513.768045][T30639] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1513.778057][T30639] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.9770: Failed to acquire dquot type 1
[ 1513.793725][T30639] EXT4-fs (loop6): 1 truncate cleaned up
[ 1513.800097][T30639] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1514.089658][ T6313] usb 2-1: USB disconnect, device number 65
[ 1514.662354][ T8173] udevd[8173]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1515.355041][T30643] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[ 1515.398142][T30643] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1515.432172][T30643] F2FS-fs (loop8): invalid crc value
[ 1515.443103][T30663] netlink: 72 bytes leftover after parsing attributes in process `syz.2.9778'.
[ 1515.470083][T30643] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1515.525746][T30643] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1515.538318][T30643] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 1515.751531][T30676] netlink: 9 bytes leftover after parsing attributes in process `syz.2.9781'.
[ 1515.761969][T30676] netlink: 5 bytes leftover after parsing attributes in process `syz.2.9781'.
[ 1515.770941][T30676] 1�X��D: renamed from 
30�X��D
[ 1515.792319][T30676] device 
31�X��D left promiscuous mode
[ 1515.800366][T30676] A link change request failed with some changes committed already. Interface 
31�X��D may have been left with an inconsistent configuration, please check.
[ 1518.376466][T30696] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1518.385599][T30696] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.9787: bg 0: block 248: padding at end of block bitmap is not set
[ 1518.400574][T30696] Quota error (device loop6): write_blk: dquota write failed
[ 1518.408146][T30696] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1518.418157][T30696] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.9787: Failed to acquire dquot type 1
[ 1518.431396][T30696] EXT4-fs (loop6): 1 truncate cleaned up
[ 1518.437643][T30696] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1518.691072][T30686] SELinux: failed to load policy
[ 1520.530169][T30742] exfat: Unknown parameter 'iochar'
[ 1520.625030][T30742] netlink: 9 bytes leftover after parsing attributes in process `syz.6.9798'.
[ 1520.636086][T30742] device 
31�X��D entered promiscuous mode
[ 1523.447563][T30762] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1523.456920][T30762] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.9809: bg 0: block 248: padding at end of block bitmap is not set
[ 1523.472405][T30762] Quota error (device loop6): write_blk: dquota write failed
[ 1523.479999][T30762] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1523.489965][T30762] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.9809: Failed to acquire dquot type 1
[ 1523.504060][T30762] EXT4-fs (loop6): 1 truncate cleaned up
[ 1523.510535][T30762] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1524.215003][T30782] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1525.117367][T30793] FAT-fs (loop6): Invalid FSINFO signature: 0x41000000, 0x61417272 (sector = 1)
[ 1525.127898][T30793] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1)
[ 1525.136695][T30793] FAT-fs (loop6): Filesystem has been set read-only
[ 1525.268202][T30802] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9820'.
[ 1525.618461][T30802] erofs: Unknown parameter '������00000000000000000007�������������������������1��������	�e#tI�-YM7���"k� E�V�'
[ 1526.056682][  T432] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[ 1526.613418][T30820] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1526.630348][T30802] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1526.639895][T30802] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.9820: bg 0: block 248: padding at end of block bitmap is not set
[ 1526.655351][T30802] Quota error (device loop1): write_blk: dquota write failed
[ 1526.662933][T30802] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[ 1526.672973][T30802] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.9820: Failed to acquire dquot type 1
[ 1526.686160][T30802] EXT4-fs (loop1): 1 truncate cleaned up
[ 1526.692566][T30802] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,noload,,errors=continue
[ 1526.786813][T30802] device vlan0 entered promiscuous mode
[ 1526.792408][T30802] device dummy0 entered promiscuous mode
[ 1527.360112][  T432] usb 9-1: Using ep0 maxpacket: 16
[ 1527.371735][T30826] fuse: Bad value for 'fd'
[ 1527.405482][T30832] 8021q: VLANs not supported on tunl0
[ 1527.944289][  T432] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11
[ 1527.956203][  T432] usb 9-1: New USB device found, idVendor=056a, idProduct=0319, bcdDevice= 0.00
[ 1527.965377][  T432] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1528.131954][  T432] usb 9-1: config 0 descriptor??
[ 1528.138202][T30829] 8021q: VLANs not supported on tunl0
[ 1528.654977][   T24] audit: type=1326 audit(1747238960.088:3988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30852 comm="syz.6.9839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1528.680503][   T24] audit: type=1326 audit(1747238960.088:3989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30852 comm="syz.6.9839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1528.697270][T30857] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1528.704325][  T432] usbhid 9-1:0.0: can't add hid device: -71
[ 1532.188027][  T432] usbhid: probe of 9-1:0.0 failed with error -71
[ 1532.196835][  T432] usb 9-1: USB disconnect, device number 31
[ 1532.205963][   T24] audit: type=1326 audit(1747238960.088:3990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30852 comm="syz.6.9839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1532.950182][T30881] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9844'.
[ 1533.070025][T30881] erofs: Unknown parameter '������00000000000000000007�������������������������1��������	�e#tI�-YM7���"k� E�V�'
[ 1533.394000][T30881] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1533.403304][T30881] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.9844: bg 0: block 248: padding at end of block bitmap is not set
[ 1533.419614][T30881] Quota error (device loop1): write_blk: dquota write failed
[ 1533.427281][T30881] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[ 1533.437328][T30881] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.9844: Failed to acquire dquot type 1
[ 1533.451883][T30881] EXT4-fs (loop1): 1 truncate cleaned up
[ 1533.458287][T30881] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,noload,,errors=continue
[ 1533.546877][T30881] device vlan0 entered promiscuous mode
[ 1533.552493][T30881] device bridge0 entered promiscuous mode
[ 1533.563481][T30881] bridge0: port 3(vlan0) entered blocking state
[ 1533.569754][T30881] bridge0: port 3(vlan0) entered disabled state
[ 1536.821263][T30906] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1536.853469][T30906] SELinux: failed to load policy
[ 1538.660257][T30919] exfat: Unknown parameter 'iochar'
[ 1538.754632][T30918] netlink: 5 bytes leftover after parsing attributes in process `syz.1.9852'.
[ 1538.787656][T30918] FAT-fs (loop1): Directory bread(block 64) failed
[ 1538.794639][T30918] FAT-fs (loop1): Directory bread(block 65) failed
[ 1538.801312][T30918] FAT-fs (loop1): Directory bread(block 66) failed
[ 1538.807829][T30918] FAT-fs (loop1): Directory bread(block 67) failed
[ 1538.814389][T30918] FAT-fs (loop1): Directory bread(block 68) failed
[ 1538.821034][T30918] FAT-fs (loop1): Directory bread(block 69) failed
[ 1538.827595][T30918] FAT-fs (loop1): Directory bread(block 70) failed
[ 1538.834142][T30918] FAT-fs (loop1): Directory bread(block 71) failed
[ 1538.840669][T30918] FAT-fs (loop1): Directory bread(block 72) failed
[ 1538.847194][T30918] FAT-fs (loop1): Directory bread(block 73) failed
[ 1539.033088][T30925] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1539.110417][T30925] EXT4-fs error (device loop6): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1539.124641][T30925] Quota error (device loop6): write_blk: dquota write failed
[ 1539.132062][T30925] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5
[ 1539.141367][T30925] Quota error (device loop6): write_blk: dquota write failed
[ 1539.148795][T30925] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 1539.159292][T30925] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.9854: Failed to acquire dquot type 1
[ 1539.171429][T30925] EXT4-fs (loop6): 1 truncate cleaned up
[ 1539.177133][T30925] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1540.256430][ T2401] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 1542.642696][ T2401] usb 5-1: Using ep0 maxpacket: 16
[ 1542.990148][ T2401] usb 5-1: device descriptor read/all, error -71
[ 1544.990089][T30995] exfat: Unknown parameter 'iochar'
[ 1545.108944][T30995] netlink: 5 bytes leftover after parsing attributes in process `syz.6.9875'.
[ 1545.118289][T30995] 0�X��D: renamed from 
31�X��D
[ 1545.126703][T30995] device 
30�X��D left promiscuous mode
[ 1545.134960][T30995] A link change request failed with some changes committed already. Interface 
30�X��D may have been left with an inconsistent configuration, please check.
[ 1545.303142][T30995] FAT-fs (loop6): Directory bread(block 64) failed
[ 1545.309824][T30995] FAT-fs (loop6): Directory bread(block 65) failed
[ 1545.316490][T30995] FAT-fs (loop6): Directory bread(block 66) failed
[ 1545.323110][T30995] FAT-fs (loop6): Directory bread(block 67) failed
[ 1545.329773][T30995] FAT-fs (loop6): Directory bread(block 68) failed
[ 1545.336365][T30995] FAT-fs (loop6): Directory bread(block 69) failed
[ 1545.343043][T30995] FAT-fs (loop6): Directory bread(block 70) failed
[ 1545.349642][T30995] FAT-fs (loop6): Directory bread(block 71) failed
[ 1545.356384][T30995] FAT-fs (loop6): Directory bread(block 72) failed
[ 1545.363049][T30995] FAT-fs (loop6): Directory bread(block 73) failed
[ 1550.011253][T31052] overlayfs: failed to resolve './file1': -2
[ 1550.025200][T31052] syz.8.9888[31052] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1550.025470][T31052] syz.8.9888[31052] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1550.758315][T31067] netlink: 9 bytes leftover after parsing attributes in process `syz.2.9896'.
[ 1550.780785][T31067] device 
31�X��D entered promiscuous mode
[ 1550.816063][ T6319] usb 7-1: new high-speed USB device number 79 using dummy_hcd
[ 1551.954283][ T6319] usb 7-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=b4.8e
[ 1551.963394][ T6319] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1551.974799][ T6319] usb 7-1: config 0 descriptor??
[ 1552.340383][ T6319] usb-storage 7-1:0.0: USB Mass Storage device detected
[ 1552.378293][T31078] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[ 1552.388676][T31078] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1552.452362][ T6319] usb 7-1: USB disconnect, device number 79
[ 1552.943925][T31087] FAT-fs (loop8): Unrecognized mount option "allow_utime000000000000077" or missing value
[ 1553.886352][T31102] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=31102 comm=syz.4.9907
[ 1554.279862][T31100] F2FS-fs (loop6): Insane cp_payload (553648128 >= 504)
[ 1554.407560][T31100] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[ 1554.519623][T31100] F2FS-fs (loop6): invalid crc value
[ 1554.547846][T31100] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1554.603594][T31100] F2FS-fs (loop6): Cannot turn on quotas: -2 on 2
[ 1554.610259][T31100] F2FS-fs (loop6): Start checkpoint disabled!
[ 1554.659241][T31100] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[ 1554.666555][T31100] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[ 1554.808997][T24417] attempt to access beyond end of device
[ 1554.808997][T24417] loop6: rw=2049, want=40992, limit=40427
[ 1556.986788][T31147] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9919'.
[ 1558.514267][T31147] device vlan0 entered promiscuous mode
[ 1558.519850][T31147] device ip6gretap0 entered promiscuous mode
[ 1560.844698][T31201] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1561.098856][T31208] netlink: 9 bytes leftover after parsing attributes in process `syz.6.9944'.
[ 1561.114046][T31208] device 
30�X��D entered promiscuous mode
[ 1563.959406][T31255] overlayfs: failed to resolve './file1': -2
[ 1564.877755][T31264] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1564.895473][T31264] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1565.123361][T31264] EXT4-fs error (device loop1): ext4_orphan_get:1421: comm syz.1.9964: bad orphan inode 131083
[ 1565.216357][T31264] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue
[ 1565.364923][T31248] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[ 1565.374573][   T24] audit: type=1326 audit(1747238994.436:3991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31281 comm="syz.6.9969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1565.381652][T31248] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1565.738777][T31248] F2FS-fs (loop8): invalid crc value
[ 1565.745541][   T24] audit: type=1326 audit(1747238994.436:3992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31281 comm="syz.6.9969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1565.769714][   T24] audit: type=1326 audit(1747238994.445:3993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31281 comm="syz.6.9969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1565.828209][T31248] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1565.847917][T31294] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9972'.
[ 1565.872438][   T24] audit: type=1326 audit(1747238994.445:3994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31281 comm="syz.6.9969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1565.934183][T31248] F2FS-fs (loop8): Cannot turn on quotas: -2 on 2
[ 1565.941402][T31248] F2FS-fs (loop8): Start checkpoint disabled!
[ 1565.948445][T31294] erofs: Unknown parameter '������00000000000000000007�������������������������1��������	�e#tI�-YM7���"k� E�V�'
[ 1565.966917][T31248] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1565.974311][   T24] audit: type=1326 audit(1747238994.445:3995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31281 comm="syz.6.9969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1565.999202][T31248] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[ 1566.380871][T31294] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1566.389970][T31294] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.9972: bg 0: block 248: padding at end of block bitmap is not set
[ 1566.407017][T31294] Quota error (device loop6): write_blk: dquota write failed
[ 1566.414594][T31294] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1566.424621][T31294] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.9972: Failed to acquire dquot type 1
[ 1566.437771][T31294] EXT4-fs (loop6): 1 truncate cleaned up
[ 1566.444427][T31294] EXT4-fs (loop6): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,noload,,errors=continue
[ 1566.520267][T31294] device vlan0 entered promiscuous mode
[ 1566.525860][T31294] device bridge0 entered promiscuous mode
[ 1566.533365][T31294] bridge0: port 3(vlan0) entered blocking state
[ 1566.539635][T31294] bridge0: port 3(vlan0) entered disabled state
[ 1567.001188][T26230] attempt to access beyond end of device
[ 1567.001188][T26230] loop8: rw=2049, want=40984, limit=40427
[ 1567.580862][T31335] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1567.693884][T31335] SELinux: failed to load policy
[ 1568.412830][T31356] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1568.420712][T31356] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1568.431110][T31356] F2FS-fs (loop1): invalid crc value
[ 1569.268296][T31356] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1569.325897][T31356] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1569.333406][T31356] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1570.163512][   T24] audit: type=1326 audit(1747238998.926:3996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1571.094297][   T24] audit: type=1326 audit(1747238999.459:3997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1571.126835][   T24] audit: type=1326 audit(1747238999.459:3998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1571.152189][   T24] audit: type=1326 audit(1747238999.459:3999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1571.176992][   T24] audit: type=1326 audit(1747238999.459:4000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31410 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f20ef40c225 code=0x7ffc0000
[ 1571.201383][   T24] audit: type=1326 audit(1747238999.824:4001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31410 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1571.225137][   T24] audit: type=1326 audit(1747238999.861:4002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f20ef375b39 code=0x7ffc0000
[ 1573.081642][   T24] audit: type=1326 audit(1747238999.861:4003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1573.953519][   T24] audit: type=1326 audit(1747238999.861:4004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31407 comm="syz.1.10012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1575.733510][T31434] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1575.751754][T31441] netlink: 'syz.1.10021': attribute type 16 has an invalid length.
[ 1575.759912][T31441] netlink: 'syz.1.10021': attribute type 17 has an invalid length.
[ 1575.774635][T31441] device veth1_macvtap entered promiscuous mode
[ 1575.791756][T15842] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1575.831592][T31434] EXT4-fs error (device loop6): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1575.845758][T31434] Quota error (device loop6): write_blk: dquota write failed
[ 1575.853164][T31434] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5
[ 1575.862389][T31434] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10019: Failed to acquire dquot type 1
[ 1575.874091][T31434] EXT4-fs (loop6): 1 truncate cleaned up
[ 1575.879742][T31434] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1577.109669][T31466] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1577.125133][T31466] ext4 filesystem being mounted at /392/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1577.870103][T31477] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1577.891940][T31477] EXT4-fs error (device loop1): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1577.906492][T31477] __quota_error: 2 callbacks suppressed
[ 1577.906512][T31477] Quota error (device loop1): write_blk: dquota write failed
[ 1577.919627][T31477] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5
[ 1577.929145][T31477] Quota error (device loop1): write_blk: dquota write failed
[ 1577.936766][T31477] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[ 1577.946765][T31477] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.10029: Failed to acquire dquot type 1
[ 1577.959036][T31477] EXT4-fs (loop1): 1 truncate cleaned up
[ 1577.964725][T31477] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1578.237734][T31482] netlink: 'syz.4.10033': attribute type 16 has an invalid length.
[ 1578.445143][T31482] netlink: 'syz.4.10033': attribute type 17 has an invalid length.
[ 1578.721535][T31492] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1578.931133][T20821] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1579.635657][T20821] usb 3-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=b4.8e
[ 1579.676523][T20821] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1579.690117][T20821] usb 3-1: config 0 descriptor??
[ 1579.733855][T20821] usb-storage 3-1:0.0: USB Mass Storage device detected
[ 1579.771019][T31522] netlink: 'syz.4.10045': attribute type 16 has an invalid length.
[ 1579.779059][T31522] netlink: 'syz.4.10045': attribute type 17 has an invalid length.
[ 1580.268397][T13313] usb 3-1: USB disconnect, device number 59
[ 1580.957476][  T276] usb 7-1: new full-speed USB device number 80 using dummy_hcd
[ 1580.965981][ T6319] usb 2-1: new full-speed USB device number 66 using dummy_hcd
[ 1581.130899][T31554] netlink: 'syz.2.10056': attribute type 16 has an invalid length.
[ 1581.138940][T31554] netlink: 'syz.2.10056': attribute type 17 has an invalid length.
[ 1581.154420][T31554] device veth1_macvtap entered promiscuous mode
[ 1581.164558][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 1581.172860][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1581.181157][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 1581.189333][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1581.197527][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1581.205750][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1581.214202][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1581.222554][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1581.230815][T24417] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1581.358535][ T6319] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1581.368720][  T276] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1581.378988][ T6319] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1581.388113][  T276] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1581.498684][T31559] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1581.505693][T31559] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1581.517149][T31559] EXT4-fs error (device loop8): ext4_orphan_get:1421: comm syz.8.10058: bad orphan inode 131083
[ 1581.527835][T31559] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue
[ 1581.582965][ T6319] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1581.592081][  T276] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1581.601200][ T6319] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1581.609421][  T276] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1581.617543][ T6319] usb 2-1: Product: syz
[ 1581.621697][ T6319] usb 2-1: Manufacturer: syz
[ 1581.626514][  T276] usb 7-1: Product: syz
[ 1581.630898][  T276] usb 7-1: Manufacturer: syz
[ 1581.635553][  T276] usb 7-1: SerialNumber: syz
[ 1581.640307][ T6319] usb 2-1: SerialNumber: syz
[ 1581.745887][T31564] FAT-fs (loop8): Invalid FSINFO signature: 0x41000000, 0x61417272 (sector = 1)
[ 1581.755381][T31564] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 1)
[ 1581.763892][T31564] FAT-fs (loop8): Filesystem has been set read-only
[ 1581.967767][  T276] usb 7-1: 0:2 : does not exist
[ 1581.974540][  T276] usb 7-1: USB disconnect, device number 80
[ 1582.078954][ T6319] usb 2-1: 0:2 : does not exist
[ 1582.092687][ T6319] usb 2-1: USB disconnect, device number 66
[ 1582.461431][   T24] audit: type=1326 audit(1747239010.431:4005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31580 comm="syz.2.10066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1582.486653][   T24] audit: type=1326 audit(1747239010.431:4006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31580 comm="syz.2.10066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1582.511769][   T24] audit: type=1326 audit(1747239010.431:4007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31580 comm="syz.2.10066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1582.540073][T31584] netlink: 'syz.6.10067': attribute type 16 has an invalid length.
[ 1582.548748][T31584] netlink: 'syz.6.10067': attribute type 17 has an invalid length.
[ 1582.562497][   T24] audit: type=1326 audit(1747239010.441:4008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31580 comm="syz.2.10066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1582.586813][   T24] audit: type=1326 audit(1747239010.441:4009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31582 comm="syz.2.10066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f8ccf307225 code=0x7ffc0000
[ 1582.612989][ T8173] udevd[8173]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1582.630345][   T24] audit: type=1326 audit(1747239010.600:4010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31582 comm="syz.2.10066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1582.881471][T31599] 8021q: VLANs not supported on tunl0
[ 1583.449148][T31604] SELinux: failed to load policy
[ 1583.683488][T31616] netlink: 'syz.6.10080': attribute type 16 has an invalid length.
[ 1583.691669][T31616] netlink: 'syz.6.10080': attribute type 17 has an invalid length.
[ 1585.303213][ T6319] usb 2-1: new full-speed USB device number 67 using dummy_hcd
[ 1586.404606][ T6319] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1586.440382][T31635] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1586.450620][T31635] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.10085: bg 0: block 248: padding at end of block bitmap is not set
[ 1586.465938][T31635] __quota_error: 3 callbacks suppressed
[ 1586.465960][T31635] Quota error (device loop6): write_blk: dquota write failed
[ 1586.479132][T31635] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1586.489136][T31635] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10085: Failed to acquire dquot type 1
[ 1586.504193][T31635] EXT4-fs (loop6): 1 truncate cleaned up
[ 1586.537684][ T6319] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1586.641747][T31635] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1587.318920][T31630] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[ 1587.455376][T31630] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1587.497899][T31630] F2FS-fs (loop8): invalid crc value
[ 1587.505615][ T6319] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1587.516984][ T6319] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1587.549032][T31630] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1587.559120][ T6319] usb 2-1: can't set config #1, error -71
[ 1587.572229][ T6319] usb 2-1: USB disconnect, device number 67
[ 1587.578198][T31668] netlink: 'syz.2.10095': attribute type 16 has an invalid length.
[ 1587.586795][T31668] netlink: 'syz.2.10095': attribute type 17 has an invalid length.
[ 1587.640494][T31630] F2FS-fs (loop8): Cannot turn on quotas: -2 on 2
[ 1587.648414][T31630] F2FS-fs (loop8): Start checkpoint disabled!
[ 1587.655850][T31630] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1587.662945][T31630] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[ 1587.714047][T31666] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1587.758210][T26230] attempt to access beyond end of device
[ 1587.758210][T26230] loop8: rw=2049, want=40992, limit=40427
[ 1587.758537][T31666] ext4 filesystem being mounted at /402/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1588.286034][T31684] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1588.295177][T31684] syz.4.10099[31684] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1588.295237][T31684] syz.4.10099[31684] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1588.393162][T31534] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[ 1590.777136][T31699] exfat: Unknown parameter 'iochar'
[ 1591.016295][T31692] netlink: 9 bytes leftover after parsing attributes in process `syz.1.10100'.
[ 1591.077079][T31692] device 
30�X��D entered promiscuous mode
[ 1591.087150][T31692] netlink: 5 bytes leftover after parsing attributes in process `syz.1.10100'.
[ 1591.096166][T31692] 1�X��D: renamed from 
30�X��D
[ 1591.363370][T31699] FAT-fs (loop1): Directory bread(block 64) failed
[ 1591.370389][T31699] FAT-fs (loop1): Directory bread(block 65) failed
[ 1591.376992][T31699] FAT-fs (loop1): Directory bread(block 66) failed
[ 1591.383517][T31699] FAT-fs (loop1): Directory bread(block 67) failed
[ 1591.390081][T31699] FAT-fs (loop1): Directory bread(block 68) failed
[ 1591.396598][T31699] FAT-fs (loop1): Directory bread(block 69) failed
[ 1591.403153][T31699] FAT-fs (loop1): Directory bread(block 70) failed
[ 1591.409701][T31699] FAT-fs (loop1): Directory bread(block 71) failed
[ 1591.416255][T31699] FAT-fs (loop1): Directory bread(block 72) failed
[ 1591.423031][T31699] FAT-fs (loop1): Directory bread(block 73) failed
[ 1591.493038][T31534] usb 3-1: unable to read config index 0 descriptor/all
[ 1591.500012][T31534] usb 3-1: can't read configurations, error -71
[ 1591.563509][T31692] device 
31�X��D left promiscuous mode
[ 1591.569895][T31692] A link change request failed with some changes committed already. Interface 
31�X��D may have been left with an inconsistent configuration, please check.
[ 1591.747558][T31720] netlink: 'syz.4.10107': attribute type 16 has an invalid length.
[ 1591.773720][T31720] netlink: 'syz.4.10107': attribute type 17 has an invalid length.
[ 1591.825258][T31704] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1591.834591][T31704] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.10103: bg 0: block 248: padding at end of block bitmap is not set
[ 1591.851040][T31704] Quota error (device loop6): write_blk: dquota write failed
[ 1591.858612][T31704] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1591.868588][T31704] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10103: Failed to acquire dquot type 1
[ 1591.882095][T31704] EXT4-fs (loop6): 1 truncate cleaned up
[ 1591.888655][T31704] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1593.254560][T31740] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1593.263711][T31740] syz.2.10114[31740] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1593.263775][T31740] syz.2.10114[31740] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1595.287666][T31759] netlink: 9 bytes leftover after parsing attributes in process `syz.2.10121'.
[ 1595.657997][T31762] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1595.694729][T31757] exfat: Unknown parameter 'iochar'
[ 1596.128090][T31790] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1596.147600][T31790] syz.4.10129[31790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1596.148015][T31790] syz.4.10129[31790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1597.119624][T31803] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1597.227138][T31803] EXT4-fs error (device loop8): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1597.241403][T31803] Quota error (device loop8): write_blk: dquota write failed
[ 1597.248851][T31803] Quota error (device loop8): find_free_dqentry: Can't write quota data block 5
[ 1597.258282][T31803] Quota error (device loop8): write_blk: dquota write failed
[ 1597.265850][T31803] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[ 1597.275757][T31803] EXT4-fs error (device loop8): ext4_acquire_dquot:6226: comm syz.8.10134: Failed to acquire dquot type 1
[ 1597.287915][T31803] EXT4-fs (loop8): 1 truncate cleaned up
[ 1597.293572][T31803] EXT4-fs (loop8): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1597.650261][T31811] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1597.681313][T31811] SELinux: failed to load policy
[ 1599.686841][T31851] 8021q: VLANs not supported on tunl0
[ 1599.871852][T31854] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1599.889760][T31854] syz.2.10146[31854] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1599.890124][T31854] syz.2.10146[31854] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1600.111734][T31841] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1600.943167][T31875] netlink: 9 bytes leftover after parsing attributes in process `syz.2.10156'.
[ 1600.954004][T31875] netlink: 5 bytes leftover after parsing attributes in process `syz.2.10156'.
[ 1600.963096][T31875] 0�X��D: renamed from 
31�X��D
[ 1600.994978][T31875] device 
30�X��D left promiscuous mode
[ 1601.001415][T31875] A link change request failed with some changes committed already. Interface 
30�X��D may have been left with an inconsistent configuration, please check.
[ 1602.108781][  T276] usb 7-1: new full-speed USB device number 81 using dummy_hcd
[ 1604.080330][T31909] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1604.092950][T31909] syz.1.10162[31909] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1604.093224][T31909] syz.1.10162[31909] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1604.621166][  T276] usb 7-1: device descriptor read/all, error -71
[ 1604.990038][T31923] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1605.072778][T31925] overlayfs: failed to resolve './file1': -2
[ 1605.092431][T31925] syz.6.10169[31925] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1605.092779][T31925] syz.6.10169[31925] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1605.371853][T31927] binder: BINDER_SET_CONTEXT_MGR already set
[ 1605.389651][T31927] binder: 31926:31927 ioctl 4018620d 200000000040 returned -16
[ 1605.400651][   T24] audit: type=1400 audit(1747239031.871:4014): avc:  denied  { set_context_mgr } for  pid=31926 comm="syz.1.10173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 1605.420814][   T24] audit: type=1400 audit(1747239031.871:4015): avc:  denied  { write } for  pid=31926 comm="syz.1.10173" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1605.444064][   T24] audit: type=1400 audit(1747239031.871:4016): avc:  denied  { map } for  pid=31926 comm="syz.1.10173" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1606.005221][T31949] netem: change failed
[ 1606.129304][T31949] EXT4-fs error (device loop1): ext4_fill_super:4955: inode #2: comm syz.1.10174: iget: checksum invalid
[ 1606.142027][T31949] EXT4-fs (loop1): get root inode failed
[ 1606.147698][T31949] EXT4-fs (loop1): mount failed
[ 1606.177266][ T6313] usb 5-1: new full-speed USB device number 40 using dummy_hcd
[ 1607.152417][T31955] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1607.166583][T31955] syz.2.10182[31955] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1607.166889][T31955] syz.2.10182[31955] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1607.453659][   T24] audit: type=1326 audit(1747239033.807:4017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31962 comm="syz.1.10186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1607.505784][   T24] audit: type=1326 audit(1747239033.826:4018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31962 comm="syz.1.10186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1607.529761][   T24] audit: type=1326 audit(1747239033.826:4019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31962 comm="syz.1.10186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1607.593680][   T24] audit: type=1326 audit(1747239033.844:4020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31962 comm="syz.1.10186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1607.617719][   T24] audit: type=1326 audit(1747239033.854:4021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31966 comm="syz.1.10186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f20ef40c225 code=0x7ffc0000
[ 1607.680117][T31968] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1607.931996][   T24] audit: type=1326 audit(1747239033.910:4022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31962 comm="syz.1.10186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1607.955755][   T24] audit: type=1326 audit(1747239034.041:4023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31966 comm="syz.1.10186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1608.043578][T31974] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1608.050891][T31974] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1608.062981][T31974] EXT4-fs error (device loop1): ext4_orphan_get:1421: comm syz.1.10190: bad orphan inode 131083
[ 1608.074402][T31974] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue
[ 1608.151482][ T6313] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1608.170388][ T6313] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1608.299314][T31983] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1608.316404][T31983] ext4 filesystem being mounted at /216/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1608.420401][ T6313] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1608.429579][ T6313] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1608.437891][ T6313] usb 5-1: Product: syz
[ 1608.745620][ T6313] usb 5-1: Manufacturer: syz
[ 1608.750269][ T6313] usb 5-1: SerialNumber: syz
[ 1608.851859][T32006] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1608.858998][T32006] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1608.870113][T32006] EXT4-fs error (device loop6): ext4_orphan_get:1421: comm syz.6.10201: bad orphan inode 131083
[ 1608.880959][T32006] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue
[ 1608.956994][T32011] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1608.970625][T32011] syz.2.10198[32011] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1608.970918][T32011] syz.2.10198[32011] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1609.008770][ T6313] usb 5-1: 0:2 : does not exist
[ 1609.294003][ T6313] usb 5-1: USB disconnect, device number 40
[ 1609.550372][ T8173] udevd[8173]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1610.158822][T32030] 8021q: VLANs not supported on tunl0
[ 1610.710935][T32037] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[ 1610.839864][T32045] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1610.869886][T32045] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1610.986368][T32059] netlink: 9 bytes leftover after parsing attributes in process `syz.2.10217'.
[ 1610.996758][T32059] device 
30�X��D entered promiscuous mode
[ 1611.011703][T32059] netlink: 5 bytes leftover after parsing attributes in process `syz.2.10217'.
[ 1611.021200][T32059] 1�X��D: renamed from 
30�X��D
[ 1611.029903][T32059] device 
31�X��D left promiscuous mode
[ 1611.037563][T32059] A link change request failed with some changes committed already. Interface 
31�X��D may have been left with an inconsistent configuration, please check.
[ 1611.235291][ T6313] usb 7-1: new full-speed USB device number 83 using dummy_hcd
[ 1611.843592][T32063] device pim6reg1 entered promiscuous mode
[ 1612.069027][T32069] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1612.083066][T32069] syz.8.10219[32069] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1612.083344][T32069] syz.8.10219[32069] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1612.464119][ T6313] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1612.485959][ T6313] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1612.842313][ T6313] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1612.851437][ T6313] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1612.861810][ T6313] usb 7-1: Product: syz
[ 1612.866316][ T6313] usb 7-1: Manufacturer: syz
[ 1612.870943][ T6313] usb 7-1: SerialNumber: syz
[ 1613.162930][T31535] usb 9-1: new full-speed USB device number 32 using dummy_hcd
[ 1613.227218][ T6313] usb 7-1: 0:2 : does not exist
[ 1613.232269][ T6313] usb 7-1: unit 6 not found!
[ 1613.247701][ T6313] usb 7-1: USB disconnect, device number 83
[ 1613.605127][T32097] exfat: Unknown parameter 'iochar'
[ 1613.995525][T32097] netlink: 9 bytes leftover after parsing attributes in process `syz.1.10231'.
[ 1614.007548][T31535] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1614.019472][T31535] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1614.030283][T32097] device 
31�X��D entered promiscuous mode
[ 1614.044608][T32097] netlink: 5 bytes leftover after parsing attributes in process `syz.1.10231'.
[ 1614.054000][T32097] 0�X��D: renamed from 
31�X��D
[ 1614.253873][ T8173] udevd[8173]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1614.314004][T32097] device 
30�X��D left promiscuous mode
[ 1614.320288][T32097] A link change request failed with some changes committed already. Interface 
30�X��D may have been left with an inconsistent configuration, please check.
[ 1614.552914][T31535] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1614.562075][T31535] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1614.570498][T31535] usb 9-1: Product: syz
[ 1614.575458][T31535] usb 9-1: Manufacturer: syz
[ 1614.580045][T31535] usb 9-1: SerialNumber: syz
[ 1614.969672][T31535] usb 9-1: 0:2 : does not exist
[ 1614.979624][T31535] usb 9-1: USB disconnect, device number 32
[ 1615.531666][T32131] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1615.545875][T32131] syz.6.10240[32131] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1615.546185][T32131] syz.6.10240[32131] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1615.868731][T32136] overlayfs: failed to resolve './file1': -2
[ 1618.220910][T32154] exfat: Unknown parameter 'iochar'
[ 1618.364356][T32152] netlink: 9 bytes leftover after parsing attributes in process `syz.8.10246'.
[ 1618.373803][T32152] device gretap0 entered promiscuous mode
[ 1618.381399][T32152] netlink: 5 bytes leftover after parsing attributes in process `syz.8.10246'.
[ 1618.390475][T32152] 0�X��D: renamed from gretap0
[ 1618.396207][T32152] device 
30�X��D left promiscuous mode
[ 1618.402604][T32152] A link change request failed with some changes committed already. Interface 
30�X��D may have been left with an inconsistent configuration, please check.
[ 1618.567810][T32152] FAT-fs (loop8): Directory bread(block 64) failed
[ 1618.574393][T32152] FAT-fs (loop8): Directory bread(block 65) failed
[ 1618.580927][T32152] FAT-fs (loop8): Directory bread(block 66) failed
[ 1618.587536][T32152] FAT-fs (loop8): Directory bread(block 67) failed
[ 1618.594112][T32152] FAT-fs (loop8): Directory bread(block 68) failed
[ 1618.600657][T32152] FAT-fs (loop8): Directory bread(block 69) failed
[ 1618.607357][T32152] FAT-fs (loop8): Directory bread(block 70) failed
[ 1618.613906][T32152] FAT-fs (loop8): Directory bread(block 71) failed
[ 1618.620691][T32152] FAT-fs (loop8): Directory bread(block 72) failed
[ 1618.627330][T32152] FAT-fs (loop8): Directory bread(block 73) failed
[ 1618.745886][T32173] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1618.769196][T32173] ext4 filesystem being mounted at /429/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1618.840436][T32177] overlayfs: failed to resolve './file1': -2
[ 1618.848300][T32177] syz.4.10253[32177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1618.848342][T32177] syz.4.10253[32177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1619.176484][ T6311] usb 2-1: new full-speed USB device number 68 using dummy_hcd
[ 1619.352743][ T6312] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[ 1619.876986][ T6311] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1619.887538][ T6311] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1619.965303][ T6312] usb 9-1: device descriptor read/64, error -71
[ 1620.407547][T32193] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1620.415037][T32193] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.10258: bg 0: block 248: padding at end of block bitmap is not set
[ 1620.429937][T32193] __quota_error: 6 callbacks suppressed
[ 1620.429948][T32193] Quota error (device loop6): write_blk: dquota write failed
[ 1620.443067][T32193] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1620.453100][T32193] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10258: Failed to acquire dquot type 1
[ 1622.517508][ T6311] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1622.534427][ T6311] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1622.592348][ T6311] usb 2-1: Product: syz
[ 1622.596525][ T6311] usb 2-1: Manufacturer: syz
[ 1622.602331][T32193] EXT4-fs (loop6): 1 truncate cleaned up
[ 1622.656725][T32193] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1622.731076][ T6311] usb 2-1: can't set config #1, error -71
[ 1622.740453][ T6311] usb 2-1: USB disconnect, device number 68
[ 1622.755914][T32210] SELinux: failed to load policy
[ 1623.212183][T31534] usb 3-1: new full-speed USB device number 62 using dummy_hcd
[ 1623.286724][T32222] 8021q: VLANs not supported on tunl0
[ 1623.587540][T32224] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1623.602570][T32224] ext4 filesystem being mounted at /229/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1623.714545][T32229] netem: change failed
[ 1623.736156][T31534] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1623.746731][T31534] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1623.923191][T32229] EXT4-fs error (device loop1): ext4_fill_super:4955: inode #2: comm syz.1.10267: iget: checksum invalid
[ 1623.935943][T32229] EXT4-fs (loop1): get root inode failed
[ 1623.941645][T32229] EXT4-fs (loop1): mount failed
[ 1624.806009][T31534] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1625.312515][T31534] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1625.486910][T31534] usb 3-1: Product: syz
[ 1625.491557][T31534] usb 3-1: Manufacturer: syz
[ 1625.496918][T31534] usb 3-1: SerialNumber: syz
[ 1625.503375][T32239] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1625.512737][T32239] syz.6.10271[32239] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1625.512797][T32239] syz.6.10271[32239] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1625.852756][T26333] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[ 1625.895513][T31534] usb 3-1: 0:2 : does not exist
[ 1625.949816][T31534] usb 3-1: USB disconnect, device number 62
[ 1626.275778][T26333] usb 5-1: config 0 has an invalid interface number: 64 but max is 0
[ 1626.284592][T26333] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1626.294809][T26333] usb 5-1: config 0 has no interface number 0
[ 1626.323598][ T8173] udevd[8173]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1627.415748][T26333] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[ 1627.524470][T32261] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1627.532215][T26333] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1627.623977][T26333] usb 5-1: Product: syz
[ 1627.658254][T26333] usb 5-1: Manufacturer: syz
[ 1628.878089][T26333] usb 5-1: SerialNumber: syz
[ 1628.883750][T26333] usb 5-1: config 0 descriptor??
[ 1628.910269][T26333] usb 5-1: can't set config #0, error -71
[ 1628.922119][T26333] usb 5-1: USB disconnect, device number 41
[ 1629.027828][T32257] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1629.093795][T32257] EXT4-fs error (device loop6): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1629.108030][T32257] Quota error (device loop6): write_blk: dquota write failed
[ 1629.115433][T32257] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5
[ 1629.124587][T32257] Quota error (device loop6): write_blk: dquota write failed
[ 1629.131997][T32257] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 1629.142204][T32257] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10276: Failed to acquire dquot type 1
[ 1629.401963][T32257] EXT4-fs (loop6): 1 truncate cleaned up
[ 1629.407625][T32257] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1629.475016][T32269] 9pnet: Insufficient options for proto=fd
[ 1629.708979][T32271] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1629.755004][T32287] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1629.764081][T32287] syz.2.10286[32287] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1629.764141][T32287] syz.2.10286[32287] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1631.443819][T26333] usb 7-1: new high-speed USB device number 84 using dummy_hcd
[ 1631.680293][T32309] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1631.687328][T32309] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.10296: bg 0: block 248: padding at end of block bitmap is not set
[ 1631.702372][T32309] Quota error (device loop8): write_blk: dquota write failed
[ 1631.709787][T32309] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[ 1631.720163][T32309] EXT4-fs error (device loop8): ext4_acquire_dquot:6226: comm syz.8.10296: Failed to acquire dquot type 1
[ 1631.732217][T32309] EXT4-fs (loop8): 1 truncate cleaned up
[ 1631.738199][T32309] EXT4-fs (loop8): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1631.773395][T26333] usb 7-1: Using ep0 maxpacket: 16
[ 1632.182219][T32324] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1632.189175][T32324] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1632.282312][T26333] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11
[ 1632.283436][T32324] EXT4-fs error (device loop8): ext4_orphan_get:1421: comm syz.8.10298: bad orphan inode 131083
[ 1632.293929][T26333] usb 7-1: New USB device found, idVendor=056a, idProduct=0319, bcdDevice= 0.00
[ 1632.314680][T32324] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue
[ 1632.334163][T26333] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1632.347408][T26333] usb 7-1: config 0 descriptor??
[ 1633.223417][T32340] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1633.232588][T32340] syz.8.10305[32340] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1633.232647][T32340] syz.8.10305[32340] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1633.291901][T32301] udc-core: couldn't find an available UDC or it's busy
[ 1633.310753][T32301] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1634.311004][T26333] wacom 0003:056A:0319.0032: unknown main item tag 0x0
[ 1634.328386][T32348] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1634.335189][   T24] audit: type=1326 audit(1747239058.960:4030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32352 comm="syz.4.10309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f954e969 code=0x7ffc0000
[ 1634.335881][T32348] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.10308: bg 0: block 248: padding at end of block bitmap is not set
[ 1634.387455][T32348] Quota error (device loop1): write_blk: dquota write failed
[ 1634.394903][T32348] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[ 1634.404817][T32348] EXT4-fs error (device loop1): ext4_acquire_dquot:6226: comm syz.1.10308: Failed to acquire dquot type 1
[ 1634.486235][T32348] EXT4-fs (loop1): 1 truncate cleaned up
[ 1634.492830][T32348] EXT4-fs (loop1): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1634.754827][   T24] audit: type=1326 audit(1747239059.343:4031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32352 comm="syz.4.10309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f954e969 code=0x7ffc0000
[ 1634.789618][   T24] audit: type=1326 audit(1747239059.381:4032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32352 comm="syz.4.10309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9f954e969 code=0x7ffc0000
[ 1634.813613][   T24] audit: type=1326 audit(1747239059.381:4033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32352 comm="syz.4.10309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f954e969 code=0x7ffc0000
[ 1634.824652][   T20] usb 7-1: USB disconnect, device number 84
[ 1634.849675][   T24] audit: type=1326 audit(1747239059.381:4034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32352 comm="syz.4.10309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7ff9f954e969 code=0x7ffc0000
[ 1634.873666][   T24] audit: type=1326 audit(1747239059.381:4035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32352 comm="syz.4.10309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f954e969 code=0x7ffc0000
[ 1634.873686][   T24] audit: type=1326 audit(1747239059.409:4036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32352 comm="syz.4.10309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9f954e969 code=0x7ffc0000
[ 1635.737679][T32382] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1635.751916][T32382] syz.1.10317[32382] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1635.752162][T32382] syz.1.10317[32382] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1635.784379][ T2401] usb 9-1: new full-speed USB device number 34 using dummy_hcd
[ 1636.150094][T32390] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1636.157154][T32390] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.10321: bg 0: block 248: padding at end of block bitmap is not set
[ 1636.171975][T32390] Quota error (device loop6): write_blk: dquota write failed
[ 1636.179383][T32390] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1636.189794][T32390] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10321: Failed to acquire dquot type 1
[ 1636.202335][T32390] EXT4-fs (loop6): 1 truncate cleaned up
[ 1636.208225][T32390] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1636.232905][T32388] EXT4-fs (loop1): Ignoring removed orlov option
[ 1636.246217][T32388] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsv1,resgid=0x0000000000000000,nodioread_nolock,norecovery,debug_want_extra_isize=0x0000000000000080,resgid=0x0000000000000000,max_dir_size_kb=0x0000000000000008,data_err=ignore,orlov,,errors=continue
[ 1636.404415][ T2401] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1636.414844][ T2401] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1636.571099][T32408] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[ 1636.607529][ T2401] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1636.627480][ T2401] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1636.635794][ T2401] usb 9-1: Product: syz
[ 1636.640336][ T2401] usb 9-1: Manufacturer: syz
[ 1636.646120][ T2401] usb 9-1: SerialNumber: syz
[ 1637.003030][ T2401] usb 9-1: 0:2 : does not exist
[ 1637.007991][ T2401] usb 9-1: unit 6 not found!
[ 1637.023923][ T2401] usb 9-1: USB disconnect, device number 34
[ 1637.062913][T32414] netlink: 'syz.1.10328': attribute type 16 has an invalid length.
[ 1637.077933][T32414] netlink: 'syz.1.10328': attribute type 17 has an invalid length.
[ 1637.879713][ T2401] usb 7-1: new high-speed USB device number 85 using dummy_hcd
[ 1638.410627][T32432] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1638.419876][T32432] syz.4.10332[32432] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1638.419936][T32432] syz.4.10332[32432] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1638.522604][   T24] audit: type=1326 audit(1747239062.879:4037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32434 comm="syz.2.10336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1638.564074][ T2401] usb 7-1: Using ep0 maxpacket: 16
[ 1638.582266][   T24] audit: type=1326 audit(1747239062.907:4038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32434 comm="syz.2.10336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ccf2d4969 code=0x7ffc0000
[ 1639.071342][T32448] netlink: 'syz.4.10340': attribute type 16 has an invalid length.
[ 1639.085956][T32448] netlink: 'syz.4.10340': attribute type 17 has an invalid length.
[ 1639.176094][T32445] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1639.258141][T32445] EXT4-fs error (device loop8): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[ 1639.273190][T32445] EXT4-fs error (device loop8): ext4_acquire_dquot:6226: comm syz.8.10339: Failed to acquire dquot type 1
[ 1639.285197][T32445] EXT4-fs (loop8): 1 truncate cleaned up
[ 1639.290877][T32445] EXT4-fs (loop8): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue
[ 1639.665076][ T2401] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11
[ 1639.686562][ T6311] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[ 1640.197927][ T2401] usb 7-1: New USB device found, idVendor=056a, idProduct=0319, bcdDevice= 0.00
[ 1640.207476][ T2401] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.217441][ T2401] usb 7-1: config 0 descriptor??
[ 1640.370504][   T20] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[ 1640.466837][ T6311] usb 2-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=b4.8e
[ 1640.475934][ T6311] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.486244][T32424] udc-core: couldn't find an available UDC or it's busy
[ 1640.488391][ T6311] usb 2-1: config 0 descriptor??
[ 1640.493486][T32424] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1640.520240][ T6313] usb 9-1: new full-speed USB device number 35 using dummy_hcd
[ 1640.532378][ T6311] usb-storage 2-1:0.0: USB Mass Storage device detected
[ 1640.627064][   T20] usb 3-1: Using ep0 maxpacket: 16
[ 1640.746958][  T276] usb 2-1: USB disconnect, device number 69
[ 1640.756681][ T2401] wacom 0003:056A:0319.0033: unknown main item tag 0x0
[ 1640.763596][   T20] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11
[ 1640.775880][   T20] usb 3-1: New USB device found, idVendor=056a, idProduct=0319, bcdDevice= 0.00
[ 1640.785025][   T20] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.793723][   T20] usb 3-1: config 0 descriptor??
[ 1640.969249][ T6313] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1640.984727][ T6313] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1640.994221][  T276] usb 7-1: USB disconnect, device number 85
[ 1641.056189][T32462] udc-core: couldn't find an available UDC or it's busy
[ 1641.063157][T32462] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1641.204502][ T6313] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1641.213590][ T6313] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1641.221600][ T6313] usb 9-1: Product: syz
[ 1641.226025][ T6313] usb 9-1: Manufacturer: syz
[ 1641.230726][ T6313] usb 9-1: SerialNumber: syz
[ 1641.297959][T32476] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1641.312837][   T20] wacom 0003:056A:0319.0034: unknown main item tag 0x0
[ 1641.490206][T32480] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1641.506118][T32480] syz.1.10350[32480] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1641.506438][T32480] syz.1.10350[32480] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1641.659378][T23638] usb 3-1: USB disconnect, device number 63
[ 1641.686330][T32482] netlink: 'syz.6.10351': attribute type 16 has an invalid length.
[ 1641.694234][T32482] netlink: 'syz.6.10351': attribute type 17 has an invalid length.
[ 1641.717682][ T6313] usb 9-1: 0:2 : does not exist
[ 1641.804801][ T6313] usb 9-1: USB disconnect, device number 35
[ 1642.017408][ T8173] udevd[8173]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1642.229549][T32494] 9pnet: Insufficient options for proto=fd
[ 1642.634512][T32511] netlink: 'syz.1.10362': attribute type 16 has an invalid length.
[ 1642.642617][T32511] netlink: 'syz.1.10362': attribute type 17 has an invalid length.
[ 1643.404919][T32525] SELinux: failed to load policy
[ 1643.977170][T32531] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[ 1644.111082][T32541] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1644.120831][T32541] syz.6.10370[32541] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1644.120918][T32541] syz.6.10370[32541] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1644.275947][T32549] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10375'.
[ 1644.399351][T32549] 8021q: VLANs not supported on ip6gre0
[ 1645.724502][T32561] FAT-fs (loop6): Invalid FSINFO signature: 0x41000000, 0x61417272 (sector = 1)
[ 1645.733802][T32561] FAT-fs (loop6): error, fat_get_cluster: invalid cluster chain (i_pos 1)
[ 1645.742769][T32561] FAT-fs (loop6): Filesystem has been set read-only
[ 1645.884890][T32571] netlink: 'syz.4.10384': attribute type 16 has an invalid length.
[ 1645.892920][T32571] netlink: 'syz.4.10384': attribute type 17 has an invalid length.
[ 1646.199541][T32569] SELinux: failed to load policy
[ 1647.002541][T32577] fuse: Bad value for 'fd'
[ 1647.046674][T32588] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1647.053834][T32588] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.10388: bg 0: block 248: padding at end of block bitmap is not set
[ 1647.068944][T32588] __quota_error: 7 callbacks suppressed
[ 1647.068953][T32588] Quota error (device loop6): write_blk: dquota write failed
[ 1647.081944][T32588] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1647.092033][T32588] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10388: Failed to acquire dquot type 1
[ 1647.105260][T32596] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1647.114474][T32596] syz.4.10389[32596] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1647.114531][T32596] syz.4.10389[32596] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1647.145218][T32588] EXT4-fs (loop6): 1 truncate cleaned up
[ 1647.162733][T32588] EXT4-fs (loop6): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,noload,,errors=continue
[ 1647.560379][   T24] audit: type=1326 audit(1747239071.326:4042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1647.616952][   T24] audit: type=1326 audit(1747239071.354:4043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1648.972302][   T24] audit: type=1326 audit(1747239071.354:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1648.995992][   T24] audit: type=1326 audit(1747239071.354:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1649.047786][   T24] audit: type=1326 audit(1747239071.354:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1649.084362][  T378] attempt to access beyond end of device
[ 1649.084362][  T378] loop1: rw=1, want=1041, limit=128
[ 1649.115791][   T24] audit: type=1326 audit(1747239071.354:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1649.158322][   T24] audit: type=1326 audit(1747239071.354:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1649.203694][   T24] audit: type=1326 audit(1747239071.354:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32601 comm="syz.1.10392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1649.276613][T32621] netlink: 'syz.6.10399': attribute type 16 has an invalid length.
[ 1649.284653][T32621] netlink: 'syz.6.10399': attribute type 17 has an invalid length.
[ 1649.352150][T32618] overlayfs: failed to resolve './file1': -2
[ 1649.359612][T32618] syz.1.10397[32618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1649.359672][T32618] syz.1.10397[32618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1649.453819][T32611] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[ 1649.516305][T32611] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 1649.534745][T32611] F2FS-fs (loop8): invalid crc value
[ 1649.570291][T32611] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1649.638993][T32611] F2FS-fs (loop8): Cannot turn on quotas: -2 on 2
[ 1649.645755][T32611] F2FS-fs (loop8): Start checkpoint disabled!
[ 1649.652860][T32611] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 1649.659948][T32611] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[ 1649.694182][T32636] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1649.703876][T32636] syz.6.10404[32636] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1649.703932][T32636] syz.6.10404[32636] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1649.749787][T15842] attempt to access beyond end of device
[ 1649.749787][T15842] loop8: rw=2049, want=40976, limit=40427
[ 1650.928526][T32657] netlink: 'syz.6.10412': attribute type 16 has an invalid length.
[ 1650.938110][T32657] netlink: 'syz.6.10412': attribute type 17 has an invalid length.
[ 1651.012348][T32667] netlink: 'syz.8.10417': attribute type 16 has an invalid length.
[ 1651.020440][T32667] netlink: 'syz.8.10417': attribute type 17 has an invalid length.
[ 1651.095259][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 1651.107259][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1651.120665][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 1651.130320][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1651.139293][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1651.148660][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1651.157101][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1651.165496][  T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1653.301111][   T24] kauditd_printk_skb: 52 callbacks suppressed
[ 1653.301137][   T24] audit: type=1326 audit(1747239076.695:4102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32682 comm="syz.6.10421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1653.392917][   T24] audit: type=1326 audit(1747239076.695:4103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=32682 comm="syz.6.10421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff0893969 code=0x7ffc0000
[ 1653.446591][T15842] attempt to access beyond end of device
[ 1653.446591][T15842] loop6: rw=1, want=1041, limit=128
[ 1653.990352][T32710] 8021q: VLANs not supported on tunl0
[ 1654.582505][ T2401] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[ 1655.850580][ T2401] usb 2-1: config 0 has an invalid interface number: 64 but max is 0
[ 1655.858934][ T2401] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1655.876248][ T2401] usb 2-1: config 0 has no interface number 0
[ 1658.737159][ T2401] usb 2-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[ 1658.746384][ T2401] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1658.770287][ T2401] usb 2-1: config 0 descriptor??
[ 1658.790454][ T2401] usb 2-1: can't set config #0, error -71
[ 1658.799411][ T2401] usb 2-1: USB disconnect, device number 70
[ 1659.445566][  T306] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1659.530272][  T306] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.10449: bg 0: block 248: padding at end of block bitmap is not set
[ 1659.573220][  T306] Quota error (device loop6): write_blk: dquota write failed
[ 1659.592280][  T306] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[ 1659.602298][  T306] EXT4-fs error (device loop6): ext4_acquire_dquot:6226: comm syz.6.10449: Failed to acquire dquot type 1
[ 1660.138135][  T306] EXT4-fs (loop6): 1 truncate cleaned up
[ 1660.146475][  T313] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000008,min_batch_time=0x0000000000000000,,errors=continue
[ 1660.205156][  T306] EXT4-fs (loop6): mounted filesystem without journal. Opts: resuid=0x0000000000000000,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,resgid=0x0000000000000000,nodiscard,,errors=continue
[ 1660.788545][  T313] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1661.613541][  T343] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10457'.
[ 1661.628378][  T343] 8021q: VLANs not supported on ip6tnl0
[ 1661.813149][   T24] audit: type=1326 audit(1747239084.655:4104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=341 comm="syz.8.10458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1662.105814][   T24] audit: type=1326 audit(1747239084.683:4105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=341 comm="syz.8.10458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1662.838898][   T24] audit: type=1326 audit(1747239084.683:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=341 comm="syz.8.10458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1662.952767][   T24] audit: type=1326 audit(1747239084.683:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=341 comm="syz.8.10458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1663.009438][   T24] audit: type=1326 audit(1747239084.683:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=341 comm="syz.8.10458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1663.184523][  T353] 9pnet: Insufficient options for proto=fd
[ 1664.253566][  T381] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1664.767558][  T394] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10474'.
[ 1664.804782][  T394] 8021q: VLANs not supported on ip6tnl0
[ 1664.815952][  T387] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1664.925829][  T387] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1665.746528][  T401] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10475'.
[ 1665.960584][  T407] fuse: Unknown parameter 'grou00000000000000000000'
[ 1665.968718][  T401] erofs: Unknown parameter '������00000000000000000007�������������������������1��������	�e#tI�-YM7���"k� E�V�'
[ 1666.014500][  T387] EXT4-fs error (device loop8): ext4_orphan_get:1421: comm syz.8.10472: bad orphan inode 131083
[ 1666.042883][  T401] device vlan0 entered promiscuous mode
[ 1666.048482][  T401] device syz_tun entered promiscuous mode
[ 1666.298550][  T387] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue
[ 1666.328276][  T415] tipc: Started in network mode
[ 1666.338013][  T415] tipc: Own node identity ac14140f, cluster identity 4711
[ 1666.345318][  T415] tipc: New replicast peer: 255.255.255.255
[ 1666.351512][  T415] tipc: Enabled bearer <udp:s>, priority 10
[ 1666.471434][T31535] usb 7-1: new high-speed USB device number 86 using dummy_hcd
[ 1666.926092][T31535] usb 7-1: Using ep0 maxpacket: 16
[ 1667.086473][T31535] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11
[ 1667.102099][T31535] usb 7-1: New USB device found, idVendor=056a, idProduct=0319, bcdDevice= 0.00
[ 1667.123220][T31535] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1667.141989][T31535] usb 7-1: config 0 descriptor??
[ 1667.854234][  T403] udc-core: couldn't find an available UDC or it's busy
[ 1667.891137][  T436] 9pnet: Insufficient options for proto=fd
[ 1667.897037][  T403] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1667.958527][  T276] tipc: 32-bit node address hash set to f1414ac
[ 1667.971629][  T438] 9pnet: Insufficient options for proto=fd
[ 1668.092192][  T445] netlink: 4 bytes leftover after parsing attributes in process `syz.8.10488'.
[ 1668.222044][  T445] erofs: Unknown parameter '������00000000000000000007�������������������������1��������	�e#tI�-YM7���"k� E�V�'
[ 1668.747099][T31535] wacom 0003:056A:0319.0035: unknown main item tag 0x0
[ 1668.808657][  T447] exfat: Unknown parameter 'iochar'
[ 1668.867120][  T447] netlink: 9 bytes leftover after parsing attributes in process `syz.1.10490'.
[ 1669.484763][  T447] device 
30�X��D entered promiscuous mode
[ 1669.594475][T31535] usb 7-1: USB disconnect, device number 86
[ 1669.784393][  T445] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1669.793960][  T445] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.10488: bg 0: block 248: padding at end of block bitmap is not set
[ 1669.809364][  T445] Quota error (device loop8): write_blk: dquota write failed
[ 1669.816982][  T445] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[ 1669.826985][  T445] EXT4-fs error (device loop8): ext4_acquire_dquot:6226: comm syz.8.10488: Failed to acquire dquot type 1
[ 1669.840201][  T445] EXT4-fs (loop8): 1 truncate cleaned up
[ 1669.848179][  T445] EXT4-fs (loop8): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,noload,,errors=continue
[ 1669.879428][  T445] 8021q: VLANs not supported on ip6gre0
[ 1670.181387][   T24] audit: type=1326 audit(1747239092.438:4109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1671.994700][   T24] audit: type=1326 audit(1747239092.438:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1672.094546][   T24] audit: type=1326 audit(1747239092.438:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1672.584122][   T24] audit: type=1326 audit(1747239092.438:4112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1672.656901][T24417] attempt to access beyond end of device
[ 1672.656901][T24417] loop1: rw=1, want=1041, limit=128
[ 1672.663722][   T24] audit: type=1326 audit(1747239092.438:4113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1672.726996][   T24] audit: type=1326 audit(1747239092.438:4114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1672.750893][   T24] audit: type=1326 audit(1747239092.438:4115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1672.776234][   T24] audit: type=1326 audit(1747239092.447:4116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=454 comm="syz.1.10493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1672.829129][  T472] 9pnet: Could not find request transport: rdma
[ 1672.953979][  T494] netlink: 'syz.6.10508': attribute type 4 has an invalid length.
[ 1672.985797][  T494] netlink: 36 bytes leftover after parsing attributes in process `syz.6.10508'.
[ 1673.036084][  T502] netlink: 96 bytes leftover after parsing attributes in process `syz.1.10512'.
[ 1673.259326][  T517] netlink: 620 bytes leftover after parsing attributes in process `syz.4.10518'.
[ 1673.458465][  T524] usb usb8: usbfs: process 524 (syz.4.10522) did not claim interface 0 before use
[ 1673.643237][  T537] netlink: 20 bytes leftover after parsing attributes in process `syz.4.10524'.
[ 1673.847605][  T548] netlink: 'syz.2.10532': attribute type 13 has an invalid length.
[ 1673.874374][  T548] netlink: 'syz.2.10532': attribute type 27 has an invalid length.
[ 1674.012850][  T554] EXT4-fs (loop6): Ignoring removed mblk_io_submit option
[ 1674.020198][  T554] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1674.033036][  T563] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10536'.
[ 1674.043462][  T554] EXT4-fs (loop6): 1 truncate cleaned up
[ 1674.045945][  T563] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10536'.
[ 1674.049246][  T554] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpjquota=,mblk_io_submit,debug_want_extra_isize=0x0000000000000068,lazytime,discard,grpquota,,errors=continue
[ 1674.175534][  T584] netlink: 20 bytes leftover after parsing attributes in process `syz.8.10543'.
[ 1674.225093][  T592] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1674.412781][  T628] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10568'.
[ 1674.605639][  T646] EXT4-fs (loop6): failed to initialize system zone (-117)
[ 1674.614697][  T646] EXT4-fs (loop6): mount failed
[ 1674.766007][  T659] attempt to access beyond end of device
[ 1674.766007][  T659] loop1: rw=0, want=241, limit=128
[ 1674.793676][T15842] attempt to access beyond end of device
[ 1674.793676][T15842] loop1: rw=1, want=1041, limit=128
[ 1674.883818][  T668] hub 9-0:1.0: USB hub found
[ 1674.888597][  T668] hub 9-0:1.0: 1 port detected
[ 1674.892885][  T670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10585'.
[ 1674.976715][  T680]  loop1: p1 < > p4
[ 1674.982521][  T680] loop1: p4 size 8388608 extends beyond EOD, truncated
[ 1675.030830][  T684] ------------[ cut here ]------------
[ 1675.036471][  T684] WARNING: CPU: 1 PID: 684 at mm/page_alloc.c:5333 __alloc_pages_nodemask+0x313/0x5f0
[ 1675.047122][  T684] Modules linked in:
[ 1675.051074][  T684] CPU: 1 PID: 684 Comm: syz.6.10592 Not tainted 5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1675.060960][  T684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1675.071134][  T684] RIP: 0010:__alloc_pages_nodemask+0x313/0x5f0
[ 1675.077394][  T684] Code: 48 3b 8c 24 e0 00 00 00 0f 85 a0 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 41 f7 c6 00 20 00 00 0f 85 fa fd ff ff <0f> 0b 31 c0 eb 9f 31 c0 e9 c8 fd ff ff 4c 89 ff e8 d8 8f f5 ff 49
[ 1675.097583][  T684] RSP: 0018:ffffc90000f27660 EFLAGS: 00010246
[ 1675.103862][  T684] RAX: ffffc90000f276f0 RBX: 0000000000000000 RCX: 0000000000000000
[ 1675.111988][  T684] RDX: 0000000000000018 RSI: 0000000000000000 RDI: ffffc90000f27708
[ 1675.120235][  T684] RBP: ffffc90000f27788 R08: dffffc0000000000 R09: ffffc90000f276f0
[ 1675.128324][  T684] R10: fffff520001e4ee1 R11: 1ffff920001e4ede R12: 1ffff920001e4ed4
[ 1675.136507][  T684] R13: dffffc0000000000 R14: 0000000000040dc0 R15: 0000000000000013
[ 1675.144478][  T684] FS:  00007f6feeefc6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1675.153426][  T684] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1675.159990][ T8171] print_req_error: 32 callbacks suppressed
[ 1675.160006][ T8171] blk_update_request: I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[ 1675.160055][ T8171] blk_update_request: I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1675.160063][ T8171] buffer_io_error: 25 callbacks suppressed
[ 1675.160071][ T8171] Buffer I/O error on dev loop1p4, logical block 1, async page read
[ 1675.201707][  T684] CR2: 0000200000001000 CR3: 00000001085fa000 CR4: 00000000003506a0
[ 1675.204927][ T8173] udevd[8173]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[ 1675.211176][  T684] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1675.228384][  T684] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1675.236729][  T684] Call Trace:
[ 1675.240142][  T684]  ? security_load_policy+0x154/0xf10
[ 1675.240164][  T684]  ? sel_write_load+0x303/0x5a0
[ 1675.256875][  T684]  ? vfs_write+0x32d/0xd60
[ 1675.261311][  T684]  ? ksys_write+0x140/0x240
[ 1675.281435][  T684]  ? __x64_sys_write+0x7b/0x90
[ 1675.287564][  T684]  ? do_syscall_64+0x31/0x40
[ 1675.292581][  T684]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1675.300913][   T24] kauditd_printk_skb: 86 callbacks suppressed
[ 1675.300926][   T24] audit: type=1326 audit(1747239097.283:4203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=689 comm="syz.1.10594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1675.321544][  T684]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 1675.339967][  T684]  kmalloc_order+0x4c/0x160
[ 1675.345012][  T684]  kmalloc_order_trace+0x16/0x80
[ 1675.350048][  T684]  __kmalloc+0x1ee/0x330
[ 1675.359402][  T684]  hashtab_init+0xb3/0x130
[ 1675.364477][  T684]  symtab_init+0x40/0x60
[ 1675.369299][  T684]  class_read+0x285/0xe50
[ 1675.374087][  T684]  ? common_read+0x630/0x630
[ 1675.382445][  T684]  policydb_read+0xac1/0x2ba0
[ 1675.389197][  T684]  security_load_policy+0x154/0xf10
[ 1675.396685][  T684]  ? exc_page_fault+0x67/0xc0
[ 1675.403220][   T24] audit: type=1326 audit(1747239097.283:4204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=689 comm="syz.1.10594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1675.408251][  T684]  ? asm_exc_page_fault+0x1e/0x30
[ 1675.431119][   T24] audit: type=1326 audit(1747239097.283:4205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=689 comm="syz.1.10594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1675.455169][   T24] audit: type=1326 audit(1747239097.283:4206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=689 comm="syz.1.10594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1675.479072][   T24] audit: type=1326 audit(1747239097.283:4207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=689 comm="syz.1.10594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ef3d9969 code=0x7ffc0000
[ 1675.488338][  T684]  ? selinux_policy_commit+0x590/0x590
[ 1675.508698][  T684]  ? copy_user_enhanced_fast_string+0xe/0x40
[ 1675.531443][  T684]  ? _copy_from_user+0x95/0xd0
[ 1675.537669][   T24] audit: type=1400 audit(1747239097.498:4208): avc:  denied  { write } for  pid=699 comm="syz.4.10599" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1675.557885][  T684]  sel_write_load+0x303/0x5a0
[ 1675.562574][  T684]  ? sel_make_dir+0x280/0x280
[ 1675.567643][  T684]  ? rw_verify_area+0x1c0/0x360
[ 1675.579123][  T702] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue
[ 1675.588383][  T684]  ? sel_make_dir+0x280/0x280
[ 1675.593176][  T684]  vfs_write+0x32d/0xd60
[ 1675.602632][  T702] ext4 filesystem being mounted at /296/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1675.605764][  T684]  ? kernel_write+0x3c0/0x3c0
[ 1675.618879][  T684]  ? __kasan_check_write+0x14/0x20
[ 1675.624043][  T684]  ? mutex_lock+0x8c/0xe0
[ 1675.628612][  T684]  ? mutex_trylock+0xa0/0xa0
[ 1675.633301][  T684]  ? __fget_files+0x2c4/0x320
[ 1675.639517][  T684]  ? __fdget_pos+0x2d2/0x380
[ 1675.641289][  T716] syz.2.10605[716] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1675.644161][  T716] syz.2.10605[716] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1675.644352][  T684]  ? ksys_write+0x71/0x240
[ 1675.677340][  T684]  ksys_write+0x140/0x240
[ 1675.681928][  T684]  ? __ia32_sys_read+0x90/0x90
[ 1675.686770][  T684]  ? fpu__clear_all+0x20/0x20
[ 1675.691494][  T684]  ? fd_install+0x50/0x60
[ 1675.696407][  T684]  __x64_sys_write+0x7b/0x90
[ 1675.701075][  T684]  do_syscall_64+0x31/0x40
[ 1675.705816][  T684]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1675.711779][  T684] RIP: 0033:0x7f6ff0893969
[ 1675.716645][  T684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1675.736939][  T684] RSP: 002b:00007f6feeefc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1675.745437][  T684] RAX: ffffffffffffffda RBX: 00007f6ff0abafa0 RCX: 00007f6ff0893969
[ 1675.753754][  T684] RDX: 0000000000002000 RSI: 0000200000000000 RDI: 0000000000000004
[ 1675.761991][  T684] RBP: 00007f6ff0915ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1675.770667][  T684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1675.779481][  T684] R13: 0000000000000000 R14: 00007f6ff0abafa0 R15: 00007ffcf9314738
[ 1675.787562][  T684] ---[ end trace 04d1c163251682cc ]---
[ 1675.793537][  T684] SELinux: failed to load policy
[ 1675.960576][   T24] audit: type=1400 audit(1747239097.901:4209): avc:  denied  { shutdown } for  pid=742 comm="syz.4.10619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1676.076567][   T24] audit: type=1326 audit(1747239097.994:4210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=759 comm="syz.8.10628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1676.138910][   T24] audit: type=1326 audit(1747239098.032:4211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=759 comm="syz.8.10628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1676.180209][  T761] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1676.201185][  T761] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1676.223903][  T761] device bridge_slave_0 entered promiscuous mode
[ 1676.229538][   T24] audit: type=1326 audit(1747239098.032:4212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=759 comm="syz.8.10628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f7bcdce4969 code=0x7ffc0000
[ 1676.273604][  T761] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1676.310216][  T761] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1676.319202][  T761] device bridge_slave_1 entered promiscuous mode
[ 1676.408946][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1676.416372][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1676.420442][  T789] hub 9-0:1.0: USB hub found
[ 1676.428217][  T789] hub 9-0:1.0: 1 port detected
[ 1676.463142][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1676.471494][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1676.491036][T26230] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1676.498099][T26230] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1676.509859][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1676.519252][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1676.536355][T26230] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1676.543432][T26230] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1676.562531][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1676.589146][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1676.608518][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1676.632209][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1676.640348][  T805] syz.8.10646[805] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1676.640409][  T805] syz.8.10646[805] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1676.659355][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1676.687907][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1676.696294][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1676.705803][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1676.714048][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1676.737169][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1676.745258][T26230] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1676.762915][  T761] device veth0_vlan entered promiscuous mode
[ 1676.778709][T15842] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1676.806223][T15842] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1676.825710][  T761] device veth1_macvtap entered promiscuous mode
[ 1676.860947][T15842] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1676.875576][T15842] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1676.905162][T15842] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1676.923503][T15842] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1676.952249][  T823] device veth1_to_team entered promiscuous mode
[ 1676.976867][T24417] device bridge_slave_1 left promiscuous mode
[ 1676.983123][T24417] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1676.991069][T24417] device bridge_slave_0 left promiscuous mode
[ 1676.997390][T24417] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1677.011328][T24417] device veth1_macvtap left promiscuous mode
[ 1677.017403][T24417] device veth0_vlan left promiscuous mode
[ 1677.599850][  T865] EXT4-fs (loop6): Ignoring removed oldalloc option
[ 1677.621849][  T865] EXT4-fs error (device loop6): ext4_xattr_inode_iget:400: comm syz.6.10674: Parent and EA inode have the same ino 15
[ 1677.635287][  T865] EXT4-fs (loop6): Remounting filesystem read-only
[ 1677.642123][  T865] EXT4-fs error (device loop6): ext4_evict_inode:294: comm syz.6.10674: couldn't truncate inode 15 (err -30)
[ 1677.654040][  T865] EXT4-fs (loop6): 1 orphan inode deleted
[ 1677.660043][  T865] EXT4-fs (loop6): mounted filesystem without journal. Opts: errors=remount-ro,bsdgroups,debug_want_extra_isize=0x000000000000005e,noauto_da_alloc,bsdgroups,oldalloc,nojournal_checksum,
[ 1677.754374][  T880] netlink: 80 bytes leftover after parsing attributes in process `syz.6.10678'.
[ 1677.922397][  T911] syz.2.10695[911] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1677.922464][  T911] syz.2.10695[911] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1677.935640][  T902] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1677.972907][  T902] EXT4-fs (loop6): 1 truncate cleaned up
[ 1677.978842][  T902] EXT4-fs (loop6): mounted filesystem without journal. Opts: noblock_validity,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,
[ 1677.995906][  T919] tipc: New replicast peer: 255.255.255.255
[ 1678.002060][  T919] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1678.043905][  T915] EXT4-fs (loop8): bad geometry: block count 1310720 exceeds size of device (512 blocks)
[ 1678.133102][  T943] netlink: 'syz.0.10710': attribute type 4 has an invalid length.
[ 1678.184027][  T968] device wireguard0 entered promiscuous mode
[ 1678.294689][  T982] EXT4-fs (loop8): Unrecognized mount option "mb_optimize_scan=0x0000000000000000" or missing value
[ 1678.310939][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x4
[ 1678.318999][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x2
[ 1678.327227][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.334905][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.342529][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.350198][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.357990][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.365693][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.374756][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.383070][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.390743][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.398398][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.407656][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.415300][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.423146][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.430820][T31535] hid-generic 0000:3000000:0000.0036: unknown main item tag 0x0
[ 1678.439186][T31535] hid-generic 0000:3000000:0000.0036: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[ 1679.459848][ T1062] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1679.978367][ T1149] device pim6reg1 entered promiscuous mode
[ 1680.066086][ T1160] FAT-fs (loop8): Directory bread(block 162) failed
[ 1680.072773][ T1160] FAT-fs (loop8): Directory bread(block 163) failed
[ 1680.079472][ T1160] FAT-fs (loop8): Directory bread(block 164) failed
[ 1680.086184][ T1160] FAT-fs (loop8): Directory bread(block 165) failed
[ 1680.092835][ T1160] FAT-fs (loop8): Directory bread(block 166) failed
[ 1680.100245][ T1160] FAT-fs (loop8): Directory bread(block 167) failed
[ 1680.106901][ T1160] FAT-fs (loop8): Directory bread(block 168) failed
[ 1680.113643][ T1160] FAT-fs (loop8): Directory bread(block 169) failed
[ 1680.139060][ T1160] FAT-fs (loop8): Directory bread(block 162) failed
[ 1680.145842][ T1160] FAT-fs (loop8): Directory bread(block 163) failed
[ 1680.153138][ T1160] attempt to access beyond end of device
[ 1680.153138][ T1160] loop8: rw=3, want=232, limit=128
[ 1680.164626][ T1160] attempt to access beyond end of device
[ 1680.164626][ T1160] loop8: rw=2051, want=234, limit=128
[ 1680.182612][ T1160] attempt to access beyond end of device
[ 1680.182612][ T1160] loop8: rw=3, want=240, limit=128
[ 1680.199713][ T1160] attempt to access beyond end of device
[ 1680.199713][ T1160] loop8: rw=2051, want=242, limit=128
[ 1680.288232][ T1186] xt_hashlimit: max too large, truncated to 1048576
[ 1680.300888][ T1188] SELinux: security policydb version 18 (MLS) not backwards compatible
[ 1680.309197][ T1188] SELinux: failed to load policy
[ 1680.408542][ T1214] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10827'.
[ 1680.420056][ T1214] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1680.421558][ T1203] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 1680.474216][ T1203] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.10822: bg 0: block 248: padding at end of block bitmap is not set
[ 1680.495745][ T1203] EXT4-fs error (device loop8): ext4_acquire_dquot:6226: comm syz.8.10822: Failed to acquire dquot type 1
[ 1680.518211][ T1203] EXT4-fs (loop8): 1 truncate cleaned up
[ 1680.524104][ T1203] EXT4-fs (loop8): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,auto_da_alloc,noload,nodiscard,,errors=continue
[ 1680.554674][ T1235] ==================================================================
[ 1680.562760][ T1235] BUG: KASAN: slab-out-of-bounds in tc_setup_flow_action+0x842/0x3280
[ 1680.570900][ T1235] Read of size 8 at addr ffff888118872fc0 by task syz.4.10835/1235
[ 1680.578763][ T1235] 
[ 1680.581089][ T1235] CPU: 0 PID: 1235 Comm: syz.4.10835 Tainted: G        W         5.10.237-syzkaller-00309-g7e2543346ff7 #0
[ 1680.592426][ T1235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1680.602476][ T1235] Call Trace:
[ 1680.605754][ T1235]  __dump_stack+0x21/0x24
[ 1680.610065][ T1235]  dump_stack_lvl+0x169/0x1d8
[ 1680.614732][ T1235]  ? show_regs_print_info+0x18/0x18
[ 1680.619911][ T1235]  ? thaw_kernel_threads+0x220/0x220
[ 1680.625177][ T1235]  print_address_description+0x7f/0x2c0
[ 1680.630717][ T1235]  ? tc_setup_flow_action+0x842/0x3280
[ 1680.636161][ T1235]  kasan_report+0xe2/0x130
[ 1680.640558][ T1235]  ? flow_action_cookie_create+0x28/0x90
[ 1680.646171][ T1235]  ? tc_setup_flow_action+0x842/0x3280
[ 1680.651607][ T1235]  __asan_report_load8_noabort+0x14/0x20
[ 1680.657215][ T1235]  tc_setup_flow_action+0x842/0x3280
[ 1680.662481][ T1235]  ? __kmalloc+0x1a7/0x330
[ 1680.666874][ T1235]  ? flow_rule_alloc+0x32/0x2c0
[ 1680.671706][ T1235]  mall_replace_hw_filter+0x293/0x810
[ 1680.677068][ T1235]  ? pcpu_block_update_hint_alloc+0x8bc/0xc50
[ 1680.683158][ T1235]  ? mall_set_parms+0x410/0x410
[ 1680.687993][ T1235]  ? tcf_exts_destroy+0xb0/0xb0
[ 1680.692852][ T1235]  ? pcpu_alloc+0xf8a/0x16b0
[ 1680.697427][ T1235]  ? mall_set_parms+0x19d/0x410
[ 1680.702272][ T1235]  mall_change+0x528/0x750
[ 1680.706668][ T1235]  ? __kasan_check_write+0x14/0x20
[ 1680.711756][ T1235]  ? mall_get+0xa0/0xa0
[ 1680.715891][ T1235]  ? tcf_chain_tp_insert_unique+0xac1/0xc10
[ 1680.721766][ T1235]  ? nla_strcmp+0xf4/0x140
[ 1680.726160][ T1235]  tc_new_tfilter+0x13f6/0x1a10
[ 1680.730984][ T1235]  ? mall_get+0xa0/0xa0
[ 1680.735120][ T1235]  ? tcf_gate_entry_destructor+0x20/0x20
[ 1680.740744][ T1235]  ? security_capable+0x87/0xb0
[ 1680.745577][ T1235]  ? ns_capable+0x8c/0xf0
[ 1680.749889][ T1235]  ? netlink_net_capable+0x125/0x160
[ 1680.755155][ T1235]  ? tcf_gate_entry_destructor+0x20/0x20
[ 1680.760775][ T1235]  rtnetlink_rcv_msg+0x800/0xb90
[ 1680.765705][ T1235]  ? rtnetlink_bind+0x80/0x80
[ 1680.770372][ T1235]  ? arch_stack_walk+0xee/0x140
[ 1680.775213][ T1235]  ? stack_trace_save+0x98/0xe0
[ 1680.780061][ T1235]  ? stack_trace_snprint+0xf0/0xf0
[ 1680.785152][ T1235]  ? memcpy+0x56/0x70
[ 1680.789116][ T1235]  ? avc_has_perm+0x234/0x360
[ 1680.793775][ T1235]  ? __kasan_slab_alloc+0xbd/0xf0
[ 1680.798792][ T1235]  ? slab_post_alloc_hook+0x5d/0x2f0
[ 1680.804063][ T1235]  ? ___sys_sendmsg+0x1f0/0x260
[ 1680.808892][ T1235]  ? avc_has_perm_noaudit+0x240/0x240
[ 1680.814253][ T1235]  ? selinux_nlmsg_lookup+0x3fb/0x4a0
[ 1680.819611][ T1235]  netlink_rcv_skb+0x1e0/0x430
[ 1680.824360][ T1235]  ? rtnetlink_bind+0x80/0x80
[ 1680.829022][ T1235]  ? netlink_ack+0xb80/0xb80
[ 1680.833597][ T1235]  ? __netlink_lookup+0x387/0x3b0
[ 1680.838608][ T1235]  rtnetlink_rcv+0x1c/0x20
[ 1680.843015][ T1235]  netlink_unicast+0x87c/0xa40
[ 1680.847764][ T1235]  netlink_sendmsg+0x88d/0xb30
[ 1680.852510][ T1235]  ? schedule_preempt_disabled+0x20/0x20
[ 1680.858133][ T1235]  ? netlink_getsockopt+0x530/0x530
[ 1680.863316][ T1235]  ? security_socket_sendmsg+0x82/0xa0
[ 1680.868758][ T1235]  ? netlink_getsockopt+0x530/0x530
[ 1680.873940][ T1235]  ____sys_sendmsg+0x5a2/0x8c0
[ 1680.878691][ T1235]  ? __sys_sendmsg_sock+0x40/0x40
[ 1680.883701][ T1235]  ? import_iovec+0x7c/0xb0
[ 1680.888189][ T1235]  ___sys_sendmsg+0x1f0/0x260
[ 1680.892851][ T1235]  ? __sys_sendmsg+0x250/0x250
[ 1680.897605][ T1235]  ? __fdget+0x1a1/0x230
[ 1680.901831][ T1235]  __x64_sys_sendmsg+0x1e2/0x2a0
[ 1680.906753][ T1235]  ? ___sys_sendmsg+0x260/0x260
[ 1680.911588][ T1235]  ? switch_fpu_return+0x197/0x340
[ 1680.916684][ T1235]  do_syscall_64+0x31/0x40
[ 1680.921087][ T1235]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1680.926963][ T1235] RIP: 0033:0x7ff9f954e969
[ 1680.931365][ T1235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1680.950965][ T1235] RSP: 002b:00007ff9f7bb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1680.959374][ T1235] RAX: ffffffffffffffda RBX: 00007ff9f9775fa0 RCX: 00007ff9f954e969
[ 1680.967339][ T1235] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[ 1680.975446][ T1235] RBP: 00007ff9f95d0ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1680.983411][ T1235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1680.991372][ T1235] R13: 0000000000000000 R14: 00007ff9f9775fa0 R15: 00007ffd0d46b458
[ 1680.999333][ T1235] 
[ 1681.001646][ T1235] Allocated by task 1235:
[ 1681.005969][ T1235]  __kasan_kmalloc+0xda/0x110
[ 1681.010633][ T1235]  __kmalloc+0x1a7/0x330
[ 1681.014970][ T1235]  tcf_idr_create+0x5f/0x790
[ 1681.019552][ T1235]  tcf_idr_create_from_flags+0x61/0x70
[ 1681.025001][ T1235]  tcf_gact_init+0x2b4/0x520
[ 1681.029577][ T1235]  tcf_action_init_1+0x3e1/0x670
[ 1681.034500][ T1235]  tcf_action_init+0x1e6/0x700
[ 1681.039255][ T1235]  tcf_exts_validate+0x215/0x510
[ 1681.044189][ T1235]  mall_set_parms+0x4b/0x410
[ 1681.048769][ T1235]  mall_change+0x45c/0x750
[ 1681.053168][ T1235]  tc_new_tfilter+0x13f6/0x1a10
[ 1681.058009][ T1235]  rtnetlink_rcv_msg+0x800/0xb90
[ 1681.062935][ T1235]  netlink_rcv_skb+0x1e0/0x430
[ 1681.067685][ T1235]  rtnetlink_rcv+0x1c/0x20
[ 1681.072091][ T1235]  netlink_unicast+0x87c/0xa40
[ 1681.076846][ T1235]  netlink_sendmsg+0x88d/0xb30
[ 1681.081598][ T1235]  ____sys_sendmsg+0x5a2/0x8c0
[ 1681.086350][ T1235]  ___sys_sendmsg+0x1f0/0x260
[ 1681.091011][ T1235]  __x64_sys_sendmsg+0x1e2/0x2a0
[ 1681.095930][ T1235]  do_syscall_64+0x31/0x40
[ 1681.100330][ T1235]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1681.106200][ T1235] 
[ 1681.108510][ T1235] Last potentially related work creation:
[ 1681.114242][ T1235]  kasan_save_stack+0x3a/0x60
[ 1681.118906][ T1235]  __kasan_record_aux_stack+0xd2/0x100
[ 1681.124346][ T1235]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 1681.130137][ T1235]  call_rcu+0x105/0x1040
[ 1681.134362][ T1235]  neigh_parms_release+0x1cb/0x200
[ 1681.139457][ T1235]  inetdev_event+0x81c/0x1030
[ 1681.144118][ T1235]  raw_notifier_call_chain+0x90/0x100
[ 1681.149476][ T1235]  unregister_netdevice_many+0xf8b/0x1980
[ 1681.155175][ T1235]  ip_tunnel_delete_nets+0x343/0x390
[ 1681.160443][ T1235]  erspan_exit_batch_net+0x22/0x30
[ 1681.165536][ T1235]  cleanup_net+0x5fb/0xb70
[ 1681.169931][ T1235]  process_one_work+0x6e1/0xba0
[ 1681.174761][ T1235]  worker_thread+0xa6a/0x13b0
[ 1681.179418][ T1235]  kthread+0x346/0x3d0
[ 1681.183469][ T1235]  ret_from_fork+0x1f/0x30
[ 1681.187862][ T1235] 
[ 1681.190172][ T1235] Second to last potentially related work creation:
[ 1681.196751][ T1235]  kasan_save_stack+0x3a/0x60
[ 1681.201411][ T1235]  __kasan_record_aux_stack+0xd2/0x100
[ 1681.206853][ T1235]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 1681.212639][ T1235]  call_rcu+0x105/0x1040
[ 1681.216866][ T1235]  neigh_parms_release+0x1cb/0x200
[ 1681.221960][ T1235]  inetdev_event+0x81c/0x1030
[ 1681.226617][ T1235]  raw_notifier_call_chain+0x90/0x100
[ 1681.231971][ T1235]  unregister_netdevice_many+0xf8b/0x1980
[ 1681.237674][ T1235]  ip_tunnel_delete_nets+0x343/0x390
[ 1681.242943][ T1235]  ipgre_exit_batch_net+0x22/0x30
[ 1681.247945][ T1235]  cleanup_net+0x5fb/0xb70
[ 1681.252349][ T1235]  process_one_work+0x6e1/0xba0
[ 1681.257178][ T1235]  worker_thread+0xa6a/0x13b0
[ 1681.261837][ T1235]  kthread+0x346/0x3d0
[ 1681.265886][ T1235]  ret_from_fork+0x1f/0x30
[ 1681.270301][ T1235] 
[ 1681.272617][ T1235] The buggy address belongs to the object at ffff888118872f00
[ 1681.272617][ T1235]  which belongs to the cache kmalloc-192 of size 192
[ 1681.286658][ T1235] The buggy address is located 0 bytes to the right of
[ 1681.286658][ T1235]  192-byte region [ffff888118872f00, ffff888118872fc0)
[ 1681.300255][ T1235] The buggy address belongs to the page:
[ 1681.305881][ T1235] page:ffffea0004621c80 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x118872
[ 1681.316091][ T1235] flags: 0x4000000000000200(slab)
[ 1681.321097][ T1235] raw: 4000000000000200 ffffea000446d080 0000000500000005 ffff888100043380
[ 1681.329666][ T1235] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 1681.338235][ T1235] page dumped because: kasan: bad access detected
[ 1681.344638][ T1235] page_owner tracks the page as allocated
[ 1681.350348][ T1235] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 20737, ts 968831025933, free_ts 968472300744
[ 1681.366562][ T1235]  prep_new_page+0x179/0x180
[ 1681.371137][ T1235]  get_page_from_freelist+0x2235/0x23d0
[ 1681.376668][ T1235]  __alloc_pages_nodemask+0x268/0x5f0
[ 1681.382019][ T1235]  new_slab+0x84/0x3f0
[ 1681.386069][ T1235]  ___slab_alloc+0x2a6/0x450
[ 1681.390639][ T1235]  __slab_alloc+0x63/0xa0
[ 1681.394960][ T1235]  __kmalloc_track_caller+0x1ef/0x320
[ 1681.400323][ T1235]  kmemdup+0x26/0x60
[ 1681.404200][ T1235]  neigh_parms_alloc+0x85/0x430
[ 1681.409027][ T1235]  inetdev_init+0x141/0x480
[ 1681.413508][ T1235]  inetdev_event+0x1f8/0x1030
[ 1681.418166][ T1235]  raw_notifier_call_chain+0x90/0x100
[ 1681.423519][ T1235]  call_netdevice_notifiers+0x111/0x190
[ 1681.429043][ T1235]  register_netdevice+0x1043/0x13c0
[ 1681.434223][ T1235]  __ip_tunnel_create+0x2bf/0x380
[ 1681.439226][ T1235]  ip_tunnel_init_net+0x290/0x740
[ 1681.444224][ T1235] page last free stack trace:
[ 1681.448888][ T1235]  free_unref_page_prepare+0x2b7/0x2d0
[ 1681.454327][ T1235]  __free_pages+0x14b/0x380
[ 1681.458812][ T1235]  free_pages+0x82/0x90
[ 1681.462967][ T1235]  kasan_depopulate_vmalloc_pte+0x6b/0x90
[ 1681.468676][ T1235]  __apply_to_page_range+0x74e/0x9e0
[ 1681.474195][ T1235]  apply_to_existing_page_range+0x38/0x50
[ 1681.479917][ T1235]  kasan_release_vmalloc+0x97/0xb0
[ 1681.485033][ T1235]  __purge_vmap_area_lazy+0x133b/0x1470
[ 1681.490559][ T1235]  _vm_unmap_aliases+0x2f8/0x380
[ 1681.495482][ T1235]  __vunmap+0x66e/0x9d0
[ 1681.499622][ T1235]  vfree+0x61/0x90
[ 1681.503337][ T1235]  module_memfree+0x17/0x30
[ 1681.507835][ T1235]  bpf_jit_free_exec+0x15/0x20
[ 1681.512589][ T1235]  bpf_jit_binary_free+0x4c/0x260
[ 1681.517594][ T1235]  bpf_jit_free+0x7f/0x1e0
[ 1681.521993][ T1235]  bpf_prog_free_deferred+0x552/0x5f0
[ 1681.527348][ T1235] 
[ 1681.529811][ T1235] Memory state around the buggy address:
[ 1681.535429][ T1235]  ffff888118872e80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1681.543476][ T1235]  ffff888118872f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1681.551518][ T1235] >ffff888118872f80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 1681.559558][ T1235]                                            ^
[ 1681.565705][ T1235]  ffff888118873000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1681.573749][ T1235]  ffff888118873080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1681.581788][ T1235] ==================================================================
[ 1681.589844][ T1235] Disabling lock debugging due to kernel taint