last executing test programs:

23m33.069412806s ago: executing program 3 (id=4):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
chdir(0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000f80)=""/4096, 0x1000)

23m31.638650921s ago: executing program 3 (id=8):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect(0x1, 0xfffffffffffffd22, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000180)={0x1, 0x1, &(0x7f0000000580)=""/247, &(0x7f00000000c0)=""/85, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000a40))
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf}, 0x94)
unshare(0x64000600)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000))
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, 0x0)
ioctl$UFFDIO_COPY(r4, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x18100})
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

23m13.496364276s ago: executing program 32 (id=8):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect(0x1, 0xfffffffffffffd22, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000180)={0x1, 0x1, &(0x7f0000000580)=""/247, &(0x7f00000000c0)=""/85, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000a40))
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf}, 0x94)
unshare(0x64000600)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000))
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, 0x0)
ioctl$UFFDIO_COPY(r4, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x18100})
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

6m39.389669024s ago: executing program 4 (id=2430):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
ptrace$ARCH_MAP_VDSO_32(0x1e, r3, 0x7fffffffffffffff, 0x2002)
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_setup(0xba7, &(0x7f0000000180))
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)

6m37.19728833s ago: executing program 4 (id=2432):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x4, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x800700, &(0x7f0000000340)={[{@grpjquota}, {@discard}, {@norecovery}, {@noinit_itable}, {@test_dummy_encryption}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@jqfmt_vfsold}, {@dioread_lock}, {@noblock_validity}, {@nouid32}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0xfdfe, 0x7, @remote, 0x4}, 0x1c)
connect$pppl2tp(r1, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)

6m36.140421255s ago: executing program 4 (id=2434):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
ptrace$ARCH_MAP_VDSO_32(0x1e, r3, 0x7fffffffffffffff, 0x2002)
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_setup(0xba7, &(0x7f0000000180))
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)

6m34.654296943s ago: executing program 4 (id=2439):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
ptrace$ARCH_MAP_VDSO_32(0x1e, r3, 0x7fffffffffffffff, 0x2002)
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, &(0x7f0000000640))
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)

6m32.051714592s ago: executing program 4 (id=2441):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
ptrace$ARCH_MAP_VDSO_32(0x1e, r3, 0x7fffffffffffffff, 0x2002)
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, &(0x7f0000000640))
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)

6m30.318935991s ago: executing program 4 (id=2444):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
syz_mount_image$exfat(&(0x7f0000002000), &(0x7f0000005840)='./file1\x00', 0x1000806, &(0x7f00000016c0)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYBLOB="2c666d61736b3d30303030b8463c983030303030303030303030303030362c696f6368617273652acf418b743d637e3737352c6769643d00", @ANYRESHEX=0x0, @ANYBLOB=',dmask=00000000000000000000027,errors=continue,errors=remount-ro,namecase=1,fmask=00000000000000000000003,umask=00000000000000000000003,allow_utime=00000000000000000000200,\x00'], 0x9, 0x1505, &(0x7f0000000180)="$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")
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x95}}}, &(0x7f0000000200)='syzkaller\x00', 0x2, 0xf7, &(0x7f0000000880)=""/4092}, 0x3d)

6m14.97239176s ago: executing program 33 (id=2444):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
syz_mount_image$exfat(&(0x7f0000002000), &(0x7f0000005840)='./file1\x00', 0x1000806, &(0x7f00000016c0)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYBLOB="2c666d61736b3d30303030b8463c983030303030303030303030303030362c696f6368617273652acf418b743d637e3737352c6769643d00", @ANYRESHEX=0x0, @ANYBLOB=',dmask=00000000000000000000027,errors=continue,errors=remount-ro,namecase=1,fmask=00000000000000000000003,umask=00000000000000000000003,allow_utime=00000000000000000000200,\x00'], 0x9, 0x1505, &(0x7f0000000180)="$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")
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x95}}}, &(0x7f0000000200)='syzkaller\x00', 0x2, 0xf7, &(0x7f0000000880)=""/4092}, 0x3d)

32.21741103s ago: executing program 5 (id=3268):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000080), &(0x7f0000000180)=r1}, 0x20)
munlockall()

32.21495919s ago: executing program 5 (id=3270):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x4002, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@workdir={'workdir', 0x3d, './file1'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000200)='./bus\x00', 0x3242cac, &(0x7f0000000380)=ANY=[], 0xff, 0x0, 0x0)
r1 = syz_create_resource$binfmt(&(0x7f0000000380)='./file1\x00')
r2 = openat$binfmt(0xffffffffffffff9c, r1, 0x42, 0x1ff)
write$binfmt_script(r2, &(0x7f00000002c0)={'#! ', './file1'}, 0xb)
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r5}, 0x18)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f0000000140)={0x28, 0x0, 0x0, @local}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000900000000000000adb3000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014e16f00b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000840)='virtio_transport_alloc_pkt\x00', r7}, 0x18)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r8, &(0x7f0000000080)={0x28, 0x0, 0x2711}, 0x10)

31.180040623s ago: executing program 5 (id=3273):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x41, &(0x7f0000000080)={[{@lazytime}, {@noload}, {@bh}, {@noquota}, {@noblock_validity}, {}, {@mblk_io_submit}, {@inlinecrypt}, {@discard}], [], 0x3d}, 0x1, 0x522, &(0x7f00000007c0)="$eJzs3UFsI1cZAOB/HHu72U2bFDhAJUqhRdkVrJ00tI16KEVCcKoElPsSEieK4sRR7LSbqIKsOHBEQgiQOJULFyROnJBQJS4cEVIlOIMAgRBs4YAEdCrb43Q3GSfZjWNn4++TJvPmeeb97zma8byZp5kARtZTEfFyRLybpun1iJjM8gvZFHudqbXeO3feWGxNSaTpq/9IIsnyumWlbY/E1WyzyxHxlS9GfD05HLexs7u2UKtVt7LlSnN9s9LY2b2xur6wUl2pbszNzT4//8L8c/MzfWnnRES89Pm/fP87P/nCS7/89Ot/vPm3a99Isvw40I77VDzqw07TS+3v4u4Nth4w2HlUbLcwM563xtihnNtnXCcAAHr7QER8IiKux2SMHX06CwAAADyE0s9OxP+S7r27Qy71yAcAAAAeIoX2GNikUM7G+05EoVAuR3sM74fiSqFWbzQ/tVzf3ljqjJWdilJhebVWncnGCk9FKWktz7bT7y8/e2B5LiIej4jvTY63l8uL9drSsC9+AAAAwIi4eqD//+/JTv8fAAAAuGCmhl0BAAAA4Mzp/wMAAMDFp/8PAAAAF9qXXnmlNaXd918vvbazvVZ/7cZStbFWXt9eLC/WtzbLK/X6SvuZfevHlVer1zc/ExvbtyrNaqNZaezs3lyvb280b67e8wpsAAAAYIAe/9hbv08iYu/F8fbUculkm55wNeC8Ku6nkmyes1v/4bHO/M8DqhQwEGPDrgAwNMVhVwAYmtKwKwAMXXLM5z0H7/wmm3+8v/UBAAD6b/oj+ff/j78uuFcYQPWAM+T+H4wu+z+MrvZ5/klH8jrjhwul5AwARt6p7/8fK03vq0IAAEDfTbSnpFDOLu9NRKFQLkc82n4tQClZXq1VZyLisYj43WTpkdbybHvL5Ng+AwAAAAAAAAAAAAAAAAAAAAAAAADQkaZJpAAAAMCFFlH4a/KrzrP8pyefmTh4feBS8p/JyF4R+vqPXv3BrYVmc2u2lf/P/fzmD7P8Z4dxBQMAAABGQvF+Vu7207v9eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADop3fuvLHYnQYZ9++fi4ipvPjFuNyeX45SRFz5VxLFu7ZLImKsD/HHW38+nBc/aVVrP2Re/PE3Tx9/7/aR8WMq+xby4l89fXgYaW+1jj8v5+1/hXiqPc/f/4oR9yw/qN7Hv9g//o312P8fPWGMJ97+WaVn/NsRTxTzjz/d+EmP+E/nFfjzbx/K+tpXd3d7xU/fjJjO/f1J7olVaa5vVho7uzdW1xdWqivVjbm52efnX5h/bn6msrxaq2Z/c2N896O/ePeo9l/pEX/qmPY/k1PepZy8/799684HO8lSXvxrT+fE//WPszUOxy9kv32fzNKtz6e76b1O+m5P/vS3Tx7V/qUe7T/u/3+tV6EHXP/yt/50wlUBgAFo7OyuLdRq1a3zkXgx+l5yq4c/9HY9fIn/pueiGmeb+GZfC0zTNG3tU6coJ4nBfQnJ0VUd9pEJAADot/dP+oddEwAAAAAAAAAAAAAAAAAAABhdg3jS2MGYe/uppB+P0AYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6Iv3AgAA//8ZWuAG")
socket$unix(0x1, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0xa00000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

27.364046599s ago: executing program 5 (id=3280):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x8000, &(0x7f0000000740)=ANY=[@ANYBLOB="7379735f696d6d757461626c652c666d61736b3d30313737373737373737373737373737373737373737332c73686f72746e616d653d6c6f7765722c636865636b3d7374726963742c2c756e695f786c6174653d302c726f6469722c726f6469722c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c6e6f6e756d7461696c3d302c756e695f786c6174653d312c756e695f786c6174653d312c6572726f72733d636f6e74696e75652c74696d655f6f66667365743d3078303030303030303030303030303465302c757466383d302c0077b5b28056fc4549d277ed7fab6b0be29df17f888ccab55cccc917ad315c8ea56f5a89c104f92d058b92f5881e69e06002f5914c03fefbeb09121733eaf5ded73df976fbd4cfcb8b70b0bf44da1b46bc3935431d5e60a641f9e4ebbf71c77fc9a810ce726b8c6d6295a5f2e2b069b95ba8ecce52ded99b82923228c37d5e1ec11cdbcabb8a89cbf2cf2771d69e3cf0e6760094145e542e426bceaab9b2cf261046247bce0565db3ac5888b74efd48bc9f455e60f49496ca8137aba85fe39756814fda1f0624b33a2025792a477ccfff09befb1d0cf1599d272628028b9786e1fbfb3d637c2561421488c9d0000000094bf13ac582f6b67de0cad933631794271b2259fe5d73a74ad7da615c31505c7c0c168052d38e5b64c4bb7d0599e5dcf0000000000000000000000000000002790cf17418aa278cfc0c9d1c81c63e58b877706a4b7eed8a5aff253298db2939adc0efdab4745ab0e09ef8beaaf04e5374c2e7e4672e47fe5a25502919954242f8d779d84091f20646210edf871d3f20ad66fcf4b816323b8abb307381d4ada887dcc71e35f364baa1b93fd5ee36c02aa4628511442982ced893ab946472440b53fc08cc41403e167b1f2605e04d5f0c16ed49969b5650d88642b10c7893fe9b664421a40f4822ffcc284dfe9aea76e4a04293c970f2dae776decf07b085e16511b0bd365b0f86c7fcd8df00a87f4dbbf8e623667e3b65e4c487055a2e5cd64402a4de537bf113fc7370099e4faebe6ea9d4f155f8f5f4c5f9b205ce1bbc8c0002a19457e05a210d9e9820bc7f318ebfdfcc22f83150503b28c52096d13d6b9aac338f27ca2d2108c51ad7bbbc6ec9d577b00c703c4ef2ee9f16febbb7afdafc59e817dc8edb56d445c74fa48cdccf79223640f685b92b26c62d7d65dd4fdd6f73c1d9c70f1bca7a7150f62de63f2f579f1fb2d10f3a770f2b9ce8cd8be9414e0444fd357b3fad5b16d91c91c0f1aa3e11d39426af77180bdb588060a2546b369655c02eb52709e0e03785f8010bfd1a72a817dad46c854ebb0a8aa5d59cae56089e2aac882b33018aa4006a44968a267cde827c86aa1abccb51cb152459f91a39a5cbbd8d218d37f4cf35d339694a379", @ANYBLOB="d23c17f6ec95b3b820b1161ffa233394c6007d8285b061be4d1d842e4a63ec77908347691f71d1e4132f09405a5b81867a01cf3df73c16fd31622d37a921bdbff76ef2fed6da828ab4e0f87928c18c0380050249fb6ab8e225d1f3c041a6377723b83e57fcac059ad433974df43b0efc268cbd67279c5e0f19f5b89100cc35aafb9e96dae3d8afe28e887e01475b9ec063d40d1080f70254a3f65a1c6261571866a21a54d762495480"], 0xf, 0x2a8, &(0x7f00000001c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x181)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)

27.143673916s ago: executing program 5 (id=3285):
ioctl$ASHMEM_SET_NAME(0xffffffffffffffff, 0x41007701, 0x0)

27.007952817s ago: executing program 5 (id=3286):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000014c0)=@nat={'nat\x00', 0x62, 0x5, 0x430, 0x398, 0x2a0, 0xffffffff, 0xe0, 0x188, 0x398, 0x398, 0xffffffff, 0x398, 0x398, 0x5, 0x0, {[{{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'veth0_to_bond\x00', 'wg1\x00'}, 0x0, 0xa8, 0xc8, 0x0, {0x22e}, [@common=@unspec=@statistic={{0x38}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @multicast1, @remote, @icmp_id, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast1, @empty, @gre_key, @icmp_id}}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_hsr\x00', 'ipvlan0\x00'}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={{0x20}}, @common=@osf={{0x50}, {'syz0\x00'}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @private, @multicast2, @gre_key}}}}, {{@ip={@remote, @empty, 0x0, 0x0, 'veth1_to_batadv\x00', 'pim6reg\x00', {0xff}}, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@ttl={{0x28}}, @common=@inet=@tcpmss={{0x28}, {0xf}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x16, @remote, @broadcast, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x490) (fail_nth: 1)

26.933233153s ago: executing program 34 (id=3286):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000014c0)=@nat={'nat\x00', 0x62, 0x5, 0x430, 0x398, 0x2a0, 0xffffffff, 0xe0, 0x188, 0x398, 0x398, 0xffffffff, 0x398, 0x398, 0x5, 0x0, {[{{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'veth0_to_bond\x00', 'wg1\x00'}, 0x0, 0xa8, 0xc8, 0x0, {0x22e}, [@common=@unspec=@statistic={{0x38}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @multicast1, @remote, @icmp_id, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast1, @empty, @gre_key, @icmp_id}}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_hsr\x00', 'ipvlan0\x00'}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={{0x20}}, @common=@osf={{0x50}, {'syz0\x00'}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @private, @multicast2, @gre_key}}}}, {{@ip={@remote, @empty, 0x0, 0x0, 'veth1_to_batadv\x00', 'pim6reg\x00', {0xff}}, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@ttl={{0x28}}, @common=@inet=@tcpmss={{0x28}, {0xf}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x16, @remote, @broadcast, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x490) (fail_nth: 1)

13.098647501s ago: executing program 2 (id=3337):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
sendmmsg$inet(r0, 0x0, 0x0, 0x0)
r1 = getpid()
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001300)=ANY=[@ANYBLOB="1b0000000000000000000000000004", @ANYRES32=0x0, @ANYRES32=0x0], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r5 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r5, 0x29, 0x22, &(0x7f00000000c0)="ff02b5fffffffbffffffff2e2be82db1af00000000", 0x15)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

7.879465029s ago: executing program 2 (id=3342):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3d}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r4, r3}, 0xc)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r5, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000001900)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
r9 = syz_open_dev$evdev(&(0x7f0000000080), 0x8, 0x80001)
ioctl$EVIOCSREP(r9, 0x40084503, &(0x7f0000000140)=[0x997, 0x6])
r10 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000580), 0x180)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r10, 0x80585414, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e75"], 0x15)
r11 = dup(r8)
write$FUSE_BMAP(r11, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r11])

7.837647693s ago: executing program 7 (id=3343):
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
openat(0xffffffffffffffff, &(0x7f00000001c0)='./bus\x00', 0x10040, 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
bpf$ITER_CREATE(0x21, &(0x7f0000000180), 0x8)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0x1, 0x120d, &(0x7f0000001280)="$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")
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f00000007c0), 0x1, 0x73a, &(0x7f0000000800)="$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")
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x242, 0x18e)
quotactl_fd$Q_SETINFO(r6, 0xffffffff80000601, 0x0, &(0x7f00000001c0)={0x202, 0x7f, 0x2000000, 0x7})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4020000000000007911000000000000850000000e0000009500000000000000359bb9f4ffffb136000440c89844f3cec063027b45b1bf3fa2cef4363021028e2b63040fcfd3a9b59fed6aa4172c30b77f38d6daaed700"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0xc5, &(0x7f0000000300)=""/197, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000002c0), 0xffffffffffffff35}, 0x54)

7.258110009s ago: executing program 2 (id=3344):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000000)='./file0\x00', 0x2004009, &(0x7f00000004c0)=ANY=[], 0x0, 0x236, &(0x7f0000000a80)="$eJzsmb9rFEEUx7+zt7d7G0W0sUhjYcCI5i63adIEf4BiZZP4q9LDrCHeJSeXFcyBaLCx0c5CsLHwH7AIaGVhay9ooYJgoaCFjc3Im5ndm2T3frBn5/sUw3fmvZl5793sKxIwDPPf8uXz70+PTs8vHQewF1Pwzfq3EiCE1o7l//Hp7WNPFs48e/nhxdv1fXdf7z6Ptki5c6Ey4H4XwJtTJdxLb0p3/yExZSZLcNLoLsDBUbN+CQJVo6/BwUWjIwhcMfqmpdvkX63eWG1F1evt1jKJWRrqNIQ0zO2O78eWwLKZSymlsOwbm91mo9WKOpZwjS3HVEiklzUPZupXhoezk705xUdVvPzwwRbNk9rMqvpp6nDwUwDvzI+9aNbn4Se10SWx8p90e+eXMvnnZkuuZBiWZEWLhV9mBWOXz4MWB2aKFX2abj+ZNe1HkXiwc1cZPRNV0pgCjP9Q8p6OEu7wYp4wVS9w13mdhRjwSWjxOADwbxPMFYWySAQ92qzp67DtUgw9+dWEeglJOx3oXBk15uRrGTVBP/MTBOg2nXEq1i+w99u6f8jnAkes/uRa/aMWr92qbWx2Z1bXGivRSrQehnP+Hm1TjaimxkzfS3ARqP40YZ1f7uPrOR7uNOK4U9ejJzwEiONOqOah9dksbre/XzXbYpwDcFhP6JF76Ym6E/rWHcLTPo7yJTVdyo9G9M2JYRiGYRiGYRiGYRiGYRgmn0MQ6q+ggxDAff3vmb8BAAD//z+tVdc=")

7.206049453s ago: executing program 6 (id=3346):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb7e, &(0x7f0000000c40)="$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")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x8000000000000000, 0x6, 0x93b1, 0xb, 0x2, 0x80, 0x6, 0x61, 0x35})
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = dup(0xffffffffffffffff)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, &(0x7f0000000240))
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f00000003c0)={[], [{@uid_lt}, {@uid_eq}, {@flag='dirsync'}, {@defcontext={'defcontext', 0x3d, 'root'}}]}, 0x1, 0xb77, &(0x7f0000000c40)="$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")
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1b0411, &(0x7f0000000280)=ANY=[], 0x1, 0x230, &(0x7f0000000640)="$eJzs3c9qE10UAPAzbdokH9+iO1EQRlzoqqjgviIVxIBQiaC7gl01q2STZNM+hq/gc+kDSFd1UUbizDRjOmmD9I+pv9+mp/fcMzN37mQmEHKTRe7bnc/RaiWxshVbcZzERqxE6TAAgNvkOMvie5arNDcWq16wGwDwV5nz/K86mVebePwDwFJ69+HjmxedzvZOmrYijg6H3WE3/5vnX73ubD9Jf9mYVh0Nh93V0/zTdPa9wyS/Fv8V+Wd5fXqaXo+I7no8fpjnJ7mXbzvp7/XN+DT3qH0iAQAAAAAAAAAAAAAAAAAAAADAcrsfaal2fZ/Nzdl8u8jn/1XWB5pZv6cR98r1AafLA2UH1zEoAAAAAAAAAAAAAAAAAAAAWDKD0Xh/t9fb60+DZkRUWxo1feYHSbHhhTpfRfD17vP3kwNYrGqlXZ9KZk7CbNAuhllJnWS5i3aaJD+K4qs8G+36yV0kiMaNTNwlBullbbBZTvPZVDuSc8qzbBLUvwrKZTHmlq9feG082vnTcR1PrtAvD/qDUWTndp7eI5rXdC8CAAAAAAAAAAAAAAAAAIB/XeVb32e0Vm/iiAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg+g1G4/JX/sf7u73eXn8wGu/vtoq2aUtdcBAR/1/QZ68/KPe1Fq2bGSQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC33s8AAAD//wmuGq0=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0xa)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x1, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x84c00, 0x0, 0x0, 0x0, &(0x7f0000000000))
r4 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
ftruncate(r4, 0x2007ffc)
sendfile(r4, r4, 0x0, 0x800000009)

7.205071574s ago: executing program 2 (id=3347):
inotify_init1(0x800)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000340)={0x2})
read$FUSE(r0, &(0x7f0000003d00)={0x2020}, 0x2020)
ppoll(&(0x7f0000000400)=[{r1, 0x102}], 0x1, &(0x7f0000000780)={0x0, 0x3938700}, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f0000000000)={0x5, 0x7})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = socket(0x10, 0x80003, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0x2}, {0xffff, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x6, 0x1, 0x3, 0x0, 0xba}, 0x7, 0x0, 0x5, 0xffffffff, 0x2, 0x1, 0x10, 0x19, 0xfd, 0x87, {0x3, 0x7, 0x2, 0x0, 0xe9ac, 0x5}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="02002000000000005b0800000000000006000000000000200902000000000000ffffffffffffffff"])
r8 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005938d74010973077339600000001090212000100001e000904"], 0x0)
syz_usb_control_io$hid(r8, 0x0, 0x0)
syz_usb_control_io$printer(r8, 0x0, 0x0)
io_setup(0x7, &(0x7f00000002c0)=<r9=>0x0)
io_destroy(r9)
io_submit(r9, 0x0, 0x0)
syz_usb_control_io$hid(r8, 0x0, 0x0)
syz_usb_control_io(r8, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$sierra_net(r8, &(0x7f00000001c0)={0x14, &(0x7f0000000080)={0x20, 0x22, 0x5f, {0x5f, 0x30, "c0bebbec396b2f14887493809aa170038ddce9881df85207592c992ebf9bb974c71cdf554f14ac14e7389210eb76cc65f084810c6c158825dbb6aeb37459e94bb7f75e079028168a92843d068a577d2b26b81da9e528f5653ea7941722"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2c0a}}}, &(0x7f0000000780)={0x1c, &(0x7f0000000280)={0x0, 0x16, 0x8d, "fcd8781122a6e46fc9d2e55135e17a2509225c793aa5767e8bb2dc3667e8d2dcb996e45048d0604c83458141ce232f004d5079784e87f1c62b867309bd0ff06354d88ff4482d1b061ce43dcd1896806a7f1265c9c2891145c539fc4b6e5b4964ed876582e94e14741328ec0cfbbedabcd2d52f703476e03917497e61a4a479fc346c19225c31e103ebdee4c6dd"}, &(0x7f0000000340)={0xa1, 0x1, 0x400, "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"}, &(0x7f0000000200)={0x21, 0x0, 0x2, "b322"}})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x10, &(0x7f0000000100)=0xd, 0x4)

6.894985908s ago: executing program 7 (id=3349):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_read_part_table(0x105a, &(0x7f0000001080)="$eJzsz7FtwkAABdBvW3ZipcsErlJkBNZADMEWbpiCDZiAjl0oWeLQyUJmAQTFe83p/td96cJbDUmmNu2abL6v++T4/1MvfTMPye/XWs/L0WRM2ty206G+LaWcl/hptxq7/pHVkdLl8reUY5Ld6fU/BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDPdw8AAP//mYkMZw==")
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})

1.751536291s ago: executing program 6 (id=3351):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
getrusage(0xffffffffffffffff, &(0x7f00000002c0))

1.747423051s ago: executing program 7 (id=3352):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x8, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x9, 0x3ff}]}, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000001cc0)={0x2020}, 0x2020)
pread64(r1, &(0x7f0000000300)=""/94, 0x5e, 0x227)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@local, @in6=@dev}}, {{@in6=@ipv4={""/10, ""/2, @local}}, 0x0, @in=@loopback}}, &(0x7f0000000080)=0xe8)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xe, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x50)
unshare(0x22020600)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

1.746829051s ago: executing program 0 (id=3353):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
fsopen(&(0x7f00000005c0)='binder\x00', 0x0)

1.688295495s ago: executing program 2 (id=3354):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x41, &(0x7f0000000080)={[{@lazytime}, {@noload}, {@bh}, {@noquota}, {@noblock_validity}, {}, {@mblk_io_submit}, {@inlinecrypt}, {@discard}], [], 0x3d}, 0x1, 0x522, &(0x7f00000007c0)="$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")
socket$unix(0x1, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0xa00000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

1.677710776s ago: executing program 0 (id=3355):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3d}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r4, r3}, 0xc)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r5, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000001900)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
r9 = syz_open_dev$evdev(&(0x7f0000000080), 0x8, 0x80001)
ioctl$EVIOCSREP(r9, 0x40084503, &(0x7f0000000140)=[0x997, 0x6])
r10 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000580), 0x180)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r10, 0x80585414, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e75"], 0x15)
r11 = dup(r8)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r11])

1.621503191s ago: executing program 6 (id=3357):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000340)={0x42, 0x1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r3}, 0x0, 0x0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r3, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r4}, 0x10)
syz_emit_ethernet(0x256, &(0x7f0000000780)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00ed00", 0x220, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78c000005dc8080a2030003004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502"}, {0x0, 0x1, '\x00'/12}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}]}}}}}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r5}, 0x10)

1.62088058s ago: executing program 0 (id=3358):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000100)=""/157, 0x9d}], 0x1, 0xa2, 0x45)

1.585410223s ago: executing program 0 (id=3359):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)
r1 = signalfd4(r0, &(0x7f0000000040)={[0x7fffffffffffffff]}, 0x8, 0x0)
r2 = syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000540)='./bus\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="009f587a31d53b5cb6077bd11087bb6e13aac56feecaaae0b009cee43814e80646ff2772abedb27f35c706ba7c624afb75f473956061ae41834d27270063fa18a3515f9ac6cd6f15a042b1edcd60bdeb55446beed1014aa13d43d399fb4f716b8a24502a8e3e697642b172841c89aecefe0cfb3c32d7c28955601f41fb90d51951d91a35a5abeb4ffceef5cf6e190ec9eb6f91a0d06882039b54dd4485b823414e06691b0244ca11ac0baeaeec1a96861d358464329c64b77e6ff2e2d8a6bb29268be3e7c46750210270d79e1054add6c2ef3f0373", @ANYRES32, @ANYRESOCT], 0x1, 0x1282, &(0x7f0000002880)="$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")
truncate(&(0x7f00000000c0)='./file1\x00', 0x5)
r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000180), 0x101, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@bridge_newvlan={0x24, 0x76, 0x709, 0x1, 0x0, {0x7, 0x2}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x1}}]}, 0x24}, 0x1, 0x5502000000000000}, 0x4000)
unshare(0x2040400)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
r5 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0)
ioctl$RNDZAPENTCNT(r5, 0x5204, 0x0)
mkdirat(r2, &(0x7f0000000040)='./bus\x00', 0x10)
modify_ldt$write(0x1, &(0x7f0000000240)={0xd6, 0x1000, 0x1000, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1}, 0x10)
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
wait4(r6, 0x0, 0x40000000, 0x0)
ptrace$setregs(0xd, r6, 0x1fffffffffe, &(0x7f0000000280)="f387f3d0d636834c015f24e62c2e7c82d107a6808737c85e69706da9c8440000009c0ebf8e740a7efe0ed91d923af04bf049364e1b69237c6258215d8f1e91bd3bd03e7f3876d52ef012264768d6b703075024a5164aebe8ba1203b8512b2258bb6dfa2f55f49638af78cd0b6cc0956fd12d29590c6eee14a6c7bc9d5d9c26915315ab4f01f3b278e78028c1b3")
ptrace$cont(0x21, r6, 0x80000001, 0x4)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x66ed7}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_IFLAGS={0x6, 0x2, 0xc700}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
epoll_create1(0x80000)
r8 = syz_io_uring_setup(0x65fe, &(0x7f0000000340)={0x0, 0x8065, 0x800, 0x2, 0x12f, 0x0, r1}, &(0x7f00000003c0), &(0x7f0000000440))
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x100010, r8, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xc, 0x6c033, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xf0ffffff)
write$vga_arbiter(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='target '], 0x16)

1.571669035s ago: executing program 7 (id=3360):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@loopback, 0x800, 0x0, 0x103, 0x1, 0x0, 0x3}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0xa, 0x4e22, 0x80000, @mcast2}, 0x1c, 0x0}, 0x40055)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_INIT(r3, &(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x4, 0x800000, 0x4, 0x400, 0x5, 0x1, 0x0, 0x0, 0x1, 0x74}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
dup3(r1, r3, 0x0)
ioctl$TIOCGSERIAL(r3, 0x541e, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=""/233})

1.552735786s ago: executing program 1 (id=3361):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x14711, &(0x7f00000003c0)={[{@lazytime}, {@inlinecrypt}, {@noblock_validity}, {@abort}, {@mblk_io_submit}, {@dioread_nolock}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x222a}}, {@nouid32}, {@journal_async_commit}, {@bsdgroups}]}, 0x3, 0x453, &(0x7f0000000c40)="$eJzs281vFOUfAPDvzLbw+/HWivgColbR2PjS0oLKwYtGEw+amOgBj7UtBFmooTUR0mg1Bo+GxLvxaOJf4EkvRj2ZeNW7ISHaC+hpzczOlO2yu7R06xb280kGnmfm2T7Pt888O8/MMw2gb41k/yQRuyLit4gYqmdXFxip/3dteXH67+XF6SRqtTf/TPJyV5cXp8ui5ed2FpnRNCL9NCkqWW3+/IXTU9Xq7LkiP75w5r3x+fMXnjl1Zurk7MnZs5PHjh09MvH8c5PPrj2YJGl7aHfW1gMfzh3c/+rbl16fPn7pnZ++yUrvKo43xrERaUN6JAv8r1quudzj3ahsC9ndkE4Gbl6GraESEVl3Debjfygqcb3zhuKVT3raOGBTZdem7e0PL9VaqbTcC9x2kuh1C4DeKC/02f1vuf1HU48t4cqL9Rugq8ni9LXl+lY/MrByLz+4ifeuIxFxfOmfL7MtuvgcAgCgne+y+c/TreZ/adzbUG5PsTY0HBF3RcTeiLg7IvZFxD0Redn7IuL+G2pIO9bfvDR04/wnvXzLwa1BNv97oVjbWj3/W2n3cKXI7c7jH0xOnKrOHi5+J6MxuD3LT3So4/uXf/283bHG+V+2ZfWXc8GiHZcHmh7QzUwtTOWT0i648nHEgYFW8ScrKwFJROyPiAPr+9F7ysSpJ78+2K7QzePvoM0603rUvop4Iuv/WrIUTfGXks7rk+P/i+rs4fHyrLjRz79cfKNd/RuKvwuy/t+x+vxvLjKcNK7Xzq+/jou/f9b2nuZWz/9tyVt5v2wr9n0wtbBwbiJiW/Janl+1f/L6Z8t8WT6Lf/RQ6/G/t/hMVs8DEZGdxA9GxEMR8XDR9kci4tGIONQh/h9feuzdW49/c2Xxz7T8/ls5/5v6f/2Jyukfvm1X/9r6/2ieGi325N9/N7HWBm7kdwcAAAC3izR/Bz5Jx1bSaTo2Vn+Hf1/sSKtz8wtPnZh7/+xM/V354RhMyyddQw3PQyeSpeIn1vOTxbPi8viR4rnxF5X/5/mx6bnqTI9jh363s834z/xR6XXrgE3XhXU04DbVPP47v7IB3Elc/6F/Gf/Qv4x/6F+txv9HTXlrAXBncv2H/mX8Q/8y/qF/Gf/Qlzbyd/0S/ZyIdEs0Y5MSQ1ujGT1M9PqbCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDv+DQAA//82merZ")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYRES32=r1, @ANYRES8=r0, @ANYBLOB="8f78e8f05a59062fae1cfe1ebf89156e98445c09fb1e0bc869e7f7e111bcebd437e7755c3d285f06530ffae80a62ee4512ec5f708c57820c547f0e513a1d8865d172e9697f57506006fe63feacfbf613a46bd55595159a93a3fd6ecc7e2666674bb45ac7439c606e9e59fdbcb4b0da10c29ec5c93c4937b2"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x4c}]}, &(0x7f0000000080)='syzkaller\x00'}, 0x80)
r7 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r7, 0x89f0, &(0x7f0000000040)={'gretap0\x00', &(0x7f0000000540)={'gretap0\x00', <r8=>0x0, 0x7800, 0x7800, 0x4, 0x0, {{0x45, 0x4, 0x1, 0x3f, 0x114, 0x65, 0x0, 0x5, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x3e}, @multicast2, {[@ra={0x94, 0x4}, @noop, @rr={0x7, 0x1b, 0x2, [@remote, @multicast1, @empty, @broadcast, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0x18}]}, @timestamp={0x44, 0xc, 0x42, 0x0, 0x0, [0x1c, 0x4]}, @ssrr={0x89, 0x17, 0xf6, [@rand_addr=0x3, @multicast1, @local, @multicast2, @loopback]}, @timestamp_addr={0x44, 0x2c, 0xb0, 0x1, 0x2, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x3c}, {@broadcast, 0xf}, {@local, 0x3668}, {@multicast1, 0x5}, {@initdev={0xac, 0x1e, 0x0, 0x0}}]}, @lsrr={0x83, 0x13, 0x12, [@multicast1, @multicast1, @loopback, @remote]}, @cipso={0x86, 0x74, 0xffffffffffffffff, [{0x0, 0x10, "aca55776ea331d6b5b08efe15b88"}, {0x1, 0xc, "e3d8990e14ddd5826260"}, {0x6, 0x4, "4184"}, {0x6, 0x11, "23db6c384175c9ca7034d2cdb202e1"}, {0x5, 0x12, "4c16f1e0f3e7cba25c7a2e9d4ae6d6bc"}, {0x1, 0x4, "9318"}, {0x7, 0xb, "910e9a5af744b34ffb"}, {0x7, 0xb, "871f3728f8aef91803"}, {0x1, 0x11, "13812661246f1d60d4642267e73a8c"}]}, @lsrr={0x83, 0x7, 0xbd, [@dev={0xac, 0x14, 0x14, 0x3e}]}]}}}}})
io_setup(0x197, &(0x7f0000000440)=<r9=>0x0)
r10 = openat$sysfs(0xffffff9c, &(0x7f0000000300)='/sys/power/wake_unlock', 0x8402, 0x33)
io_submit(r9, 0x1, &(0x7f0000000500)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, r10, &(0x7f0000000000), 0xfffffc98}])
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@bloom_filter={0x1e, 0x7fff, 0xff, 0x2, 0x29502, r7, 0x7ff, '\x00', r8, r10, 0x2, 0x1, 0x1, 0xf, @value=r7}, 0x50)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0x4c, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)

1.472680093s ago: executing program 6 (id=3362):
remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x5, 0x20000)

1.472250813s ago: executing program 7 (id=3363):
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x2a10a42, &(0x7f0000000a00)=ANY=[@ANYBLOB="646d61736b3d30303030303030303030303030303030303030323632312c757466382c756d61736b3d30303030303030303030303030303030303230303030302c6e616d65636173653d312c646973636172642c6572726f72733d72656d6f756e742d726f2c756d61736b3c30303030303030303030303030303030303230303030342c756d61736b3d30303030303030303030303030303030303030233337372c6e616d65636173653d312c757466382c696f636861727365743d69736f383835392d342c616c6c6f775f7574696d653d30303030303030303030303030303030303030303031312c646d61736b3d3031373737373737373737373737370437373737373730c6e1a5906eace0c26e38fa2c6572726f72733d72656d6f756e742d726f2c7569643d186ab47efe45fb47a644956d9545f3f32a6aaf5ff7cb244298ae5b21c839c0dbab47810e8f9086b19b84d74306b9d7c8655c0ebb60d316d07a82f2b3624b3ac239ff99d12c9541b0e85f37ec73bd1ebb7a510e35880456dcaa45a65e3630e0db39a2d0ce70b2bd93fbaf580009bac381a9d587ccb4aea750721657635501eaa56679b13ecccf4019379d4b0d1407a68fafd38b70acb54da2da4a05190fdb1df140571d0bafa975ecce7a0bddc63644b86d79a7d35cac605b35d6d211dced715f332460017e23ee83f7d039d1025752f07d493c6ba022b4303b38fc5b6589ab02b14b173cc3336e22244ae767060dba31f827374f97a887dede1bf4cbea3b9eb308f5d60a72a768c15ad70cc1b9e07de897b93daaf037b4f97399236d0e69f28629007112afb922df1f2f602d2f27f5ba301534d0844c5d6ab0daa5f709eb70e3b03300078fa3964580f0fcba59e38da54d092a27db3f2ec4e6980ccdba891480ef62fba15fe181e61748e7d35f77e13b3ab7bec343115fa3c23d7404bc", @ANYRES16, @ANYRES64, @ANYRES8, @ANYRES16, @ANYRES32, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYRES32=0x0], 0x21, 0x150d, &(0x7f0000001f80)="$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")
io_setup(0x20, &(0x7f0000001140)=<r0=>0x0)
io_getevents(r0, 0x1, 0x1, &(0x7f0000000100)=[{}], &(0x7f0000000300))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0500000003f01f00660000007f00000001"], 0x48)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x30}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="380000001000050700bbc0000000010007000000", @ANYRES32=r6, @ANYBLOB="00000000000000001800120008000100736974000c0002000800020006"], 0x38}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="20000000100001042dbd70000000000000000000", @ANYRES32=r7, @ANYBLOB="00000000af8d0000"], 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r10}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000008c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = socket$inet_icmp(0x2, 0x2, 0x1)
splice(r12, 0x0, r11, 0x0, 0x1000000008, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r9}, 0x10)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r2, &(0x7f0000001600), 0x0}, 0x20)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)

1.464964763s ago: executing program 6 (id=3364):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000770000000e000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x10)

1.423352967s ago: executing program 6 (id=3365):
inotify_init1(0x800)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000340)={0x2})
read$FUSE(r0, &(0x7f0000003d00)={0x2020}, 0x2020)
ppoll(&(0x7f0000000400)=[{r1, 0x102}], 0x1, &(0x7f0000000780)={0x0, 0x3938700}, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f0000000000)={0x5, 0x7})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = socket(0x10, 0x80003, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0x2}, {0xffff, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x6, 0x1, 0x3, 0x0, 0xba}, 0x7, 0x0, 0x5, 0xffffffff, 0x2, 0x1, 0x10, 0x19, 0xfd, 0x87, {0x3, 0x7, 0x2, 0x0, 0xe9ac, 0x5}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="02002000000000005b0800000000000006000000000000200902000000000000ffffffffffffffff"])
r8 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005938d74010973077339600000001090212000100001e000904"], 0x0)
syz_usb_control_io$hid(r8, 0x0, 0x0)
syz_usb_control_io$printer(r8, 0x0, 0x0)
io_setup(0x7, &(0x7f00000002c0)=<r9=>0x0)
io_destroy(r9)
io_submit(r9, 0x0, 0x0)
syz_usb_control_io$hid(r8, 0x0, 0x0)
syz_usb_control_io(r8, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$sierra_net(r8, &(0x7f00000001c0)={0x14, &(0x7f0000000080)={0x20, 0x22, 0x5f, {0x5f, 0x30, "c0bebbec396b2f14887493809aa170038ddce9881df85207592c992ebf9bb974c71cdf554f14ac14e7389210eb76cc65f084810c6c158825dbb6aeb37459e94bb7f75e079028168a92843d068a577d2b26b81da9e528f5653ea7941722"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2c0a}}}, &(0x7f0000000780)={0x1c, &(0x7f0000000280)={0x0, 0x16, 0x8d, "fcd8781122a6e46fc9d2e55135e17a2509225c793aa5767e8bb2dc3667e8d2dcb996e45048d0604c83458141ce232f004d5079784e87f1c62b867309bd0ff06354d88ff4482d1b061ce43dcd1896806a7f1265c9c2891145c539fc4b6e5b4964ed876582e94e14741328ec0cfbbedabcd2d52f703476e03917497e61a4a479fc346c19225c31e103ebdee4c6dd"}, &(0x7f0000000340)={0xa1, 0x1, 0x400, "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"}, &(0x7f0000000200)={0x21, 0x0, 0x2, "b322"}})
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="0b0312002e0064000200475400f6a13bb1000000086086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x8100}, 0x14)

1.097346993s ago: executing program 0 (id=3366):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'pimreg\x00', 0x5005})
write$tun(r0, &(0x7f0000000940)=ANY=[@ANYBLOB="0004"], 0x46) (fail_nth: 1)

472.089843ms ago: executing program 0 (id=3367):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
getrusage(0xffffffffffffffff, &(0x7f00000002c0))

434.573426ms ago: executing program 35 (id=3367):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
getrusage(0xffffffffffffffff, &(0x7f00000002c0))

431.157516ms ago: executing program 2 (id=3368):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f0000000080)=0xf1)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000180)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee6, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getxattr(0x0, &(0x7f00000000c0)=ANY=[@ANYRESDEC=r4, @ANYRES16=r0], 0x0, 0x0)
sendmsg$tipc(r5, &(0x7f0000000240)={0x0, 0x810100, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1, 0x0, 0x0, 0x3}, 0x40000000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r6)
sendmsg$TIPC_CMD_SHOW_PORTS(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001640)={0x1c, r7, 0x1}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2008002, &(0x7f0000000400)={[{@journal_checksum}, {@nomblk_io_submit}, {@errors_continue}, {@stripe={'stripe', 0x3d, 0x6}}]}, 0x1, 0x55f, &(0x7f0000000d00)="$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")
pipe2$9p(&(0x7f0000000080), 0x800)

362.795732ms ago: executing program 1 (id=3369):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3d}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000040)={r4, r3}, 0xc)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r5, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x8802, 0x0, 0x1, 0x0, 0x0)
pipe2$9p(&(0x7f0000001900)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
r9 = syz_open_dev$evdev(&(0x7f0000000080), 0x8, 0x80001)
ioctl$EVIOCSREP(r9, 0x40084503, &(0x7f0000000140)=[0x997, 0x6])
r10 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000580), 0x180)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r10, 0x80585414, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e75"], 0x15)
r11 = dup(r8)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x4000, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r11])

349.798813ms ago: executing program 7 (id=3370):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000000080)='./bus\x00', 0x1804000, &(0x7f0000000dc0)=ANY=[], 0x1, 0x1207, &(0x7f0000003000)="$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")
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x0, 0x8845)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x17, 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095257a5c2d7eb70e0617a7b5df9d3fe30393e18c1e2086e1436563550f1ed84639a283393bf83dd533ad621ca6601f7e9f69ac19580ae01f64e00213d83d1b6dca01c4210d259171cc62cdcebe91113225c06e222a5e53181d6ae335f2e83b32ad297e545bd2e656d123b490a5ccc70fcd7125e3e8bac1c5f02a"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
r4 = socket$inet(0x2, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
setsockopt$inet_mreqn(r4, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000180)="200000001300034700bb65e1c3e4ffff010000000100000056000000250000001900", 0x22}], 0x1)
creat(&(0x7f0000001740)='./bus\x00', 0xa1)
mount(&(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r6 = open(&(0x7f0000000100)='./bus\x00', 0x66842, 0x19)
pwritev2(r6, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffe4}], 0x1, 0x5efff, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'pimreg\x00', 0x5005})
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000300)=ANY=[@ANYRES8=0x0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r0], 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r7}, 0x10)

312.356976ms ago: executing program 1 (id=3371):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x8, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x9, 0x3ff}]}, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000001cc0)={0x2020}, 0x2020)
pread64(r1, &(0x7f0000000300)=""/94, 0x5e, 0x227)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@local, @in6=@dev}}, {{@in6=@ipv4={""/10, ""/2, @local}}, 0x0, @in=@loopback}}, &(0x7f0000000080)=0xe8)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xe, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x50)
unshare(0x22020600)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

245.370831ms ago: executing program 1 (id=3372):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@printk={@s}, @call={0x85, 0x0, 0x0, 0x7d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r2}, 0x10)
close(r4)

195.256375ms ago: executing program 1 (id=3373):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000580)='ext4_mballoc_alloc\x00', r2, 0x0, 0x2}, 0x18)
write$selinux_user(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6581745f7259617574685f63616368655f742072"], 0x5c)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)=ANY=[@ANYBLOB="180000001489f14bef54ad12b6aeb58220097d234b56e1646e094ac841f2d1458cb2", @ANYRES16, @ANYBLOB="01032bbd7000ffdbdf251600000004000180"], 0x18}, 0x1, 0x0, 0x0, 0x10}, 0x4010)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000000004000000000000000009933ea07e80a8cb01ab0f5263817cda45313cd6eccc277cd0400efa0bc008de85f6f70253fe0cbd2914583990000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001580)={0x1dc, 0x3e, 0x107, 0x70bd2d, 0x25dfdbfc, {0x4, 0x7c}, [@typed={0xc, 0xf7, 0x0, 0x0, @u64=0x331}, @nested={0x1bc, 0x1, 0x0, 0x1, [@typed={0x173, 0xbc, 0x0, 0x0, @str='\x80\n\xd5\xc6\xe7\xc9\xf8\xdd\xe9\xae\x92\x11\x86\xfd.D8\xb3[\\6\xfa\x99\x1aX<p]$;\x0f\x98\n\x80\xf3\x90E5?=\xe1\xfa\xe2Da\xdeTO\xd8\x9e\xd4\x13\x92Y\x9ds\xa1\x8d\xa83\xf1\x1b\rd\xf1\xb6\xaa\xac5\x9c\xc9o\xa4\xa4D\x85 _|\xd2\xe9\x03\x00\b\x19+\'\xe8_\x00O\x98\x0eK\xabJ0\\\x82Gm\x19\xc6\x17n\xc5\x18\xc8\x89\xbb.\x84g[\xb9\x86wk%\xd3\xf1\x14\xd7=\x83l\x1a\x88\xf2\xeb\xe3\x85z?\xd7e\xc2\xd7\x025\'\xd4\xb2Y\xab6\xc1\xa3\xd61-t\t5\xa7\n\xe8.\xe0\xcb\x96\xa7\xa7q\xf7k^\xc4\xbd_\xfa\x86\x8f{\xeb\xce\x96\x99\xec\xe0\xae\xd7rz;\xbb\a\x86\xe7\xd4E\x92\x1a6\x1c\xa9\xad\xb8\xb8\xabF\x9c\xa0\xce\xdaATv\xf8Ld(\xe7L\xe5\x02\xf7,B\xd3{1{QZGk\x97\f9\xea\xbbP\xbb\xefQ5\x12F2e\x02\xdb|$\xda:Qw\x06\xf4T\x03\xdb}\\\x1f\xf4U\x06\xfdgd\xc2Q\xf5M\x96`\xe8\xe6\xedA\x9bN\x1d:T\f\xd7}\xbd\x99\x95\xff\xc4\x18\x12\xb0}C\xc6+\xf7\x13#\x80\xa3\xb8\xd5\xd0\x020\xe2\x13\x814\x81N*\xe6\x9b_a\xf4\x9d\xd2Kv\xa5\xde\xcb\x06\xe5\x92\xd0y\xcb\xba\xfc\vB:\xb1\x06\xccI\xff\x1c\x14\xc0\x11:\'\xcdx\x19\x1d\xfd\x9f\xa95\x13q\xb6{\x8e\x03\xa4MW\xf6\x8c\xa5\x94QT'}, @typed={0x42, 0x7a, 0x0, 0x0, @binary="5cdee50f9cc9f7f61e69205372259fb823accbe8b08d98c1cbe3ff12f31efc79543da0f9532061367304ffbcba7cef2ea31e939184be3fb78a3fcfe174cf"}]}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)
r5 = syz_open_dev$rtc(&(0x7f0000000140), 0x0, 0x0)
ioctl$RTC_UIE_ON(r5, 0x7003)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r6, &(0x7f0000000300)="4d226525393f108eaf7b147145c24b2a38456b01eb254c4c2ddf5e81a0a9d9d4d5a20f1a2680afe546a65076ac8856330dfcbe50c44d139c1c29a8972e929739b679723b8a6f581f58e07b5def4496bec127ad7d11d5e38c1edd4102a379d03101084b5076e213f89b18e24f8e004755b9d7cdeb220c1698b96b743ad61e578076deb8e6bf5d1a5dd9d7a49166b40a84cf6d37fa879a2dc2104ae1432631b3de0d361913483503625ef742f64290c3a52a3414f015b273dff93416", 0xbb, 0x4000011, &(0x7f0000000200)={0xa, 0x4e20, 0xc, @private2, 0x40000000}, 0x1c)
ioctl$RTC_WKALM_SET(r5, 0x4028700f, &(0x7f0000000400)={0x1, 0x1, {0x0, 0x1a, 0x11, 0xf, 0x2, 0x4f5c, 0x2, 0x5e}})
ioctl$RTC_WKALM_SET(r5, 0x4028700f, &(0x7f0000000100)={0x0, 0x1, {0x19, 0xf, 0xf, 0x5, 0x2, 0x100, 0x0, 0x7c, 0x1}})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x5, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5}, [@ldst={0x1, 0x3, 0x3, 0x2, 0x1, 0xffffffffffffffff}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x17, 0xf, &(0x7f0000000080)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0xbb}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0xba}}}, &(0x7f0000001a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1000000004000000080000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000ad7e195a000000000000"], 0x48)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000740)={[{@test_dummy_encryption}, {@i_version}, {@noblock_validity}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@max_batch_time}, {@abort}, {@auto_da_alloc}, {@lazytime}, {@noauto_da_alloc}, {@block_validity}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70200001400f400b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x2d)
socket$nl_xfrm(0x10, 0x3, 0x6)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r9, 0x0)
fdatasync(r9)
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 1 (id=3374):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@printk={@s}, @call={0x85, 0x0, 0x0, 0x7d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r2}, 0x10)
close(r4) (fail_nth: 1)

kernel console output (not intermixed with test programs):

? mutex_unlock+0x89/0x220
[ 1392.951075][T13665]  ? __cfi_mutex_unlock+0x10/0x10
[ 1392.956109][T13665]  ? __fget_files+0x2d5/0x330
[ 1392.960789][T13665]  ? security_file_ioctl+0x95/0xc0
[ 1392.965905][T13665]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[ 1392.971115][T13665]  __se_sys_ioctl+0x12f/0x1b0
[ 1392.975796][T13665]  __x64_sys_ioctl+0x7b/0x90
[ 1392.980395][T13665]  x64_sys_call+0x58b/0x9a0
[ 1392.984906][T13665]  do_syscall_64+0x4c/0xa0
[ 1392.989322][T13665]  ? clear_bhb_loop+0x30/0x80
[ 1392.994005][T13665]  ? clear_bhb_loop+0x30/0x80
[ 1392.998684][T13665]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1393.004582][T13665] RIP: 0033:0x7f154c18ebe9
[ 1393.008998][T13665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1393.028920][T13665] RSP: 002b:00007f154d07c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1393.037346][T13665] RAX: ffffffffffffffda RBX: 00007f154c3c5fa0 RCX: 00007f154c18ebe9
[ 1393.045324][T13665] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[ 1393.053301][T13665] RBP: 00007f154d07c090 R08: 0000000000000000 R09: 0000000000000000
[ 1393.061296][T13665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1393.069275][T13665] R13: 00007f154c3c6038 R14: 00007f154c3c5fa0 R15: 00007ffd350999d8
[ 1393.077258][T13665]  </TASK>
[ 1393.139544][T13675] FAULT_INJECTION: forcing a failure.
[ 1393.139544][T13675] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1393.139718][   T28] audit: type=1400 audit(1756545351.332:246): avc:  denied  { bind } for  pid=13674 comm="syz.5.3157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1393.153634][T13675] CPU: 1 PID: 13675 Comm: syz.5.3157 Not tainted syzkaller #0
[ 1393.179421][T13675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1393.189493][T13675] Call Trace:
[ 1393.192813][T13675]  <TASK>
[ 1393.195751][T13675]  __dump_stack+0x21/0x24
[ 1393.200102][T13675]  dump_stack_lvl+0xee/0x150
[ 1393.204704][T13675]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1393.209825][T13675]  ? _parse_integer+0x2a/0x40
[ 1393.214515][T13675]  dump_stack+0x15/0x24
[ 1393.218688][T13675]  should_fail_ex+0x3d4/0x520
[ 1393.223373][T13675]  should_fail+0xb/0x10
[ 1393.227577][T13675]  should_fail_usercopy+0x1a/0x20
[ 1393.232693][T13675]  _copy_from_user+0x1e/0xc0
[ 1393.237289][T13675]  ___sys_sendmsg+0x155/0x290
[ 1393.242008][T13675]  ? __sys_sendmsg+0x270/0x270
[ 1393.246780][T13675]  ? __kasan_check_write+0x14/0x20
[ 1393.251902][T13675]  ? proc_fail_nth_write+0x17a/0x1f0
[ 1393.257196][T13675]  ? vfs_write+0x9d6/0xca0
[ 1393.261643][T13675]  ? __fdget+0x19c/0x220
[ 1393.265896][T13675]  __x64_sys_sendmsg+0x1f0/0x2c0
[ 1393.270833][T13675]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[ 1393.276297][T13675]  ? fpregs_assert_state_consistent+0xb1/0xe0
[ 1393.282376][T13675]  x64_sys_call+0x171/0x9a0
[ 1393.286887][T13675]  do_syscall_64+0x4c/0xa0
[ 1393.291302][T13675]  ? clear_bhb_loop+0x30/0x80
[ 1393.295982][T13675]  ? clear_bhb_loop+0x30/0x80
[ 1393.300661][T13675]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1393.306562][T13675] RIP: 0033:0x7f398598ebe9
[ 1393.311022][T13675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1393.330646][T13675] RSP: 002b:00007f39867ca038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1393.339070][T13675] RAX: ffffffffffffffda RBX: 00007f3985bc5fa0 RCX: 00007f398598ebe9
[ 1393.347071][T13675] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[ 1393.355047][T13675] RBP: 00007f39867ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1393.363025][T13675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1393.371002][T13675] R13: 00007f3985bc6038 R14: 00007f3985bc5fa0 R15: 00007ffd34c42778
[ 1393.378993][T13675]  </TASK>
[ 1393.430501][   T28] audit: type=1400 audit(1756545351.622:247): avc:  denied  { bind } for  pid=13682 comm="syz.2.3160" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1394.067192][T13692] FAULT_INJECTION: forcing a failure.
[ 1394.067192][T13692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1394.176312][T13692] CPU: 1 PID: 13692 Comm: syz.5.3161 Not tainted syzkaller #0
[ 1394.183822][T13692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1394.194066][T13692] Call Trace:
[ 1394.197355][T13692]  <TASK>
[ 1394.200292][T13692]  __dump_stack+0x21/0x24
[ 1394.204651][T13692]  dump_stack_lvl+0xee/0x150
[ 1394.209301][T13692]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1394.214444][T13692]  dump_stack+0x15/0x24
[ 1394.218626][T13692]  should_fail_ex+0x3d4/0x520
[ 1394.223332][T13692]  should_fail+0xb/0x10
[ 1394.227522][T13692]  should_fail_usercopy+0x1a/0x20
[ 1394.232567][T13692]  _copy_from_user+0x1e/0xc0
[ 1394.237176][T13692]  __sys_bpf+0x277/0x780
[ 1394.241448][T13692]  ? bpf_link_show_fdinfo+0x320/0x320
[ 1394.246838][T13692]  ? fpregs_restore_userregs+0x128/0x260
[ 1394.252490][T13692]  __x64_sys_bpf+0x7c/0x90
[ 1394.256961][T13692]  x64_sys_call+0x488/0x9a0
[ 1394.261491][T13692]  do_syscall_64+0x4c/0xa0
[ 1394.266111][T13692]  ? clear_bhb_loop+0x30/0x80
[ 1394.270818][T13692]  ? clear_bhb_loop+0x30/0x80
[ 1394.275517][T13692]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1394.281426][T13692] RIP: 0033:0x7f398598ebe9
[ 1394.285856][T13692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1394.305479][T13692] RSP: 002b:00007f39867ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1394.313917][T13692] RAX: ffffffffffffffda RBX: 00007f3985bc5fa0 RCX: 00007f398598ebe9
[ 1394.321917][T13692] RDX: 0000000000000040 RSI: 0000200000000640 RDI: 0000000000000010
[ 1394.330253][T13692] RBP: 00007f39867ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1394.338335][T13692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1394.346408][T13692] R13: 00007f3985bc6038 R14: 00007f3985bc5fa0 R15: 00007ffd34c42778
[ 1394.354497][T13692]  </TASK>
[ 1394.618106][T13683] device syzkaller0 entered promiscuous mode
[ 1394.624287][T13679] mmap: syz.6.3159 (13679) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1394.710109][   T28] audit: type=1400 audit(1756545352.902:248): avc:  denied  { mounton } for  pid=13695 comm="syz.5.3163" path="/45/file0" dev="incremental-fs" ino=282 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1394.710539][T13696] incfs: mount failed -22
[ 1394.756678][T13697] incfs: mount failed -22
[ 1394.771626][   T28] audit: type=1400 audit(1756545352.962:249): avc:  denied  { write } for  pid=13695 comm="syz.5.3163" path="/45/file0/file0" dev="incremental-fs" ino=283 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1394.812572][T13701] loop0: detected capacity change from 0 to 512
[ 1394.844453][T13701] EXT4-fs: Ignoring removed nobh option
[ 1394.860325][T13701] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1394.866778][   T28] audit: type=1400 audit(1756545353.062:250): avc:  denied  { read } for  pid=13678 comm="syz.6.3159" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1394.902051][   T28] audit: type=1400 audit(1756545353.062:251): avc:  denied  { write } for  pid=13708 comm="syz.5.3168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1394.903330][T13701] EXT4-fs error (device loop0): __ext4_iget:5079: inode #11: block 1: comm syz.0.3165: invalid block
[ 1394.961814][T13701] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.3165: couldn't read orphan inode 11 (err -117)
[ 1394.991893][T13701] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1395.078301][T13442] EXT4-fs (loop0): unmounting filesystem.
[ 1395.090222][T13705] loop1: detected capacity change from 0 to 40427
[ 1395.090771][T13709] loop5: detected capacity change from 0 to 512
[ 1395.111042][T13705] F2FS-fs (loop1): invalid crc value
[ 1395.121727][   T19] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[ 1395.133671][T13705] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1395.178295][T13709] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1395.200856][T13705] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1395.218067][T13709] ext4 filesystem being mounted at /46/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1395.234363][   T28] audit: type=1326 audit(1756545353.422:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13725 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf5098ebe9 code=0x7ffc0000
[ 1395.258057][   T28] audit: type=1326 audit(1756545353.422:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13725 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf5098ebe9 code=0x7ffc0000
[ 1395.311197][T13730] FAULT_INJECTION: forcing a failure.
[ 1395.311197][T13730] name failslab, interval 1, probability 0, space 0, times 0
[ 1395.332712][   T19] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1395.345490][T13730] CPU: 1 PID: 13730 Comm: syz.6.3172 Not tainted syzkaller #0
[ 1395.353008][T13730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1395.363088][T13730] Call Trace:
[ 1395.366389][T13730]  <TASK>
[ 1395.369341][T13730]  __dump_stack+0x21/0x24
[ 1395.373705][T13730]  dump_stack_lvl+0xee/0x150
[ 1395.378329][T13730]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1395.383391][T13730]  dump_stack+0x15/0x24
[ 1395.385994][   T28] audit: type=1326 audit(1756545353.442:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13725 comm="syz.6.3171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fbf5098ebe9 code=0x7ffc0000
[ 1395.387582][T13730]  should_fail_ex+0x3d4/0x520
[ 1395.415624][T13730]  ? audit_log_start+0x3a4/0x8b0
[ 1395.420604][T13730]  __should_failslab+0xac/0xf0
[ 1395.422744][   T19] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1395.425389][T13730]  should_failslab+0x9/0x20
[ 1395.425414][T13730]  kmem_cache_alloc+0x3b/0x330
[ 1395.444391][T13730]  audit_log_start+0x3a4/0x8b0
[ 1395.449208][T13730]  ? __cfi_audit_log_start+0x10/0x10
[ 1395.454002][   T19] usb 3-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00
[ 1395.454530][T13730]  ? audit_log_end+0x1eb/0x240
[ 1395.468327][T13730]  ? kmem_cache_free+0x12d/0x300
[ 1395.473304][T13730]  ? migrate_enable+0x19c/0x280
[ 1395.473454][   T19] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1395.478191][T13730]  ? __cfi_migrate_enable+0x10/0x10
[ 1395.478221][T13730]  audit_seccomp+0x62/0x160
[ 1395.495944][T13730]  ? migrate_disable+0xd6/0x180
[ 1395.500828][T13730]  __seccomp_filter+0xacd/0x19d0
[ 1395.505800][T13730]  ? __secure_computing+0x290/0x290
[ 1395.511050][T13730]  ? __kasan_check_write+0x14/0x20
[ 1395.516198][T13730]  ? mutex_unlock+0x89/0x220
[ 1395.520814][T13730]  ? __cfi_mutex_unlock+0x10/0x10
[ 1395.525884][T13730]  ? ksys_write+0x1eb/0x240
[ 1395.530523][T13730]  ? __cfi_ksys_write+0x10/0x10
[ 1395.535430][T13730]  __secure_computing+0xea/0x290
[ 1395.540404][T13730]  syscall_trace_enter+0xaa/0x150
[ 1395.545458][T13730]  syscall_enter_from_user_mode+0x1f/0x30
[ 1395.551288][T13730]  do_syscall_64+0x24/0xa0
[ 1395.555716][T13730]  ? clear_bhb_loop+0x30/0x80
[ 1395.560409][T13730]  ? clear_bhb_loop+0x30/0x80
[ 1395.565099][T13730]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1395.571089][T13730] RIP: 0033:0x7fbf5098ebe9
[ 1395.575511][T13730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1395.595133][T13730] RSP: 002b:00007fbf5182b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000da
[ 1395.603581][T13730] RAX: ffffffffffffffda RBX: 00007fbf50bc5fa0 RCX: 00007fbf5098ebe9
[ 1395.611623][T13730] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1395.619591][T13730] RBP: 00007fbf5182b090 R08: 0000000000000000 R09: 0000000000000000
[ 1395.627571][T13730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1395.635561][T13730] R13: 00007fbf50bc6038 R14: 00007fbf50bc5fa0 R15: 00007ffc75ce5e88
[ 1395.643536][T13730]  </TASK>
[ 1395.653576][T12872] syz-executor: attempt to access beyond end of device
[ 1395.653576][T12872] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 1395.681819][   T19] usb 3-1: config 0 descriptor??
[ 1395.721548][T13735] SELinux: failed to load policy
[ 1395.858332][T13728] loop0: detected capacity change from 0 to 40427
[ 1395.867463][T13728] F2FS-fs (loop0): Invalid segment count (1)
[ 1395.873610][T13728] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1395.881859][T13728] F2FS-fs (loop0): Unrecognized mount option "alloc_mWdt" or missing value
[ 1395.895160][T13738] loop1: detected capacity change from 0 to 2048
[ 1395.955958][T13738] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1395.975146][T13741] loop0: detected capacity change from 0 to 1024
[ 1395.983324][T13741] EXT4-fs: Ignoring removed nobh option
[ 1395.996729][T13741] EXT4-fs: Ignoring removed bh option
[ 1396.002680][T13741] EXT4-fs: Ignoring removed bh option
[ 1396.008415][T13741] EXT4-fs: Mount option(s) incompatible with ext3
[ 1396.015103][  T405] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[ 1396.021661][ T1443] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[ 1396.051798][T12872] EXT4-fs (loop1): unmounting filesystem.
[ 1396.202626][  T405] usb 7-1: config 9 has an invalid interface number: 81 but max is 0
[ 1396.210866][  T405] usb 7-1: config 9 has no interface number 0
[ 1396.217310][  T405] usb 7-1: config 9 interface 81 altsetting 7 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[ 1396.233372][ T1443] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1396.255898][ T1443] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1396.274709][ T1443] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1396.288931][ T1443] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1396.297566][ T1443] usb 6-1: SerialNumber: syz
[ 1396.320465][T13707] syz.2.3167[13707] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1396.320706][T13707] syz.2.3167[13707] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1396.502122][  T405] usb 7-1: config 9 interface 81 has no altsetting 0
[ 1396.526940][T13707] syz.2.3167[13707] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1396.527033][T13707] syz.2.3167[13707] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1396.548262][   T19] hid-led: probe of 0003:1D34:000A.0037 failed with error -71
[ 1396.568152][  T405] usb 7-1: New USB device found, idVendor=05f9, idProduct=ffff, bcdDevice=f0.f4
[ 1396.580075][  T405] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1396.588631][  T405] usb 7-1: Product: syz
[ 1396.596042][   T19] usb 3-1: USB disconnect, device number 23
[ 1396.602281][  T405] usb 7-1: Manufacturer: syz
[ 1396.606939][  T405] usb 7-1: SerialNumber: syz
[ 1396.620691][T13735] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[ 1396.692299][ T1443] usb 6-1: 0:2 : does not exist
[ 1396.697415][ T1443] usb 6-1: unit 5: unexpected type 0x0c
[ 1396.741352][ T1443] usb 6-1: USB disconnect, device number 19
[ 1396.857802][  T405] usbserial_generic 7-1:9.81: The "generic" usb-serial driver is only for testing and one-off prototypes.
[ 1396.869311][  T405] usbserial_generic 7-1:9.81: Tell linux-usb@vger.kernel.org to add your device to a proper driver.
[ 1396.880752][  T405] usbserial_generic 7-1:9.81: generic converter detected
[ 1396.905837][  T405] usb 7-1: generic converter now attached to ttyUSB0
[ 1396.913536][  T405] usb 7-1: generic converter now attached to ttyUSB1
[ 1396.924325][  T405] usb 7-1: USB disconnect, device number 7
[ 1396.931325][  T405] generic ttyUSB0: generic converter now disconnected from ttyUSB0
[ 1396.940823][  T405] generic ttyUSB1: generic converter now disconnected from ttyUSB1
[ 1396.960043][T13757] loop1: detected capacity change from 0 to 512
[ 1396.968207][  T405] usbserial_generic 7-1:9.81: device disconnected
[ 1396.985640][T13757] EXT4-fs (loop1): 1 orphan inode deleted
[ 1396.991473][T13757] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1397.000642][T13757] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1397.011617][T10744] EXT4-fs error (device loop1): ext4_release_dquot:6837: comm kworker/u4:6: Failed to release dquot type 1
[ 1397.019700][T13752] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.3178: iget: bad i_size value: 360287970189639690
[ 1397.040487][T13736] udevd[13736]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1397.104860][T13761] loop0: detected capacity change from 0 to 512
[ 1397.193007][T13752] overlayfs: failed to resolve './file1': -117
[ 1397.340268][T13761] EXT4-fs (loop0): 1 orphan inode deleted
[ 1397.346134][T13761] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1397.358336][T13761] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1397.410071][T13761] EXT4-fs error (device loop0): ext4_lookup:1858: inode #15: comm syz.0.3179: iget: bad i_size value: 360287970189639690
[ 1397.425535][T13761] overlayfs: failed to resolve './file1': -117
[ 1397.876100][T13766] loop2: detected capacity change from 0 to 1024
[ 1397.884862][T13767] loop6: detected capacity change from 0 to 256
[ 1397.919427][T13766] EXT4-fs: Ignoring removed i_version option
[ 1397.949936][T13767] FAT-fs (loop6): Directory bread(block 64) failed
[ 1397.970340][T13766] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.3180: Invalid block bitmap block 0 in block_group 0
[ 1397.990340][T13767] FAT-fs (loop6): Directory bread(block 65) failed
[ 1397.998899][T13767] FAT-fs (loop6): Directory bread(block 66) failed
[ 1398.006892][T13766] __quota_error: 91 callbacks suppressed
[ 1398.006910][T13766] Quota error (device loop2): write_blk: dquota write failed
[ 1398.020640][T13767] FAT-fs (loop6): Directory bread(block 67) failed
[ 1398.027709][T13767] FAT-fs (loop6): Directory bread(block 68) failed
[ 1398.034573][T13766] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1398.044755][T13767] FAT-fs (loop6): Directory bread(block 69) failed
[ 1398.051346][T13767] FAT-fs (loop6): Directory bread(block 70) failed
[ 1398.058436][T13766] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.3180: Failed to acquire dquot type 0
[ 1398.071333][T13767] FAT-fs (loop6): Directory bread(block 71) failed
[ 1398.072241][T12872] EXT4-fs (loop1): unmounting filesystem.
[ 1398.078419][T13767] FAT-fs (loop6): Directory bread(block 72) failed
[ 1398.084814][T13766] EXT4-fs error (device loop2): ext4_free_blocks:6210: comm syz.2.3180: Freeing blocks not in datazone - block = 0, count = 4096
[ 1398.090325][T13767] FAT-fs (loop6): Directory bread(block 73) failed
[ 1398.105262][T12660] EXT4-fs (loop5): unmounting filesystem.
[ 1398.114767][T13766] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.3180: Invalid inode bitmap blk 0 in block_group 0
[ 1398.127636][   T28] audit: type=1400 audit(1756545356.312:343): avc:  denied  { ioctl } for  pid=13765 comm="syz.6.3181" path="socket:[50962]" dev="sockfs" ino=50962 ioctlcmd=0x7453 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1398.153545][T10744] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[ 1398.154696][T13766] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[ 1398.163221][T10744] EXT4-fs error (device loop2): ext4_release_dquot:6837: comm kworker/u4:6: Failed to release dquot type 0
[ 1398.177906][T13766] EXT4-fs (loop2): 1 orphan inode deleted
[ 1398.194253][T13766] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1398.205839][T13442] EXT4-fs (loop0): unmounting filesystem.
[ 1398.218454][   T28] audit: type=1400 audit(1756545356.412:344): avc:  denied  { bind } for  pid=13771 comm="syz.5.3182" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1398.218866][   T28] audit: type=1400 audit(1756545356.412:345): avc:  denied  { read write } for  pid=13771 comm="syz.5.3182" name="ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1398.218997][   T28] audit: type=1400 audit(1756545356.412:346): avc:  denied  { open } for  pid=13771 comm="syz.5.3182" path="/dev/ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1398.219258][   T28] audit: type=1400 audit(1756545356.412:347): avc:  denied  { ioctl } for  pid=13771 comm="syz.5.3182" path="/dev/ppp" dev="devtmpfs" ino=158 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1398.219605][T13772] netlink: 'syz.5.3182': attribute type 4 has an invalid length.
[ 1398.228903][T13772] netlink: 'syz.5.3182': attribute type 4 has an invalid length.
[ 1398.336462][T12753] EXT4-fs (loop2): unmounting filesystem.
[ 1398.360440][T13782] loop2: detected capacity change from 0 to 2048
[ 1398.509961][T13782] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1398.518706][T13782] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1398.554233][T13775] loop1: detected capacity change from 0 to 512
[ 1398.561437][T13775] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1398.578572][   T28] audit: type=1400 audit(1756545356.772:348): avc:  denied  { map } for  pid=13765 comm="syz.6.3181" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1398.588291][T13775] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002e11c, mo2=0002]
[ 1398.609563][T13775] System zones: 1-12
[ 1398.614440][T13775] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1398.621140][T13775] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.3183: bg 0: block 361: padding at end of block bitmap is not set
[ 1398.681473][T13775] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 1398.690874][T13775] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.3183: invalid indirect mapped block 12 (level 1)
[ 1398.704398][T13775] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.3183: invalid indirect mapped block 2 (level 2)
[ 1398.718079][T13775] EXT4-fs (loop1): 1 truncate cleaned up
[ 1398.723803][T13775] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1398.759525][  T287] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[ 1398.815717][T13794] loop5: detected capacity change from 0 to 512
[ 1398.831574][ T1443] usb 3-1: new low-speed USB device number 24 using dummy_hcd
[ 1398.963552][  T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1399.036897][T13794] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1399.046331][T13794] ext4 filesystem being mounted at /50/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1399.081754][ T1443] usb 3-1: No LPM exit latency info found, disabling LPM.
[ 1399.217662][ T1443] usb 3-1: config 1 interface 0 altsetting 248 endpoint 0x82 is Bulk; changing to Interrupt
[ 1399.252507][  T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1399.424959][ T1443] usb 3-1: config 1 interface 0 altsetting 248 endpoint 0x3 is Bulk; changing to Interrupt
[ 1399.534905][  T287] usb 1-1: New USB device found, idVendor=07c0, idProduct=1524, bcdDevice= 0.00
[ 1399.552548][  T287] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1399.560856][ T1443] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1399.580574][ T1443] usb 3-1: string descriptor 0 read error: -22
[ 1399.591905][  T287] usb 1-1: config 0 descriptor??
[ 1399.597801][ T1443] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1399.619867][T12872] EXT4-fs (loop1): unmounting filesystem.
[ 1399.625998][ T1443] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1399.637932][T13782] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1399.647357][T13782] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1399.655703][ T1443] cdc_ether: probe of 3-1:1.0 failed with error -22
[ 1399.743813][T12660] EXT4-fs (loop5): unmounting filesystem.
[ 1399.812657][T13774] kvm: emulating exchange as write
[ 1399.818607][ T1443] usb 1-1: USB disconnect, device number 16
[ 1399.851560][  T752] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[ 1399.871393][T13782] fs-verity: sha512 using implementation "sha512-avx2"
[ 1399.976216][  T405] usb 3-1: USB disconnect, device number 24
[ 1400.021635][ T8597] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1400.042720][  T752] usb 7-1: config 0 has an invalid interface number: 2 but max is 0
[ 1400.050815][  T752] usb 7-1: config 0 has no interface number 0
[ 1400.057101][  T752] usb 7-1: config 0 interface 2 altsetting 2 endpoint 0x6 has invalid maxpacket 512, setting to 64
[ 1400.067909][  T752] usb 7-1: config 0 interface 2 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1400.080739][  T752] usb 7-1: config 0 interface 2 has no altsetting 0
[ 1400.088796][  T752] usb 7-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[ 1400.097952][  T752] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1400.106001][  T752] usb 7-1: Product: syz
[ 1400.110179][  T752] usb 7-1: Manufacturer: syz
[ 1400.114821][  T752] usb 7-1: SerialNumber: syz
[ 1400.119989][  T752] usb 7-1: config 0 descriptor??
[ 1400.125235][T13798] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[ 1400.202729][ T8597] usb 2-1: config 1 has an invalid descriptor of length 68, skipping remainder of the config
[ 1400.213026][ T8597] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1400.221980][ T8597] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1400.236659][ T8597] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1400.245786][ T8597] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1400.253814][ T8597] usb 2-1: Product: syz
[ 1400.257989][ T8597] usb 2-1: Manufacturer: syz
[ 1400.262625][ T8597] usb 2-1: SerialNumber: syz
[ 1400.334791][  T752] usb 7-1: invalid MIDI in EP 0
[ 1400.342965][  T752] snd-usb-audio: probe of 7-1:0.2 failed with error -22
[ 1400.358133][T13776] udevd[13776]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.2/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 1400.411813][   T28] audit: type=1400 audit(1756545358.612:349): avc:  denied  { create } for  pid=13810 comm="syz.0.3194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 1400.447777][T13813] loop0: detected capacity change from 0 to 512
[ 1400.458072][T13813] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.3195: iget: bad i_size value: 38620345925642
[ 1400.471084][T13813] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.3195: couldn't read orphan inode 15 (err -117)
[ 1400.483401][T13813] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1400.495287][T13813] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.3195: bg 0: block 5: invalid block bitmap
[ 1400.507913][T13813] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 5 with error 28
[ 1400.520353][T13813] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1400.520353][T13813] 
[ 1400.530185][T13813] EXT4-fs (loop0): Total free blocks count 0
[ 1400.536885][  T405] usb 7-1: USB disconnect, device number 8
[ 1400.536931][T13813] EXT4-fs (loop0): Free/Dirty block details
[ 1400.553556][T13813] EXT4-fs (loop0): free_blocks=0
[ 1400.558752][T13813] EXT4-fs (loop0): dirty_blocks=5
[ 1400.565126][T13813] EXT4-fs (loop0): Block reservation details
[ 1400.571313][T13813] EXT4-fs (loop0): i_reserved_data_blocks=5
[ 1400.646228][T13817] loop1: detected capacity change from 0 to 512
[ 1400.657140][T13817] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1400.679091][T13817] EXT4-fs (loop1): 1 truncate cleaned up
[ 1400.684941][T13817] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1401.373898][T13442] EXT4-fs (loop0): unmounting filesystem.
[ 1401.818961][T12753] EXT4-fs (loop2): unmounting filesystem.
[ 1401.873072][T13820] FAULT_INJECTION: forcing a failure.
[ 1401.873072][T13820] name failslab, interval 1, probability 0, space 0, times 0
[ 1401.929645][T13820] CPU: 0 PID: 13820 Comm: syz.6.3196 Not tainted syzkaller #0
[ 1401.937165][T13820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1401.941686][T13832] loop5: detected capacity change from 0 to 128
[ 1401.947237][T13820] Call Trace:
[ 1401.947248][T13820]  <TASK>
[ 1401.959702][T13820]  __dump_stack+0x21/0x24
[ 1401.964073][T13820]  dump_stack_lvl+0xee/0x150
[ 1401.968646][T13834] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[ 1401.968710][T13820]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1401.983143][T13820]  ? stack_trace_save+0x98/0xe0
[ 1401.988031][T13820]  dump_stack+0x15/0x24
[ 1401.992232][T13820]  should_fail_ex+0x3d4/0x520
[ 1401.996969][T13820]  __should_failslab+0xac/0xf0
[ 1402.001777][T13820]  ? kvmalloc_node+0x294/0x480
[ 1402.006564][T13820]  should_failslab+0x9/0x20
[ 1402.011074][T13820]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1402.016527][T13820]  ? kvmalloc_node+0x294/0x480
[ 1402.021311][T13820]  __kmalloc_node+0xa1/0x1e0
[ 1402.025937][T13820]  kvmalloc_node+0x294/0x480
[ 1402.030562][T13820]  ? __kasan_check_write+0x14/0x20
[ 1402.035699][T13820]  ? __cfi_kvmalloc_node+0x10/0x10
[ 1402.040929][T13820]  seq_read_iter+0x1fc/0xdd0
[ 1402.045548][T13820]  vfs_read+0x41e/0x8c0
[ 1402.049719][T13820]  ? __cfi_vfs_read+0x10/0x10
[ 1402.054409][T13820]  ? __cfi_mutex_lock+0x10/0x10
[ 1402.059286][T13820]  ? __fdget_pos+0x2cd/0x380
[ 1402.063878][T13820]  ? ksys_read+0x71/0x240
[ 1402.068225][T13820]  ksys_read+0x140/0x240
[ 1402.072480][T13820]  ? __cfi_ksys_read+0x10/0x10
[ 1402.077252][T13820]  ? debug_smp_processor_id+0x17/0x20
[ 1402.082636][T13820]  __x64_sys_read+0x7b/0x90
[ 1402.087157][T13820]  x64_sys_call+0x2f/0x9a0
[ 1402.091604][T13820]  do_syscall_64+0x4c/0xa0
[ 1402.096021][T13820]  ? clear_bhb_loop+0x30/0x80
[ 1402.100705][T13820]  ? clear_bhb_loop+0x30/0x80
[ 1402.105389][T13820]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1402.111292][T13820] RIP: 0033:0x7fbf5098ebe9
[ 1402.115718][T13820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1402.135327][T13820] RSP: 002b:00007fbf5182b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1402.143747][T13820] RAX: ffffffffffffffda RBX: 00007fbf50bc5fa0 RCX: 00007fbf5098ebe9
[ 1402.152003][T13820] RDX: 000000005ecfb203 RSI: 0000200000002780 RDI: 0000000000000004
[ 1402.159975][T13820] RBP: 00007fbf5182b090 R08: 0000000000000000 R09: 0000000000000000
[ 1402.167946][T13820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1402.175922][T13820] R13: 00007fbf50bc6038 R14: 00007fbf50bc5fa0 R15: 00007ffc75ce5e88
[ 1402.183905][T13820]  </TASK>
[ 1402.213965][T13834] Driver unsupported XDP return value 0 on prog  (id 653) dev N/A, expect packet loss!
[ 1402.277100][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.277100][T13832] loop5: rw=2049, sector=145, nr_sectors = 896 limit=128
[ 1402.306326][T13843] FAULT_INJECTION: forcing a failure.
[ 1402.306326][T13843] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1402.317581][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.317581][T13832] loop5: rw=524288, sector=145, nr_sectors = 224 limit=128
[ 1402.333826][T13843] CPU: 0 PID: 13843 Comm: syz.0.3204 Not tainted syzkaller #0
[ 1402.341496][T13843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1402.351561][T13843] Call Trace:
[ 1402.354840][T13843]  <TASK>
[ 1402.357773][T13843]  __dump_stack+0x21/0x24
[ 1402.362121][T13843]  dump_stack_lvl+0xee/0x150
[ 1402.366736][T13843]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1402.371775][T13843]  ? _parse_integer+0x2a/0x40
[ 1402.376464][T13843]  dump_stack+0x15/0x24
[ 1402.380629][T13843]  should_fail_ex+0x3d4/0x520
[ 1402.385313][T13843]  should_fail+0xb/0x10
[ 1402.389485][T13843]  should_fail_usercopy+0x1a/0x20
[ 1402.394536][T13843]  _copy_from_user+0x1e/0xc0
[ 1402.399130][T13843]  ___sys_sendmsg+0x155/0x290
[ 1402.403815][T13843]  ? __sys_sendmsg+0x270/0x270
[ 1402.408582][T13843]  ? __kasan_check_write+0x14/0x20
[ 1402.413704][T13843]  ? proc_fail_nth_write+0x17a/0x1f0
[ 1402.418993][T13843]  ? vfs_write+0x9d6/0xca0
[ 1402.423506][T13843]  ? __fdget+0x19c/0x220
[ 1402.427750][T13843]  __x64_sys_sendmsg+0x1f0/0x2c0
[ 1402.432689][T13843]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[ 1402.438190][T13843]  ? fpregs_assert_state_consistent+0xb1/0xe0
[ 1402.444264][T13843]  x64_sys_call+0x171/0x9a0
[ 1402.448776][T13843]  do_syscall_64+0x4c/0xa0
[ 1402.453196][T13843]  ? clear_bhb_loop+0x30/0x80
[ 1402.457925][T13843]  ? clear_bhb_loop+0x30/0x80
[ 1402.462608][T13843]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1402.468505][T13843] RIP: 0033:0x7fbf4e78ebe9
[ 1402.472923][T13843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1402.492531][T13843] RSP: 002b:00007fbf4f60c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1402.500946][T13843] RAX: ffffffffffffffda RBX: 00007fbf4e9c5fa0 RCX: 00007fbf4e78ebe9
[ 1402.509007][T13843] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[ 1402.517099][T13843] RBP: 00007fbf4f60c090 R08: 0000000000000000 R09: 0000000000000000
[ 1402.525079][T13843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1402.533051][T13843] R13: 00007fbf4e9c6038 R14: 00007fbf4e9c5fa0 R15: 00007ffcb9f01188
[ 1402.541026][T13843]  </TASK>
[ 1402.545888][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.545888][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.546101][T13844] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3203'.
[ 1402.559783][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.559783][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.605871][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.605871][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.619577][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.619577][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.622174][T13841] loop6: detected capacity change from 0 to 512
[ 1402.633122][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.633122][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.642239][T13841] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1402.652882][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.652882][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.659578][T13841] EXT4-fs: Ignoring removed bh option
[ 1402.673919][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.673919][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.691030][T13832] syz.5.3200: attempt to access beyond end of device
[ 1402.691030][T13832] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1402.694143][T13847] FAULT_INJECTION: forcing a failure.
[ 1402.694143][T13847] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1402.717934][T13841] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1402.725079][T13841] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1402.731564][T13847] CPU: 1 PID: 13847 Comm: syz.0.3206 Not tainted syzkaller #0
[ 1402.742565][T13847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1402.752639][T13847] Call Trace:
[ 1402.755930][T13847]  <TASK>
[ 1402.758887][T13847]  __dump_stack+0x21/0x24
[ 1402.763261][T13847]  dump_stack_lvl+0xee/0x150
[ 1402.767971][T13847]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1402.773031][T13847]  dump_stack+0x15/0x24
[ 1402.777218][T13847]  should_fail_ex+0x3d4/0x520
[ 1402.781924][T13847]  should_fail+0xb/0x10
[ 1402.786108][T13847]  should_fail_usercopy+0x1a/0x20
[ 1402.791160][T13847]  _copy_from_user+0x1e/0xc0
[ 1402.795786][T13847]  __sys_sendto+0x2c0/0x5e0
[ 1402.800305][T13847]  ? slab_free_freelist_hook+0xc2/0x190
[ 1402.805891][T13847]  ? __cfi___sys_sendto+0x10/0x10
[ 1402.810949][T13847]  ? ksys_write+0x1eb/0x240
[ 1402.815487][T13847]  ? __cfi_ksys_write+0x10/0x10
[ 1402.820372][T13847]  __x64_sys_sendto+0xe5/0x100
[ 1402.825162][T13847]  x64_sys_call+0x83/0x9a0
[ 1402.829606][T13847]  do_syscall_64+0x4c/0xa0
[ 1402.834037][T13847]  ? clear_bhb_loop+0x30/0x80
[ 1402.838744][T13847]  ? clear_bhb_loop+0x30/0x80
[ 1402.843446][T13847]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1402.849364][T13847] RIP: 0033:0x7fbf4e78ebe9
[ 1402.853802][T13847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1402.873430][T13847] RSP: 002b:00007fbf4f60c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1402.881880][T13847] RAX: ffffffffffffffda RBX: 00007fbf4e9c5fa0 RCX: 00007fbf4e78ebe9
[ 1402.889920][T13847] RDX: fffffffffffffea7 RSI: 0000200000f6f000 RDI: 0000000000000003
[ 1402.897913][T13847] RBP: 00007fbf4f60c090 R08: 0000200000b63fe4 R09: 000000000000001c
[ 1402.905905][T13847] R10: 0000000020000004 R11: 0000000000000246 R12: 0000000000000001
[ 1402.913904][T13847] R13: 00007fbf4e9c6038 R14: 00007fbf4e9c5fa0 R15: 00007ffcb9f01188
[ 1402.921916][T13847]  </TASK>
[ 1402.962174][ T8597] cdc_ncm 2-1:1.0: CDC Union missing and no IAD found
[ 1402.969698][T12872] EXT4-fs (loop1): unmounting filesystem.
[ 1402.980354][T13841] EXT4-fs (loop6): 1 truncate cleaned up
[ 1402.986581][ T8597] cdc_ncm 2-1:1.0: bind() failure
[ 1402.995097][T13841] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1403.041843][ T8597] usb 2-1: USB disconnect, device number 26
[ 1403.189918][T13857] loop2: detected capacity change from 0 to 256
[ 1403.197184][   T28] kauditd_printk_skb: 7 callbacks suppressed
[ 1403.197200][   T28] audit: type=1400 audit(1756545361.402:357): avc:  denied  { listen } for  pid=13852 comm="syz.0.3208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1403.229897][T13857] FAULT_INJECTION: forcing a failure.
[ 1403.229897][T13857] name failslab, interval 1, probability 0, space 0, times 0
[ 1403.257789][T13860] loop5: detected capacity change from 0 to 256
[ 1403.264482][T13857] CPU: 0 PID: 13857 Comm: syz.2.3209 Not tainted syzkaller #0
[ 1403.272019][T13857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1403.282104][T13857] Call Trace:
[ 1403.285403][T13857]  <TASK>
[ 1403.286218][   T28] audit: type=1400 audit(1756545361.402:358): avc:  denied  { accept } for  pid=13852 comm="syz.0.3208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1403.288343][T13857]  __dump_stack+0x21/0x24
[ 1403.308578][T13860] FAT-fs (loop5): Unrecognized mount option "" or missing value
[ 1403.312142][T13857]  dump_stack_lvl+0xee/0x150
[ 1403.312181][T13857]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1403.329614][T13857]  ? __kasan_check_write+0x14/0x20
[ 1403.334800][T13857]  dump_stack+0x15/0x24
[ 1403.338989][T13857]  should_fail_ex+0x3d4/0x520
[ 1403.340496][   T28] audit: type=1400 audit(1756545361.412:359): avc:  denied  { create } for  pid=13840 comm="syz.6.3205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1403.343684][T13857]  ? getname_flags+0xb9/0x500
[ 1403.343717][T13857]  __should_failslab+0xac/0xf0
[ 1403.373030][T13857]  should_failslab+0x9/0x20
[ 1403.377558][T13857]  kmem_cache_alloc+0x3b/0x330
[ 1403.382347][T13857]  getname_flags+0xb9/0x500
[ 1403.386210][   T28] audit: type=1400 audit(1756545361.412:360): avc:  denied  { ioctl } for  pid=13840 comm="syz.6.3205" path="socket:[51158]" dev="sockfs" ino=51158 ioctlcmd=0x48f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1403.386876][T13857]  ? debug_smp_processor_id+0x17/0x20
[ 1403.417334][T13857]  __x64_sys_mkdirat+0x7c/0xa0
[ 1403.422127][T13857]  x64_sys_call+0x73d/0x9a0
[ 1403.426664][T13857]  do_syscall_64+0x4c/0xa0
[ 1403.431273][T13857]  ? clear_bhb_loop+0x30/0x80
[ 1403.435969][T13857]  ? clear_bhb_loop+0x30/0x80
[ 1403.440662][T13857]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1403.441799][   T28] audit: type=1400 audit(1756545361.442:361): avc:  denied  { lock } for  pid=13840 comm="syz.6.3205" path="/144/bus/blkio.bfq.avg_queue_size" dev="loop6" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1403.446569][T13857] RIP: 0033:0x7f154c18ebe9
[ 1403.446589][T13857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1403.494830][T13857] RSP: 002b:00007f154d07c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 1403.503267][T13857] RAX: ffffffffffffffda RBX: 00007f154c3c5fa0 RCX: 00007f154c18ebe9
[ 1403.511428][T13857] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1403.519415][T13857] RBP: 00007f154d07c090 R08: 0000000000000000 R09: 0000000000000000
[ 1403.527611][T13857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1403.535595][T13857] R13: 00007f154c3c6038 R14: 00007f154c3c5fa0 R15: 00007ffd350999d8
[ 1403.543572][T13857]  </TASK>
[ 1403.550321][T10712] EXT4-fs (loop6): unmounting filesystem.
[ 1403.562517][T13736] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1403.678570][T13867] loop5: detected capacity change from 0 to 4096
[ 1403.707657][T13867] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1403.820989][   T28] audit: type=1400 audit(1756545362.012:362): avc:  denied  { read } for  pid=13861 comm="syz.2.3212" name="snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[ 1403.892406][T13881] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3216'.
[ 1404.124766][T13891] FAULT_INJECTION: forcing a failure.
[ 1404.124766][T13891] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1404.138057][T13891] CPU: 1 PID: 13891 Comm: syz.1.3219 Not tainted syzkaller #0
[ 1404.145544][T13891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1404.155627][T13891] Call Trace:
[ 1404.158942][T13891]  <TASK>
[ 1404.161906][T13891]  __dump_stack+0x21/0x24
[ 1404.166281][T13891]  dump_stack_lvl+0xee/0x150
[ 1404.170913][T13891]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1404.175981][T13891]  dump_stack+0x15/0x24
[ 1404.180178][T13891]  should_fail_ex+0x3d4/0x520
[ 1404.184887][T13891]  should_fail+0xb/0x10
[ 1404.189079][T13891]  should_fail_usercopy+0x1a/0x20
[ 1404.194137][T13891]  _copy_from_user+0x1e/0xc0
[ 1404.198768][T13891]  __sys_bpf+0x277/0x780
[ 1404.203020][T13891]  ? bpf_link_show_fdinfo+0x320/0x320
[ 1404.208403][T13891]  ? __cfi_ksys_write+0x10/0x10
[ 1404.213360][T13891]  ? debug_smp_processor_id+0x17/0x20
[ 1404.218749][T13891]  __x64_sys_bpf+0x7c/0x90
[ 1404.223179][T13891]  x64_sys_call+0x488/0x9a0
[ 1404.227692][T13891]  do_syscall_64+0x4c/0xa0
[ 1404.232193][T13891]  ? clear_bhb_loop+0x30/0x80
[ 1404.236879][T13891]  ? clear_bhb_loop+0x30/0x80
[ 1404.241572][T13891]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1404.247470][T13891] RIP: 0033:0x7f09b678ebe9
[ 1404.251891][T13891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1404.271593][T13891] RSP: 002b:00007f09b7697038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1404.280018][T13891] RAX: ffffffffffffffda RBX: 00007f09b69c5fa0 RCX: 00007f09b678ebe9
[ 1404.287992][T13891] RDX: 0000000000000020 RSI: 00002000000003c0 RDI: 0000000000000012
[ 1404.295963][T13891] RBP: 00007f09b7697090 R08: 0000000000000000 R09: 0000000000000000
[ 1404.303936][T13891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1404.311913][T13891] R13: 00007f09b69c6038 R14: 00007f09b69c5fa0 R15: 00007ffca3983198
[ 1404.319897][T13891]  </TASK>
[ 1404.515372][T12660] EXT4-fs (loop5): unmounting filesystem.
[ 1404.654956][T13897] FAULT_INJECTION: forcing a failure.
[ 1404.654956][T13897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1404.668187][T13897] CPU: 1 PID: 13897 Comm: syz.5.3221 Not tainted syzkaller #0
[ 1404.675782][T13897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1404.685845][T13897] Call Trace:
[ 1404.689130][T13897]  <TASK>
[ 1404.692082][T13897]  __dump_stack+0x21/0x24
[ 1404.696421][T13897]  dump_stack_lvl+0xee/0x150
[ 1404.701110][T13897]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1404.706263][T13897]  dump_stack+0x15/0x24
[ 1404.710425][T13897]  should_fail_ex+0x3d4/0x520
[ 1404.715128][T13897]  should_fail+0xb/0x10
[ 1404.719312][T13897]  should_fail_usercopy+0x1a/0x20
[ 1404.724342][T13897]  _copy_to_user+0x1e/0x90
[ 1404.728776][T13897]  simple_read_from_buffer+0xe9/0x160
[ 1404.734172][T13897]  proc_fail_nth_read+0x19a/0x210
[ 1404.739226][T13897]  ? __cfi_proc_fail_nth_read+0x10/0x10
[ 1404.744798][T13897]  ? security_file_permission+0x94/0xb0
[ 1404.750356][T13897]  ? __cfi_proc_fail_nth_read+0x10/0x10
[ 1404.755900][T13897]  vfs_read+0x26e/0x8c0
[ 1404.760063][T13897]  ? __cfi_vfs_read+0x10/0x10
[ 1404.764788][T13897]  ? __kasan_check_write+0x14/0x20
[ 1404.769923][T13897]  ? mutex_lock+0x8d/0x1a0
[ 1404.774347][T13897]  ? __cfi_mutex_lock+0x10/0x10
[ 1404.779310][T13897]  ? __fdget_pos+0x2cd/0x380
[ 1404.784088][T13897]  ? ksys_read+0x71/0x240
[ 1404.788471][T13897]  ksys_read+0x140/0x240
[ 1404.792742][T13897]  ? __cfi_ksys_read+0x10/0x10
[ 1404.797526][T13897]  ? debug_smp_processor_id+0x17/0x20
[ 1404.802911][T13897]  __x64_sys_read+0x7b/0x90
[ 1404.807433][T13897]  x64_sys_call+0x2f/0x9a0
[ 1404.811865][T13897]  do_syscall_64+0x4c/0xa0
[ 1404.816314][T13897]  ? clear_bhb_loop+0x30/0x80
[ 1404.821001][T13897]  ? clear_bhb_loop+0x30/0x80
[ 1404.825688][T13897]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1404.831588][T13897] RIP: 0033:0x7f398598d5fc
[ 1404.836023][T13897] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1404.855734][T13897] RSP: 002b:00007f39867ca030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1404.864189][T13897] RAX: ffffffffffffffda RBX: 00007f3985bc5fa0 RCX: 00007f398598d5fc
[ 1404.872180][T13897] RDX: 000000000000000f RSI: 00007f39867ca0a0 RDI: 0000000000000005
[ 1404.880156][T13897] RBP: 00007f39867ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1404.888134][T13897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1404.896115][T13897] R13: 00007f3985bc6038 R14: 00007f3985bc5fa0 R15: 00007ffd34c42778
[ 1404.904443][T13897]  </TASK>
[ 1404.962944][T13901] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1735060478 (27760967648 ns) > initial count (27267544304 ns). Using initial count to start timer.
[ 1404.963244][   T28] audit: type=1400 audit(1756545363.162:363): avc:  denied  { ioctl } for  pid=13903 comm="syz.0.3223" path="socket:[52361]" dev="sockfs" ino=52361 ioctlcmd=0x8935 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1405.009655][T13905] kvm: pic: single mode not supported
[ 1405.009862][T13905] kvm: pic: non byte read
[ 1405.034199][T13905] kvm: pic: non byte write
[ 1405.038731][T13905] kvm: pic: non byte read
[ 1405.043614][T13905] kvm: pic: non byte write
[ 1405.048183][T13905] kvm: pic: non byte read
[ 1405.053301][T13905] kvm: pic: non byte write
[ 1405.057956][T13905] kvm: pic: non byte read
[ 1405.062724][T13905] kvm: pic: non byte write
[ 1405.067380][T13905] kvm: pic: non byte read
[ 1405.074510][ T1443] usb 2-1: new full-speed USB device number 27 using dummy_hcd
[ 1405.085877][T13905] kvm: pic: non byte write
[ 1405.090430][T13905] kvm: pic: non byte read
[ 1405.095239][T13905] kvm: pic: non byte write
[ 1405.099795][T13905] kvm: pic: non byte read
[ 1405.104340][T13905] kvm: pic: non byte write
[ 1405.109059][T13905] kvm: pic: non byte read
[ 1405.113884][T13905] kvm: pic: non byte write
[ 1405.118387][T13905] kvm: pic: non byte read
[ 1405.123229][T13905] kvm: pic: non byte write
[ 1405.128246][T13905] kvm: pic: non byte read
[ 1405.133220][T13905] kvm: pic: non byte write
[ 1405.225518][   T28] audit: type=1400 audit(1756545363.422:364): avc:  denied  { write } for  pid=13918 comm="syz.5.3229" laddr=fe80::9ca1:dcff:fe39:a7b1 lport=58 faddr=ff02::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1405.234880][T13919] loop5: detected capacity change from 0 to 2048
[ 1405.252571][T13915] loop0: detected capacity change from 0 to 512
[ 1405.266472][T13915] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1405.278137][ T1443] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1405.288115][ T1443] usb 2-1: not running at top speed; connect to a high speed hub
[ 1405.309122][T13919] EXT4-fs (loop5): failed to initialize system zone (-117)
[ 1405.311908][ T1443] usb 2-1: config 0 has no interfaces?
[ 1405.317423][T13919] EXT4-fs (loop5): mount failed
[ 1405.322571][T13915] EXT4-fs (loop0): 1 truncate cleaned up
[ 1405.335766][T13915] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1405.345600][ T1443] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1405.355358][ T1443] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1405.366382][ T1443] usb 2-1: Product: syz
[ 1405.372016][ T1443] usb 2-1: Manufacturer: syz
[ 1405.376710][ T1443] usb 2-1: SerialNumber: syz
[ 1405.387228][ T1443] usb 2-1: config 0 descriptor??
[ 1405.558851][T13442] EXT4-fs (loop0): unmounting filesystem.
[ 1405.594022][ T1443] usb 2-1: USB disconnect, device number 27
[ 1405.605939][   T28] audit: type=1400 audit(1756545363.802:365): avc:  denied  { create } for  pid=13936 comm="syz.6.3236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[ 1405.710313][T13924] loop2: detected capacity change from 0 to 40427
[ 1406.140812][T13924] F2FS-fs (loop2): invalid crc value
[ 1406.215742][T13941] tmpfs: Unknown parameter 'inodW32'
[ 1406.224271][   T28] audit: type=1400 audit(1756545364.422:366): avc:  denied  { getopt } for  pid=13936 comm="syz.6.3236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1406.267496][T13924] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1406.379359][T13924] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1406.399900][T13960] FAULT_INJECTION: forcing a failure.
[ 1406.399900][T13960] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1406.414118][T13960] CPU: 0 PID: 13960 Comm: syz.6.3243 Not tainted syzkaller #0
[ 1406.421623][T13960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1406.431701][T13960] Call Trace:
[ 1406.435002][T13960]  <TASK>
[ 1406.437950][T13960]  __dump_stack+0x21/0x24
[ 1406.442309][T13960]  dump_stack_lvl+0xee/0x150
[ 1406.447004][T13960]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1406.452043][T13960]  ? stack_trace_save+0x98/0xe0
[ 1406.456910][T13960]  ? __stack_depot_save+0x36/0x480
[ 1406.462027][T13960]  dump_stack+0x15/0x24
[ 1406.466194][T13960]  should_fail_ex+0x3d4/0x520
[ 1406.470991][T13960]  should_fail_alloc_page+0x61/0x90
[ 1406.476201][T13960]  prepare_alloc_pages+0x148/0x5f0
[ 1406.481335][T13960]  ? __alloc_pages_bulk+0x9c0/0x9c0
[ 1406.486557][T13960]  ? kstrtouint+0x74/0xe0
[ 1406.490901][T13960]  __alloc_pages+0x124/0x450
[ 1406.495502][T13960]  ? __cfi___alloc_pages+0x10/0x10
[ 1406.500633][T13960]  ? __kasan_check_write+0x14/0x20
[ 1406.505763][T13960]  ? proc_fail_nth_write+0x17a/0x1f0
[ 1406.511049][T13960]  __folio_alloc+0x12/0x40
[ 1406.515495][T13960]  handle_mm_fault+0x18ef/0x2640
[ 1406.520461][T13960]  ? __cfi_handle_mm_fault+0x10/0x10
[ 1406.525763][T13960]  ? lock_vma_under_rcu+0x3eb/0x4d0
[ 1406.530974][T13960]  ? __kasan_check_write+0x14/0x20
[ 1406.536104][T13960]  ? fput+0x154/0x1a0
[ 1406.540094][T13960]  ? ksys_write+0x1eb/0x240
[ 1406.544619][T13960]  do_user_addr_fault+0x905/0x1050
[ 1406.549746][T13960]  exc_page_fault+0x51/0xb0
[ 1406.554260][T13960]  asm_exc_page_fault+0x27/0x30
[ 1406.559113][T13960] RIP: 0033:0x7fbf5085a5ab
[ 1406.563534][T13960] Code: 00 00 00 48 8d 3d 3d 3a 19 00 48 89 c1 31 c0 e8 4b 3c ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 71 3a 19 00 48 89 34 24 48 8b 14 24 48 8b
[ 1406.583144][T13960] RSP: 002b:00007fbf51829fb0 EFLAGS: 00010202
[ 1406.589228][T13960] RAX: 0000000000000000 RBX: 00007fbf50bc5fa0 RCX: 0000000000000000
[ 1406.597210][T13960] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000200000000200
[ 1406.605193][T13960] RBP: 00007fbf5182b090 R08: 0000000000000000 R09: 0000000000000000
[ 1406.613165][T13960] R10: 0000200000000200 R11: 0000000000000000 R12: 0000000000000001
[ 1406.621150][T13960] R13: 00007fbf50bc6038 R14: 00007fbf50bc5fa0 R15: 00007ffc75ce5e88
[ 1406.629134][T13960]  </TASK>
[ 1406.649799][T13960] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 1406.687856][T13966] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1406.697917][T13966] SELinux: failed to load policy
[ 1406.783595][T13969] loop0: detected capacity change from 0 to 256
[ 1406.791956][T13969] exfat: Unknown parameter '‡&í·¤‰½FÚY¢«<^–Ê…Ìä6É|	Š¹?¾Jëq}6]`YN¬Zîúóxéú˜/v{³j"‘è…·ãh¹™û
[ 1406.791956][T13969] ³šœ"¤$3%P‰ùæìsjÐ'
[ 1406.957770][T13970] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3245'.
[ 1407.084120][T13969] device wg1 entered promiscuous mode
[ 1407.169700][T13970] loop5: detected capacity change from 0 to 1024
[ 1407.178691][T13970] ext4: Unknown parameter 'euid<00000000000000000000'
[ 1409.254249][T13980] tmpfs: Unknown parameter 'inodW32'
[ 1409.296920][T12753] bio_check_eod: 12279 callbacks suppressed
[ 1409.296940][T12753] syz-executor: attempt to access beyond end of device
[ 1409.296940][T12753] loop2: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 1409.342720][T13983] FAULT_INJECTION: forcing a failure.
[ 1409.342720][T13983] name failslab, interval 1, probability 0, space 0, times 0
[ 1409.355527][T13983] CPU: 1 PID: 13983 Comm: syz.6.3251 Not tainted syzkaller #0
[ 1409.363025][T13983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1409.373099][T13983] Call Trace:
[ 1409.376407][T13983]  <TASK>
[ 1409.379348][T13983]  __dump_stack+0x21/0x24
[ 1409.383719][T13983]  dump_stack_lvl+0xee/0x150
[ 1409.388428][T13983]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1409.393602][T13983]  ? _raw_spin_lock_irqsave+0xb0/0x110
[ 1409.399087][T13983]  ? __cfi__raw_spin_lock_irqsave+0x10/0x10
[ 1409.405166][T13983]  dump_stack+0x15/0x24
[ 1409.409443][T13983]  should_fail_ex+0x3d4/0x520
[ 1409.414151][T13983]  __should_failslab+0xac/0xf0
[ 1409.418936][T13983]  ? ref_tracker_alloc+0x139/0x430
[ 1409.424061][T13983]  should_failslab+0x9/0x20
[ 1409.428584][T13983]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1409.433987][T13983]  ? ref_tracker_alloc+0x139/0x430
[ 1409.439120][T13983]  kmalloc_trace+0x29/0xb0
[ 1409.443574][T13983]  ref_tracker_alloc+0x139/0x430
[ 1409.448531][T13983]  ? __cfi_ref_tracker_alloc+0x10/0x10
[ 1409.454270][T13983]  ? __kasan_check_read+0x11/0x20
[ 1409.459359][T13983]  ? linkwatch_urgent_event+0x66/0x430
[ 1409.464874][T13983]  linkwatch_fire_event+0x1d2/0x240
[ 1409.470099][T13983]  netif_carrier_off+0x9c/0xc0
[ 1409.474999][T13983]  __tun_detach+0xc1c/0x1460
[ 1409.479611][T13983]  tun_chr_close+0x92/0x140
[ 1409.484139][T13983]  ? __cfi_tun_chr_close+0x10/0x10
[ 1409.489268][T13983]  __fput+0x1fc/0x8f0
[ 1409.493272][T13983]  ____fput+0x15/0x20
[ 1409.497271][T13983]  task_work_run+0x1db/0x240
[ 1409.501884][T13983]  ? __cfi_task_work_run+0x10/0x10
[ 1409.507019][T13983]  ? filp_close+0x111/0x160
[ 1409.511549][T13983]  exit_to_user_mode_loop+0x9b/0xb0
[ 1409.516769][T13983]  exit_to_user_mode_prepare+0x5a/0xa0
[ 1409.522417][T13983]  syscall_exit_to_user_mode+0x1a/0x30
[ 1409.527903][T13983]  do_syscall_64+0x58/0xa0
[ 1409.532437][T13983]  ? clear_bhb_loop+0x30/0x80
[ 1409.537139][T13983]  ? clear_bhb_loop+0x30/0x80
[ 1409.542272][T13983]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1409.548186][T13983] RIP: 0033:0x7fbf5098ebe9
[ 1409.552613][T13983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1409.572242][T13983] RSP: 002b:00007fbf5182b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1409.580693][T13983] RAX: 0000000000000000 RBX: 00007fbf50bc5fa0 RCX: 00007fbf5098ebe9
[ 1409.588711][T13983] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1409.596703][T13983] RBP: 00007fbf5182b090 R08: 0000000000000000 R09: 0000000000000000
[ 1409.604697][T13983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1409.612686][T13983] R13: 00007fbf50bc6038 R14: 00007fbf50bc5fa0 R15: 00007ffc75ce5e88
[ 1409.620685][T13983]  </TASK>
[ 1409.623720][T13983] memory allocation failure, unreliable refcount tracker.
[ 1409.701692][ T1443] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[ 1409.844839][T13985] loop5: detected capacity change from 0 to 512
[ 1409.869419][T13985] EXT4-fs: Ignoring removed bh option
[ 1409.889180][T13985] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1409.898488][ T1443] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1409.913415][ T1443] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1409.925304][T13985] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[ 1409.945748][ T1443] usb 2-1: config 0 descriptor??
[ 1409.961900][T13985] EXT4-fs (loop5): revision level too high, forcing read-only mode
[ 1409.975711][T13985] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1410.004990][T13985] __quota_error: 2 callbacks suppressed
[ 1410.005027][T13985] Quota error (device loop5): do_insert_tree: Free block already used in tree: block 4
[ 1410.021662][T13985] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[ 1410.032058][T13985] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.3252: Failed to acquire dquot type 1
[ 1410.044486][T13985] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:477: comm syz.5.3252: Invalid block bitmap block 0 in block_group 0
[ 1410.062305][T13985] Quota error (device loop5): write_blk: dquota write failed
[ 1410.069795][T13985] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[ 1410.099967][T13985] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.3252: Failed to acquire dquot type 1
[ 1410.111888][T13985] Quota error (device loop5): write_blk: dquota write failed
[ 1410.121157][T13985] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[ 1410.131232][T13985] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.3252: Failed to acquire dquot type 1
[ 1410.151664][T13985] EXT4-fs (loop5): 1 orphan inode deleted
[ 1410.161731][T13985] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1410.219007][T13997] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1410.229809][T13997] SELinux: failed to load policy
[ 1410.623386][ T1443] usb 2-1: string descriptor 0 read error: -71
[ 1410.640981][ T1443] usb 2-1: Cannot read MAC address
[ 1410.646279][ T1443] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[ 1410.664845][ T1443] usb 2-1: USB disconnect, device number 28
[ 1410.699158][T13990] loop6: detected capacity change from 0 to 40427
[ 1410.724130][T12660] EXT4-fs (loop5): unmounting filesystem.
[ 1410.739319][T13653] I/O error, dev loop6, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1410.772029][T14013] FAULT_INJECTION: forcing a failure.
[ 1410.772029][T14013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1410.797446][T14015] tmpfs: Unknown parameter 'inodW32'
[ 1410.809780][T14013] CPU: 1 PID: 14013 Comm: syz.0.3263 Not tainted syzkaller #0
[ 1410.817295][T14013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1410.827388][T14013] Call Trace:
[ 1410.830705][T14013]  <TASK>
[ 1410.833662][T14013]  __dump_stack+0x21/0x24
[ 1410.838037][T14013]  dump_stack_lvl+0xee/0x150
[ 1410.842664][T14013]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1410.847729][T14013]  dump_stack+0x15/0x24
[ 1410.851924][T14013]  should_fail_ex+0x3d4/0x520
[ 1410.856635][T14013]  should_fail+0xb/0x10
[ 1410.860824][T14013]  should_fail_usercopy+0x1a/0x20
[ 1410.865895][T14013]  _copy_from_user+0x1e/0xc0
[ 1410.870521][T14013]  __sys_bpf+0x277/0x780
[ 1410.874787][T14013]  ? bpf_link_show_fdinfo+0x320/0x320
[ 1410.880193][T14013]  ? __cfi_ksys_write+0x10/0x10
[ 1410.885085][T14013]  ? debug_smp_processor_id+0x17/0x20
[ 1410.890492][T14013]  __x64_sys_bpf+0x7c/0x90
[ 1410.894950][T14013]  x64_sys_call+0x488/0x9a0
[ 1410.899481][T14013]  do_syscall_64+0x4c/0xa0
[ 1410.903922][T14013]  ? clear_bhb_loop+0x30/0x80
[ 1410.908635][T14013]  ? clear_bhb_loop+0x30/0x80
[ 1410.913355][T14013]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1410.919281][T14013] RIP: 0033:0x7fbf4e78ebe9
[ 1410.923723][T14013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1410.941391][T14011] loop2: detected capacity change from 0 to 40427
[ 1410.943350][T14013] RSP: 002b:00007fbf4f60c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1410.943375][T14013] RAX: ffffffffffffffda RBX: 00007fbf4e9c5fa0 RCX: 00007fbf4e78ebe9
[ 1410.943391][T14013] RDX: 000000000000001e RSI: 0000200000000080 RDI: 000000000000000a
[ 1410.960328][T14011] F2FS-fs (loop2): invalid crc value
[ 1410.966190][T14013] RBP: 00007fbf4f60c090 R08: 0000000000000000 R09: 0000000000000000
[ 1410.966210][T14013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1410.966222][T14013] R13: 00007fbf4e9c6038 R14: 00007fbf4e9c5fa0 R15: 00007ffcb9f01188
[ 1410.966245][T14013]  </TASK>
[ 1411.014602][T14011] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1411.071424][   T28] audit: type=1400 audit(1756545369.262:369): avc:  denied  { setopt } for  pid=14022 comm="syz.5.3266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1411.124248][T14011] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1411.197216][T14036] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[ 1411.410225][T14037] loop6: detected capacity change from 0 to 8192
[ 1411.442837][T14037]  loop6: p1 < > p3 < p5 > p4
[ 1411.447652][T14037] loop6: partition table partially beyond EOD, truncated
[ 1411.455384][T14037] loop6: p1 start 4294967040 is beyond EOD, truncated
[ 1411.686292][  T102]  loop6: p1 < > p3 < p5 > p4
[ 1411.767498][  T102] loop6: partition table partially beyond EOD, truncated
[ 1411.781628][ T1443] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[ 1411.964100][   T28] audit: type=1400 audit(1756545370.162:370): avc:  denied  { connect } for  pid=14035 comm="syz.5.3270" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1411.984573][T12753] syz-executor: attempt to access beyond end of device
[ 1411.984573][T12753] loop2: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 1411.999375][  T102] loop6: p1 start 4294967040 is beyond EOD, truncated
[ 1412.022168][T14042] loop1: detected capacity change from 0 to 4096
[ 1412.052648][ T1443] usb 1-1: config 1 has an invalid descriptor of length 68, skipping remainder of the config
[ 1412.087782][T14044] loop5: detected capacity change from 0 to 512
[ 1412.103258][ T1443] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1412.133454][T14044] EXT4-fs: Ignoring removed bh option
[ 1412.139070][T14044] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1412.154621][ T1443] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1412.193239][T14044] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[ 1412.229182][T14042] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1412.238262][T14044] EXT4-fs (loop5): revision level too high, forcing read-only mode
[ 1412.257354][T14044] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1412.273937][ T1443] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1412.287817][T13777] udevd[13777]: inotify_add_watch(7, /dev/loop6p5, 10) failed: No such file or directory
[ 1412.293496][T13736] udevd[13736]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[ 1412.299291][T13776] udevd[13776]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[ 1412.312558][ T1443] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1412.318734][T14044] Quota error (device loop5): do_insert_tree: Free block already used in tree: block 4
[ 1412.335693][T14044] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[ 1412.347755][T14044] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.3273: Failed to acquire dquot type 1
[ 1412.410532][T14051] loop6: detected capacity change from 0 to 1024
[ 1412.418771][T14051] EXT4-fs: Ignoring removed bh option
[ 1412.543426][T14051] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #3: block 2: comm syz.6.3274: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1412.558360][T14051] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #3: block 48: comm syz.6.3274: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1412.574382][T14051] EXT4-fs error (device loop6): ext4_acquire_dquot:6801: comm syz.6.3274: Failed to acquire dquot type 0
[ 1412.586361][T14051] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5917: Corrupt filesystem
[ 1412.596783][T14051] EXT4-fs error (device loop6): ext4_evict_inode:279: inode #11: comm syz.6.3274: mark_inode_dirty error
[ 1412.608654][T14051] EXT4-fs warning (device loop6): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[ 1412.619248][T14051] EXT4-fs (loop6): 1 orphan inode deleted
[ 1412.625065][T14051] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1412.749776][T13776] udevd[13776]: inotify_add_watch(7, /dev/loop6p5, 10) failed: No such file or directory
[ 1412.799666][T13653] udevd[13653]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[ 1412.858546][T13736] udevd[13736]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[ 1413.361783][ T1443] usb 1-1: Product: syz
[ 1413.366021][ T1443] usb 1-1: Manufacturer: syz
[ 1413.370678][ T1443] usb 1-1: SerialNumber: syz
[ 1413.380801][T10760] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1413.381718][T14044] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:477: comm syz.5.3273: Invalid block bitmap block 0 in block_group 0
[ 1413.395248][T10760] EXT4-fs error (device loop6): ext4_release_dquot:6837: comm kworker/u4:8: Failed to release dquot type 0
[ 1413.440960][T14044] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.3273: Failed to acquire dquot type 1
[ 1413.452791][T14044] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.3273: Failed to acquire dquot type 1
[ 1413.464401][T14044] EXT4-fs (loop5): 1 orphan inode deleted
[ 1413.472405][T14054] random: crng reseeded on system resumption
[ 1413.812035][T14059] loop0: detected capacity change from 0 to 512
[ 1415.453009][T14059] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1415.464080][T14059] EXT4-fs: failed to create workqueue
[ 1415.469483][T14059] EXT4-fs (loop0): mount failed
[ 1415.908051][ T1443] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[ 1415.912911][T10712] EXT4-fs (loop6): unmounting filesystem.
[ 1415.916621][ T1443] cdc_ncm 1-1:1.0: bind() failure
[ 1415.923239][T12872] EXT4-fs (loop1): unmounting filesystem.
[ 1415.926219][T14044] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1415.932239][T10712] EXT4-fs error (device loop6): __ext4_get_inode_loc:4509: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1415.949103][ T1443] usb 1-1: USB disconnect, device number 17
[ 1415.959687][T12660] EXT4-fs (loop5): unmounting filesystem.
[ 1415.985232][T10712] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5917: Corrupt filesystem
[ 1416.006800][T14068] random: crng reseeded on system resumption
[ 1416.007984][T10712] EXT4-fs error (device loop6): ext4_quota_off:7107: inode #3: comm syz-executor: mark_inode_dirty error
[ 1416.103125][T14078] loop5: detected capacity change from 0 to 256
[ 1416.166550][   T28] kauditd_printk_skb: 7 callbacks suppressed
[ 1416.166567][   T28] audit: type=1400 audit(1756545374.362:371): avc:  denied  { mounton } for  pid=14077 comm="syz.5.3280" path="/69/file0/file0" dev="loop5" ino=1048646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[ 1416.214525][T12660] FAT-fs (loop5): error, corrupted directory (invalid entries)
[ 1416.231656][T12660] FAT-fs (loop5): error, corrupted directory (invalid entries)
[ 1416.267857][T14070] loop0: detected capacity change from 0 to 40427
[ 1416.294276][T14070] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1416.351581][  T712] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[ 1416.376822][T14081] loop1: detected capacity change from 0 to 40427
[ 1416.392695][T14070] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1416.404638][T14081] F2FS-fs (loop1): invalid crc value
[ 1416.437108][T14081] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1416.444820][T14070] F2FS-fs (loop0): access invalid blkaddr:2048
[ 1416.451018][T14070] CPU: 0 PID: 14070 Comm: syz.0.3281 Not tainted syzkaller #0
[ 1416.458539][T14070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1416.468625][T14070] Call Trace:
[ 1416.471925][T14070]  <TASK>
[ 1416.474880][T14070]  __dump_stack+0x21/0x24
[ 1416.479249][T14070]  dump_stack_lvl+0xee/0x150
[ 1416.483881][T14070]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1416.488946][T14070]  ? __cfi_f2fs_get_dnode_of_data+0x10/0x10
[ 1416.494904][T14070]  dump_stack+0x15/0x24
[ 1416.499097][T14070]  __f2fs_is_valid_blkaddr+0xda6/0x1460
[ 1416.504672][T14070]  f2fs_is_valid_blkaddr+0x23/0x30
[ 1416.509813][T14070]  f2fs_map_blocks+0xc93/0x3a60
[ 1416.511564][ T1443] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[ 1416.514710][T14070]  ? __cfi_f2fs_map_blocks+0x10/0x10
[ 1416.527519][T14070]  ? xas_start+0x317/0x3e0
[ 1416.531972][T14070]  ? xas_load+0x39e/0x3b0
[ 1416.536329][T14070]  ? xa_load+0xad/0xd0
[ 1416.540427][T14070]  f2fs_mpage_readpages+0xa3a/0x1b70
[ 1416.545748][T14070]  ? dquot_release_reservation_block+0xa0/0xa0
[ 1416.551999][T14070]  ? cgroup_rstat_updated+0xf5/0x370
[ 1416.557295][T14070]  ? xas_nomem+0x6b/0x1f0
[ 1416.561734][T14070]  f2fs_readahead+0xfc/0x240
[ 1416.566332][T14070]  ? __cfi_f2fs_readahead+0x10/0x10
[ 1416.571718][T14070]  read_pages+0x1b0/0xdd0
[ 1416.576056][T14070]  ? __cfi___filemap_add_folio+0x10/0x10
[ 1416.581704][T14070]  ? page_cache_ra_unbounded+0x720/0x720
[ 1416.587349][T14070]  ? folio_add_lru+0x260/0x390
[ 1416.592212][T14070]  ? filemap_add_folio+0x105/0x150
[ 1416.597338][T14070]  page_cache_ra_unbounded+0x5d1/0x720
[ 1416.602808][T14070]  ? __cfi_page_cache_ra_unbounded+0x10/0x10
[ 1416.608795][T14070]  ? __switch_to+0x51f/0xe30
[ 1416.613392][T14070]  page_cache_ra_order+0x36a/0xb70
[ 1416.618517][T14070]  ? finish_task_switch+0x16b/0x7b0
[ 1416.623724][T14070]  ? __switch_to_asm+0x3a/0x60
[ 1416.628496][T14070]  ? __schedule+0xb8f/0x14e0
[ 1416.633087][T14070]  ? __cfi_page_cache_ra_order+0x10/0x10
[ 1416.638728][T14070]  ondemand_readahead+0x817/0xdb0
[ 1416.643760][T14070]  ? __kasan_check_read+0x11/0x20
[ 1416.648819][T14070]  ? page_cache_sync_ra+0x490/0x490
[ 1416.654033][T14070]  page_cache_sync_ra+0x41b/0x490
[ 1416.659168][T14070]  f2fs_readdir+0x444/0x940
[ 1416.663727][T14070]  ? __cfi_f2fs_readdir+0x10/0x10
[ 1416.668856][T14070]  ? down_read_killable+0xb6/0x100
[ 1416.673984][T14070]  ? __cfi_down_read_killable+0x10/0x10
[ 1416.679541][T14070]  ? fsnotify_perm+0x269/0x5b0
[ 1416.684315][T14070]  ? security_file_permission+0x94/0xb0
[ 1416.689869][T14070]  iterate_dir+0x271/0x610
[ 1416.694290][T14070]  ? __cfi_f2fs_readdir+0x10/0x10
[ 1416.699325][T14070]  __se_sys_getdents64+0xe5/0x240
[ 1416.704363][T14070]  ? __x64_sys_getdents64+0x90/0x90
[ 1416.709593][T14070]  ? xfd_validate_state+0x70/0x150
[ 1416.714715][T14070]  ? __cfi_filldir64+0x10/0x10
[ 1416.719482][T14070]  ? fpregs_restore_userregs+0x128/0x260
[ 1416.725126][T14070]  __x64_sys_getdents64+0x7b/0x90
[ 1416.730156][T14070]  x64_sys_call+0x15c/0x9a0
[ 1416.734663][T14070]  do_syscall_64+0x4c/0xa0
[ 1416.739085][T14070]  ? clear_bhb_loop+0x30/0x80
[ 1416.743765][T14070]  ? clear_bhb_loop+0x30/0x80
[ 1416.748454][T14070]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1416.754349][T14070] RIP: 0033:0x7fbf4e78ebe9
[ 1416.758769][T14070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1416.778384][T14070] RSP: 002b:00007fbf4f60c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 1416.786806][T14070] RAX: ffffffffffffffda RBX: 00007fbf4e9c5fa0 RCX: 00007fbf4e78ebe9
[ 1416.794870][T14070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[ 1416.802843][T14070] RBP: 00007fbf4e811e19 R08: 0000000000000000 R09: 0000000000000000
[ 1416.810818][T14070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1416.818788][T14070] R13: 00007fbf4e9c6038 R14: 00007fbf4e9c5fa0 R15: 00007ffcb9f01188
[ 1416.826768][T14070]  </TASK>
[ 1416.844172][T14093] input: syz0 as /devices/virtual/input/input5
[ 1416.850794][T14070] syz.0.3281: attempt to access beyond end of device
[ 1416.850794][T14070] loop0: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[ 1416.851565][   T28] audit: type=1400 audit(1756545375.042:372): avc:  denied  { read } for  pid=87 comm="acpid" name="event3" dev="devtmpfs" ino=5713 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1416.871202][T14070] syz.0.3281: attempt to access beyond end of device
[ 1416.871202][T14070] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 1416.900858][  T712] usb 3-1: Using ep0 maxpacket: 32
[ 1416.909006][   T28] audit: type=1400 audit(1756545375.042:373): avc:  denied  { open } for  pid=87 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=5713 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1416.911668][T14092] syz.0.3281: attempt to access beyond end of device
[ 1416.911668][T14092] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427
[ 1416.942687][  T712] usb 3-1: unable to get BOS descriptor set
[ 1416.948608][ T1443] usb 7-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1416.952198][   T28] audit: type=1400 audit(1756545375.072:374): avc:  denied  { ioctl } for  pid=87 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=5713 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1416.962095][ T1443] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1416.986494][  T712] usb 3-1: config 13 has an invalid interface number: 86 but max is 0
[ 1417.002347][  T712] usb 3-1: config 13 has no interface number 0
[ 1417.008738][  T712] usb 3-1: config 13 interface 86 has no altsetting 0
[ 1417.027080][  T712] usb 3-1: New USB device found, idVendor=1b3d, idProduct=01df, bcdDevice=cd.0f
[ 1417.041887][ T1443] usb 7-1: config 0 descriptor??
[ 1417.046593][  T712] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1417.047084][T14081] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1417.066028][  T712] usb 3-1: Product: syz
[ 1417.081353][  T712] usb 3-1: Manufacturer: syz
[ 1417.091132][  T712] usb 3-1: SerialNumber: syz
[ 1417.096845][T12872] syz-executor: attempt to access beyond end of device
[ 1417.096845][T12872] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 1417.123169][T13442] syz-executor: attempt to access beyond end of device
[ 1417.123169][T13442] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1417.138165][T14094] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1417.158813][T14094] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1417.177018][T14094] device bridge_slave_0 entered promiscuous mode
[ 1417.196120][T14094] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1417.203280][T14094] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1417.210824][T14094] device bridge_slave_1 entered promiscuous mode
[ 1417.308310][T14074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3282'.
[ 1417.322465][T14102] random: crng reseeded on system resumption
[ 1417.350066][  T712] ftdi_sio 3-1:13.86: FTDI USB Serial Device converter detected
[ 1417.359241][  T712] ftdi_sio ttyUSB0: unknown device type: 0xcd0f
[ 1417.372929][  T712] usb 3-1: USB disconnect, device number 25
[ 1417.379944][  T712] ftdi_sio 3-1:13.86: device disconnected
[ 1417.386658][  T340] device bridge_slave_1 left promiscuous mode
[ 1417.392961][  T340] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1417.401825][  T340] device bridge_slave_0 left promiscuous mode
[ 1417.408353][  T340] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1417.417338][  T340] device veth1_macvtap left promiscuous mode
[ 1417.423660][  T340] device veth0_vlan left promiscuous mode
[ 1417.519722][ T1443] usb 7-1: string descriptor 0 read error: -71
[ 1417.527848][ T1443] usb 7-1: Cannot read MAC address
[ 1417.533348][ T1443] MOSCHIP usb-ethernet driver: probe of 7-1:0.0 failed with error -71
[ 1417.551372][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1417.565042][ T1443] usb 7-1: USB disconnect, device number 9
[ 1417.571284][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1417.578705][  T752] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[ 1417.588358][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1417.599981][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1417.608983][  T341] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1417.616117][  T341] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1417.623905][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1417.632373][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1417.642320][  T341] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1417.649369][  T341] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1417.657003][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1417.667854][T14113] FAULT_INJECTION: forcing a failure.
[ 1417.667854][T14113] name failslab, interval 1, probability 0, space 0, times 0
[ 1417.670703][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1417.680933][T14113] CPU: 0 PID: 14113 Comm: syz.1.3291 Not tainted syzkaller #0
[ 1417.695834][T14113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1417.698602][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1417.705905][T14113] Call Trace:
[ 1417.705914][T14113]  <TASK>
[ 1417.705923][T14113]  __dump_stack+0x21/0x24
[ 1417.705958][T14113]  dump_stack_lvl+0xee/0x150
[ 1417.722857][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1417.724210][T14113]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1417.729509][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1417.736873][T14113]  dump_stack+0x15/0x24
[ 1417.736908][T14113]  should_fail_ex+0x3d4/0x520
[ 1417.742839][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1417.749567][T14113]  __should_failslab+0xac/0xf0
[ 1417.754618][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1417.758386][T14113]  ? kvmalloc_node+0x294/0x480
[ 1417.767098][T14094] device veth0_vlan entered promiscuous mode
[ 1417.770341][T14113]  should_failslab+0x9/0x20
[ 1417.781538][  T752] usb 1-1: Using ep0 maxpacket: 16
[ 1417.782284][T14113]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1417.790290][  T752] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1417.792764][T14113]  ? kvmalloc_node+0x294/0x480
[ 1417.792800][T14113]  __kmalloc_node+0xa1/0x1e0
[ 1417.792829][T14113]  ? timer_update_keys+0xb0/0xb0
[ 1417.800412][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1417.803396][T14113]  kvmalloc_node+0x294/0x480
[ 1417.803431][T14113]  ? xas_start+0x317/0x3e0
[ 1417.816251][  T752] usb 1-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[ 1417.820948][T14113]  ? __cfi_kvmalloc_node+0x10/0x10
[ 1417.825938][  T752] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1417.830472][T14113]  ? __kasan_check_write+0x14/0x20
[ 1417.840410][T14094] device veth1_macvtap entered promiscuous mode
[ 1417.842971][T14113]  ? enqueue_timer+0x1b6/0x480
[ 1417.843006][T14113]  __kvm_mmu_topup_memory_cache+0x35e/0x500
[ 1417.859573][  T752] usb 1-1: config 0 descriptor??
[ 1417.861721][T14113]  ? __kasan_check_write+0x14/0x20
[ 1417.861760][T14113]  ? mutex_unlock+0x89/0x220
[ 1417.861785][T14113]  kvm_mmu_topup_memory_cache+0x20/0x30
[ 1417.911900][T14113]  kvm_mmu_load+0x9c/0x25a0
[ 1417.916427][T14113]  ? kvm_hv_setup_tsc_page+0x5ea/0xa70
[ 1417.922014][T14113]  ? queue_delayed_work_on+0x101/0x150
[ 1417.927489][T14113]  ? kvm_apic_has_interrupt+0x78f/0x7a0
[ 1417.933037][T14113]  vcpu_enter_guest+0x4958/0x6be0
[ 1417.938072][T14113]  ? __kasan_check_write+0x14/0x20
[ 1417.943219][T14113]  ? pvclock_gtod_update_fn+0x270/0x270
[ 1417.948865][T14113]  ? 0xffffffffa0004440
[ 1417.953026][T14113]  ? is_bpf_text_address+0x177/0x190
[ 1417.958321][T14113]  ? kernel_text_address+0xa0/0xd0
[ 1417.963448][T14113]  ? __kernel_text_address+0xd/0x30
[ 1417.968669][T14113]  ? unwind_get_return_address+0x4d/0x90
[ 1417.974304][T14113]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[ 1417.980503][T14113]  ? arch_stack_walk+0xfc/0x150
[ 1417.985366][T14113]  ? vmx_vcpu_pi_load+0x12d/0x810
[ 1417.990396][T14113]  ? stack_trace_save+0x98/0xe0
[ 1417.995255][T14113]  ? __cfi_vmx_vcpu_pi_load+0x10/0x10
[ 1418.000648][T14113]  ? __stack_depot_save+0x36/0x480
[ 1418.005762][T14113]  ? _parse_integer_limit+0x18a/0x1d0
[ 1418.011144][T14113]  ? do_vfs_ioctl+0xc36/0x1c80
[ 1418.015944][T14113]  ? __this_cpu_preempt_check+0x13/0x20
[ 1418.021521][T14113]  ? xfd_validate_state+0x70/0x150
[ 1418.026659][T14113]  ? __local_bh_enable_ip+0x58/0x80
[ 1418.031949][T14113]  ? fpu_swap_kvm_fpstate+0x4ef/0x5d0
[ 1418.037349][T14113]  ? fpu_swap_kvm_fpstate+0x81/0x5d0
[ 1418.042652][T14113]  kvm_arch_vcpu_ioctl_run+0xec4/0x1fa0
[ 1418.048225][T14113]  kvm_vcpu_ioctl+0x882/0xb70
[ 1418.052918][T14113]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[ 1418.058129][T14113]  ? selinux_file_ioctl+0x377/0x480
[ 1418.063338][T14113]  ? __cfi_selinux_file_ioctl+0x10/0x10
[ 1418.068921][T14113]  ? mutex_unlock+0x89/0x220
[ 1418.073523][T14113]  ? __cfi_mutex_unlock+0x10/0x10
[ 1418.078582][T14113]  ? __fget_files+0x2d5/0x330
[ 1418.083288][T14113]  ? security_file_ioctl+0x95/0xc0
[ 1418.088433][T14113]  ? __cfi_kvm_vcpu_ioctl+0x10/0x10
[ 1418.093662][T14113]  __se_sys_ioctl+0x12f/0x1b0
[ 1418.098370][T14113]  __x64_sys_ioctl+0x7b/0x90
[ 1418.102977][T14113]  x64_sys_call+0x58b/0x9a0
[ 1418.107492][T14113]  do_syscall_64+0x4c/0xa0
[ 1418.111912][T14113]  ? clear_bhb_loop+0x30/0x80
[ 1418.116597][T14113]  ? clear_bhb_loop+0x30/0x80
[ 1418.121284][T14113]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1418.127182][T14113] RIP: 0033:0x7f09b678ebe9
[ 1418.131600][T14113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1418.151216][T14113] RSP: 002b:00007f09b7697038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1418.159718][T14113] RAX: ffffffffffffffda RBX: 00007f09b69c5fa0 RCX: 00007f09b678ebe9
[ 1418.167710][T14113] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[ 1418.175683][T14113] RBP: 00007f09b7697090 R08: 0000000000000000 R09: 0000000000000000
[ 1418.183655][T14113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1418.191646][T14113] R13: 00007f09b69c6038 R14: 00007f09b69c5fa0 R15: 00007ffca3983198
[ 1418.199623][T14113]  </TASK>
[ 1418.203623][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1418.212449][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1418.224359][  T341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1418.267902][T14116] loop7: detected capacity change from 0 to 4096
[ 1418.284299][T14116] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1418.429259][  T752] dragonrise 0003:0079:0006.0038: item fetching failed at offset 4/5
[ 1418.438996][  T752] dragonrise 0003:0079:0006.0038: parse failed
[ 1418.445460][  T752] dragonrise: probe of 0003:0079:0006.0038 failed with error -22
[ 1418.601812][  T752] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[ 1418.718351][   T24] usb 1-1: USB disconnect, device number 18
[ 1418.802096][T14130] loop6: detected capacity change from 0 to 16
[ 1418.816241][T14130] erofs: (device loop6): mounted with root inode @ nid 36.
[ 1418.844422][T14130] erofs: (device loop6): erofs_fill_dentries: bogus dirent @ nid 36
[ 1418.901519][  T752] usb 3-1: Using ep0 maxpacket: 16
[ 1418.907232][  T752] usb 3-1: too many configurations: 15, using maximum allowed: 8
[ 1418.929888][  T752] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.07
[ 1418.943336][  T752] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1418.959758][  T752] usb 3-1: Product: syz
[ 1418.968227][  T752] usb 3-1: Manufacturer: syz
[ 1418.977152][  T752] usb 3-1: SerialNumber: syz
[ 1418.991308][  T752] r8152-cfgselector 3-1: config 0 descriptor??
[ 1419.148821][T14094] EXT4-fs (loop7): unmounting filesystem.
[ 1419.193955][T14137] loop6: detected capacity change from 0 to 512
[ 1419.204145][   T28] audit: type=1400 audit(1756545377.402:375): avc:  denied  { read write } for  pid=14140 comm="syz.7.3298" name="uhid" dev="devtmpfs" ino=267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[ 1419.243677][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.252117][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.259543][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.282562][   T28] audit: type=1400 audit(1756545377.432:376): avc:  denied  { open } for  pid=14140 comm="syz.7.3298" path="/dev/uhid" dev="devtmpfs" ino=267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[ 1419.310615][T14137] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1419.321865][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.329395][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.333842][T14137] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[ 1419.344861][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.344941][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.344965][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1419.353651][T14137] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 1419.374672][T14137] EXT4-fs error (device loop6): ext4_clear_blocks:883: inode #11: comm syz.6.3297: attempt to clear invalid blocks 1024 len 1
[ 1419.388536][T14137] EXT4-fs (loop6): Remounting filesystem read-only
[ 1419.396159][T14137] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.3297: bg 0: block 361: padding at end of block bitmap is not set
[ 1419.436362][T14144] overlayfs: missing 'lowerdir'
[ 1419.441679][   T28] audit: type=1400 audit(1756545377.632:377): avc:  denied  { mounton } for  pid=14138 comm="syz.0.3299" path="/syzcgroup/unified/syz0/file0" dev="cgroup2" ino=273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[ 1419.491913][T14137] EXT4-fs (loop6): Remounting filesystem read-only
[ 1419.498525][T14137] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem
[ 1419.508594][T14137] EXT4-fs (loop6): Remounting filesystem read-only
[ 1419.515721][T14137] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.3297: invalid indirect mapped block 1811939328 (level 0)
[ 1419.545108][  T752] r8152-cfgselector 3-1: Unknown version 0x0000
[ 1419.573010][T14137] EXT4-fs (loop6): Remounting filesystem read-only
[ 1419.579701][T14137] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.3297: invalid indirect mapped block 2185560079 (level 1)
[ 1419.600256][  T752] r8152-cfgselector 3-1: Unknown version 0x0000
[ 1419.610918][  T752] r8152-cfgselector 3-1: USB disconnect, device number 26
[ 1419.620366][T14137] EXT4-fs (loop6): Remounting filesystem read-only
[ 1419.635547][T14137] EXT4-fs (loop6): 1 truncate cleaned up
[ 1419.642375][T14137] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1420.091115][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.098931][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.150933][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.309154][   T28] audit: type=1400 audit(1756545378.502:378): avc:  denied  { load_policy } for  pid=14147 comm="syz.2.3300" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1420.334962][T14148] SELinux: failed to load policy
[ 1420.382326][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.391984][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.399429][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.460601][T14152] loop2: detected capacity change from 0 to 512
[ 1420.468730][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.469234][T14152] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349)
[ 1420.476590][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.487346][T14152] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002]
[ 1420.493230][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.501664][T14152] System zones: 1-12
[ 1420.508582][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.513460][T14152] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1420.519881][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.526294][T14152] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.3302: Inode bitmap for bg 0 marked uninitialized
[ 1420.534177][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.546552][T14152] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1420.554128][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.569889][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.577539][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.585361][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593296][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593323][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593344][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593365][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593387][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593667][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593692][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593713][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593737][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593761][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593784][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593806][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593829][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.593851][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594154][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594180][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594203][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594226][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594248][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594271][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594294][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594317][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594339][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594362][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594392][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594414][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594436][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594459][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594482][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594503][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594526][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594548][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.594570][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.602213][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.846308][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.846336][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.846360][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.868755][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.876262][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.883899][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.883927][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898782][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898806][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898828][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898856][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898878][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898904][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898927][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898949][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898972][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.898995][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899016][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899045][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899068][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899090][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899112][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899135][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899157][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.899177][  T712] hid-generic 0000:0002:0000.0039: unknown main item tag 0x0
[ 1420.904770][  T712] hid-generic 0000:0002:0000.0039: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1420.936320][T10712] EXT4-fs (loop6): unmounting filesystem.
[ 1420.963793][T14152] SELinux: failed to load policy
[ 1421.130028][   T28] audit: type=1400 audit(1756545379.302:379): avc:  denied  { setopt } for  pid=14162 comm="syz.1.3304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1421.189505][T12753] EXT4-fs (loop2): unmounting filesystem.
[ 1421.190544][ T8597] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 1421.202891][  T353] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[ 1421.330440][T14174] loop6: detected capacity change from 0 to 256
[ 1421.339448][T14174] exfat: Unknown parameter 'iochar'
[ 1421.442059][   T24] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[ 1421.571617][  T752] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 1421.623504][   T24] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1421.633139][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1421.667115][   T24] usb 2-1: config 0 descriptor??
[ 1421.763564][  T752] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1421.775593][  T752] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1421.787508][  T752] usb 3-1: New USB device found, idVendor=07c0, idProduct=1524, bcdDevice= 0.00
[ 1421.798056][  T752] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1421.836805][  T752] usb 3-1: config 0 descriptor??
[ 1422.135372][   T24] usb 2-1: string descriptor 0 read error: -71
[ 1422.168976][   T24] usb 2-1: Cannot read MAC address
[ 1422.175662][   T24] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[ 1422.261560][T13653] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1422.287039][T14166] netlink: 9 bytes leftover after parsing attributes in process `syz.6.3305'.
[ 1422.296639][T14166] device gretap0 entered promiscuous mode
[ 1422.304973][   T24] usb 2-1: USB disconnect, device number 29
[ 1422.323115][   T19] usb 3-1: USB disconnect, device number 27
[ 1422.366823][T14176] loop7: detected capacity change from 0 to 4096
[ 1422.378099][T14176] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1422.888955][T14184] loop6: detected capacity change from 0 to 8192
[ 1423.892445][  T102]  loop6: p1 < > p3 < p5 > p4
[ 1423.980618][ T8597] usb 8-1: device not accepting address 2, error -71
[ 1423.987899][  T353] usb 1-1: device not accepting address 19, error -71
[ 1423.998594][  T102] loop6: partition table partially beyond EOD, truncated
[ 1424.016496][  T102] loop6: p1 start 4294967040 is beyond EOD, truncated
[ 1424.076802][T14094] EXT4-fs (loop7): unmounting filesystem.
[ 1424.092790][T13736] I/O error, dev loop6, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1424.190904][T13776] udevd[13776]: inotify_add_watch(7, /dev/loop6p5, 10) failed: No such file or directory
[ 1424.202349][T13736] udevd[13736]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[ 1424.217244][T13653] udevd[13653]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[ 1424.299918][T14206] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3320'.
[ 1424.321818][T14207] overlayfs: failed to resolve './file1': -2
[ 1424.351646][T14202] syz.2.3318 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1424.578633][T14213] SELinux: failed to load policy
[ 1424.599405][T14215] FAULT_INJECTION: forcing a failure.
[ 1424.599405][T14215] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1424.612640][T14215] CPU: 0 PID: 14215 Comm: syz.6.3322 Not tainted syzkaller #0
[ 1424.620156][T14215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1424.630322][T14215] Call Trace:
[ 1424.633723][T14215]  <TASK>
[ 1424.636663][T14215]  __dump_stack+0x21/0x24
[ 1424.641018][T14215]  dump_stack_lvl+0xee/0x150
[ 1424.645627][T14215]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1424.650696][T14215]  dump_stack+0x15/0x24
[ 1424.654877][T14215]  should_fail_ex+0x3d4/0x520
[ 1424.659583][T14215]  should_fail+0xb/0x10
[ 1424.663794][T14215]  should_fail_usercopy+0x1a/0x20
[ 1424.668837][T14215]  _copy_from_user+0x1e/0xc0
[ 1424.673442][T14215]  __sys_bpf+0x277/0x780
[ 1424.677716][T14215]  ? bpf_link_show_fdinfo+0x320/0x320
[ 1424.683103][T14215]  ? __cfi_ksys_write+0x10/0x10
[ 1424.687961][T14215]  ? do_user_addr_fault+0x9ac/0x1050
[ 1424.693255][T14215]  ? __bpf_trace_sys_enter+0x62/0x70
[ 1424.698542][T14215]  __x64_sys_bpf+0x7c/0x90
[ 1424.703002][T14215]  x64_sys_call+0x488/0x9a0
[ 1424.707515][T14215]  do_syscall_64+0x4c/0xa0
[ 1424.711928][T14215]  ? clear_bhb_loop+0x30/0x80
[ 1424.716608][T14215]  ? clear_bhb_loop+0x30/0x80
[ 1424.721331][T14215]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1424.727224][T14215] RIP: 0033:0x7fbf5098ebe9
[ 1424.731654][T14215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1424.751262][T14215] RSP: 002b:00007fbf5182b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1424.759683][T14215] RAX: ffffffffffffffda RBX: 00007fbf50bc5fa0 RCX: 00007fbf5098ebe9
[ 1424.767672][T14215] RDX: 0000000000000054 RSI: 000020000000e000 RDI: 0000000000000005
[ 1424.775661][T14215] RBP: 00007fbf5182b090 R08: 0000000000000000 R09: 0000000000000000
[ 1424.783649][T14215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1424.791690][T14215] R13: 00007fbf50bc6038 R14: 00007fbf50bc5fa0 R15: 00007ffc75ce5e88
[ 1424.799691][T14215]  </TASK>
[ 1424.820246][  T353] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[ 1424.992514][T14222] netem: change failed
[ 1425.012139][T14224] FAULT_INJECTION: forcing a failure.
[ 1425.012139][T14224] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1425.012755][  T353] usb 1-1: config 1 has an invalid descriptor of length 68, skipping remainder of the config
[ 1425.036395][  T353] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1425.036748][T14224] CPU: 1 PID: 14224 Comm: syz.7.3326 Not tainted syzkaller #0
[ 1425.046283][  T353] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1425.052747][T14224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1425.052763][T14224] Call Trace:
[ 1425.052769][T14224]  <TASK>
[ 1425.052777][T14224]  __dump_stack+0x21/0x24
[ 1425.052813][T14224]  dump_stack_lvl+0xee/0x150
[ 1425.076110][  T353] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1425.079149][T14224]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1425.082231][  T353] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1425.086438][T14224]  ? _parse_integer+0x2a/0x40
[ 1425.091080][  T353] usb 1-1: Product: syz
[ 1425.100056][T14224]  dump_stack+0x15/0x24
[ 1425.100093][T14224]  should_fail_ex+0x3d4/0x520
[ 1425.100119][T14224]  should_fail+0xb/0x10
[ 1425.100143][T14224]  should_fail_usercopy+0x1a/0x20
[ 1425.105991][  T353] usb 1-1: Manufacturer: syz
[ 1425.113748][T14224]  _copy_from_user+0x1e/0xc0
[ 1425.113779][T14224]  ___sys_sendmsg+0x155/0x290
[ 1425.113803][T14224]  ? __sys_sendmsg+0x270/0x270
[ 1425.119009][  T353] usb 1-1: SerialNumber: syz
[ 1425.122741][T14224]  ? __kasan_check_write+0x14/0x20
[ 1425.122788][T14224]  ? proc_fail_nth_write+0x17a/0x1f0
[ 1425.174435][T14224]  ? vfs_write+0x9d6/0xca0
[ 1425.178900][T14224]  ? __fdget+0x19c/0x220
[ 1425.183161][T14224]  __x64_sys_sendmsg+0x1f0/0x2c0
[ 1425.188122][T14224]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[ 1425.193731][T14224]  ? fpregs_assert_state_consistent+0xb1/0xe0
[ 1425.199821][T14224]  x64_sys_call+0x171/0x9a0
[ 1425.204350][T14224]  do_syscall_64+0x4c/0xa0
[ 1425.208807][T14224]  ? clear_bhb_loop+0x30/0x80
[ 1425.213494][T14224]  ? clear_bhb_loop+0x30/0x80
[ 1425.218191][T14224]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1425.224098][T14224] RIP: 0033:0x7f309338ebe9
[ 1425.228525][T14224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1425.248167][T14224] RSP: 002b:00007f30941f9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1425.256595][T14224] RAX: ffffffffffffffda RBX: 00007f30935c5fa0 RCX: 00007f309338ebe9
[ 1425.264686][T14224] RDX: 0000000000008840 RSI: 0000200000000740 RDI: 0000000000000006
[ 1425.272675][T14224] RBP: 00007f30941f9090 R08: 0000000000000000 R09: 0000000000000000
[ 1425.280667][T14224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1425.288649][T14224] R13: 00007f30935c6038 R14: 00007f30935c5fa0 R15: 00007fffb5dfc308
[ 1425.296687][T14224]  </TASK>
[ 1425.341590][   T19] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 1425.376599][T14233] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[ 1425.514861][T14236] loop0: detected capacity change from 0 to 512
[ 1425.548842][T14236] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1425.583868][T14237] loop1: detected capacity change from 0 to 256
[ 1425.914533][T14237] loop1: detected capacity change from 0 to 512
[ 1426.237217][   T19] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1426.370578][T14236] EXT4-fs (loop0): 1 truncate cleaned up
[ 1426.376428][T14236] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1426.639332][T14237] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.3330: inode #1: comm syz.1.3330: iget: illegal inode #
[ 1426.667258][T14237] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.3330: error while reading EA inode 1 err=-117
[ 1426.685894][T14237] EXT4-fs (loop1): 1 orphan inode deleted
[ 1426.691833][T14237] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1426.728035][T14237] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[ 1426.739556][   T28] audit: type=1400 audit(1756545384.942:380): avc:  denied  { relabelto } for  pid=14230 comm="syz.1.3330" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:hwdata_t:s0"
[ 1427.172229][   T19] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1427.186976][T14243] loop6: detected capacity change from 0 to 16
[ 1427.277141][   T19] usb 3-1: config 0 descriptor??
[ 1429.712719][T14243] erofs: (device loop6): erofs_read_superblock: cannot read erofs superblock
[ 1429.824901][T12872] EXT4-fs (loop1): unmounting filesystem.
[ 1430.032631][T14250] binder_alloc: 14248: binder_alloc_buf, no vma
[ 1430.151560][   T19] usb 3-1: can't set config #0, error -71
[ 1430.158053][   T19] usb 3-1: USB disconnect, device number 28
[ 1430.172677][  T353] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[ 1430.180037][  T353] cdc_ncm 1-1:1.0: bind() failure
[ 1430.186883][T14252] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3332'.
[ 1430.202601][  T353] usb 1-1: USB disconnect, device number 20
[ 1430.210018][T13442] EXT4-fs (loop0): unmounting filesystem.
[ 1430.638323][T14261] loop7: detected capacity change from 0 to 512
[ 1432.596343][T14264] overlayfs: missing 'lowerdir'
[ 1433.334059][T14265] loop2: detected capacity change from 0 to 512
[ 1435.079531][T14261] EXT4-fs warning (device loop7): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop7.
[ 1435.190134][T14265] EXT4-fs (loop2): 1 orphan inode deleted
[ 1435.196035][T14265] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1435.206378][T14265] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1435.281570][T14265] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.3337: iget: bad i_size value: 360287970189639690
[ 1435.294772][T14265] overlayfs: failed to resolve './file1': -117
[ 1435.327893][   T28] audit: type=1400 audit(1756545393.522:381): avc:  denied  { read } for  pid=14273 comm="syz.0.3339" path="socket:[54296]" dev="sockfs" ino=54296 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1435.528532][T12753] EXT4-fs (loop2): unmounting filesystem.
[ 1435.599005][T14280] ------------[ cut here ]------------
[ 1435.599253][T14272] loop6: detected capacity change from 0 to 40427
[ 1435.604581][T14280] WARNING: CPU: 0 PID: 14280 at mm/page_alloc.c:5831 __alloc_pages+0x272/0x450
[ 1435.619967][T14280] Modules linked in:
[ 1435.623909][T14280] CPU: 0 PID: 14280 Comm: syz.1.3341 Not tainted syzkaller #0
[ 1435.625405][T14272] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[ 1435.631389][T14280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1435.631405][T14280] RIP: 0010:__alloc_pages+0x272/0x450
[ 1435.651285][T14272] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[ 1435.654689][T14280] Code: 0c 25 28 00 00 00 48 3b 8c 24 c0 00 00 00 0f 85 a3 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 c6 05 f2 88 bf 05 01 <0f> 0b eb a5 a9 00 00 08 00 48 8b 54 24 08 75 17 44 89 f6 81 e6 7f
[ 1435.654711][T14280] RSP: 0018:ffffc90004427680 EFLAGS: 00010246
[ 1435.664600][T14272] F2FS-fs (loop6): invalid crc value
[ 1435.682573][T14280] 
[ 1435.682583][T14280] RAX: ffffc90004427600 RBX: 000000000000000b RCX: 0000000000000000
[ 1435.704324][T14280] RDX: 0000000000000018 RSI: 0000000000000000 RDI: ffffc90004427708
[ 1435.712336][T14280] RBP: ffffc90004427788 R08: dffffc0000000000 R09: ffffc900044276f0
[ 1435.720600][T14280] R10: fffff52000884ee1 R11: 1ffff92000884ede R12: dffffc0000000000
[ 1435.726721][T14289] loop7: detected capacity change from 0 to 8192
[ 1435.728668][T14280] R13: 0000000000000000 R14: 0000000000040dc0 R15: 1ffff92000884ed4
[ 1435.743072][T14280] FS:  00007f09b76976c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 1435.752095][T14280] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1435.758711][T14280] CR2: 000020000000f000 CR3: 0000000115bc2000 CR4: 00000000003506b0
[ 1435.766762][T14280] Call Trace:
[ 1435.770081][T14280]  <TASK>
[ 1435.773077][T14280]  ? __cfi___alloc_pages+0x10/0x10
[ 1435.778334][T14280]  __kmalloc_large_node+0xa1/0x1c0
[ 1435.783560][T14280]  ? hashtab_init+0xcd/0x160
[ 1435.788213][T14280]  __kmalloc+0xe0/0x1e0
[ 1435.792463][T14280]  hashtab_init+0xcd/0x160
[ 1435.796926][T14280]  symtab_init+0x40/0x60
[ 1435.801216][T14280]  common_read+0x218/0x620
[ 1435.805846][T14280]  ? __cfi_common_read+0x10/0x10
[ 1435.809734][T14272] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1435.810843][T14280]  policydb_read+0xb0f/0x25e0
[ 1435.821838][T14280]  ? __cfi_policydb_read+0x10/0x10
[ 1435.826999][T14280]  ? __kasan_kmalloc+0x95/0xb0
[ 1435.831821][T14280]  ? security_load_policy+0x118/0xea0
[ 1435.837270][T14280]  ? kmalloc_trace+0x40/0xb0
[ 1435.841955][T14280]  security_load_policy+0x153/0xea0
[ 1435.847198][T14280]  ? irqentry_exit+0x37/0x40
[ 1435.851859][T14280]  ? exc_page_fault+0x5e/0xb0
[ 1435.855707][T14272] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[ 1435.856581][T14280]  ? asm_exc_page_fault+0x27/0x30
[ 1435.863814][T14272] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1435.868663][T14280]  ? __cfi_security_load_policy+0x10/0x10
[ 1435.881938][T14280]  ? copy_user_enhanced_fast_string+0xa/0x40
[ 1435.888002][T14280]  sel_write_load+0x36f/0x5e0
[ 1435.892784][T14280]  ? __cfi_sel_write_load+0x10/0x10
[ 1435.898052][T14280]  ? security_file_permission+0x94/0xb0
[ 1435.903712][T14280]  ? __cfi_sel_write_load+0x10/0x10
[ 1435.908982][T14280]  vfs_write+0x40c/0xca0
[ 1435.913332][T14280]  ? __cfi_vfs_write+0x10/0x10
[ 1435.918211][T14280]  ? __kasan_check_write+0x14/0x20
[ 1435.921934][   T28] audit: type=1400 audit(1756545394.122:382): avc:  denied  { setattr } for  pid=14270 comm="syz.6.3338" name="file0" dev="loop6" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1435.923581][T14280]  ? mutex_lock+0x8d/0x1a0
[ 1435.948893][T14272] 9pnet_fd: Insufficient options for proto=fd
[ 1435.949929][T14280]  ? __cfi_mutex_lock+0x10/0x10
[ 1435.960991][T14280]  ? __fdget_pos+0x2cd/0x380
[ 1435.965692][T14280]  ? ksys_write+0x71/0x240
[ 1435.970178][T14280]  ksys_write+0x140/0x240
[ 1435.974598][T14280]  ? __cfi_ksys_write+0x10/0x10
[ 1435.979503][T14280]  ? fpregs_restore_userregs+0x128/0x260
[ 1435.985195][T14280]  __x64_sys_write+0x7b/0x90
[ 1435.989835][T14280]  x64_sys_call+0x27b/0x9a0
[ 1435.994407][T14280]  do_syscall_64+0x4c/0xa0
[ 1435.998936][T14280]  ? clear_bhb_loop+0x30/0x80
[ 1436.003706][T14280]  ? clear_bhb_loop+0x30/0x80
[ 1436.008425][T14280]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1436.014398][T14280] RIP: 0033:0x7f09b678ebe9
[ 1436.018856][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1436.038572][T14280] RSP: 002b:00007f09b7697038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1436.047064][T14280] RAX: ffffffffffffffda RBX: 00007f09b69c5fa0 RCX: 00007f09b678ebe9
[ 1436.055118][T14280] RDX: 000000000000ffbd RSI: 0000200000000000 RDI: 0000000000000006
[ 1436.063147][T14280] RBP: 00007f09b6811e19 R08: 0000000000000000 R09: 0000000000000000
[ 1436.071164][T14280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1436.079206][T14280] R13: 00007f09b69c6038 R14: 00007f09b69c5fa0 R15: 00007ffca3983198
[ 1436.087247][T14280]  </TASK>
[ 1436.090285][T14280] ---[ end trace 0000000000000000 ]---
[ 1436.096996][T14280] SELinux: failed to load policy
[ 1436.137760][T14293] loop2: detected capacity change from 0 to 16
[ 1436.145252][T14293] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1436.266887][T14301] loop6: detected capacity change from 0 to 4096
[ 1436.270364][T14303] loop0: detected capacity change from 0 to 512
[ 1436.285583][T14303] fscrypt (loop0, inode 2): Error -61 getting encryption context
[ 1436.286697][T14301] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1436.293752][T14303] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[ 1436.319676][T14303] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #13: comm syz.0.3348: iget: bad i_size value: 12154757448730
[ 1436.332699][T14303] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.3348: couldn't read orphan inode 13 (err -117)
[ 1436.344873][T14303] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1436.369373][   T28] audit: type=1400 audit(1756545394.562:383): avc:  denied  { setopt } for  pid=14302 comm="syz.0.3348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1436.390042][   T28] audit: type=1400 audit(1756545394.582:384): avc:  denied  { bind } for  pid=14302 comm="syz.0.3348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1436.392907][T14303] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3348'.
[ 1436.460984][T14303] fscrypt (loop0, inode 2): Error -61 getting encryption context
[ 1436.511759][  T353] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 1436.539842][T13442] EXT4-fs (loop0): unmounting filesystem.
[ 1436.768383][T14316] overlayfs: missing 'lowerdir'
[ 1438.891290][T14318] loop7: detected capacity change from 0 to 8192
[ 1441.639167][T10712] EXT4-fs (loop6): unmounting filesystem.
[ 1441.641955][T14325] loop2: detected capacity change from 0 to 512
[ 1441.661784][T14325] EXT4-fs: Ignoring removed bh option
[ 1441.664071][T13736] I/O error, dev loop7, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1441.667230][T14325] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1441.767322][T14331] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1441.787584][T14331] SELinux: failed to load policy
[ 1441.813013][T14325] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[ 1441.840681][T14342] loop1: detected capacity change from 0 to 512
[ 1441.862043][T14342] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1441.871713][T14339] loop0: detected capacity change from 0 to 8192
[ 1441.878412][T14325] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1441.879160][T14347] loop7: detected capacity change from 0 to 256
[ 1441.894416][T14347] exfat: Deprecated parameter 'utf8'
[ 1441.899759][T14347] exfat: Deprecated parameter 'namecase'
[ 1441.906151][T14347] exfat: Unknown parameter 'umask<00000000000000000200004'
[ 1441.925227][T14325] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1441.942507][T14325] Quota error (device loop2): do_insert_tree: Free block already used in tree: block 4
[ 1441.946599][T14342] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1441.952307][T14325] Quota error (device loop2): qtree_write_dquot: Error -5 occurred while creating quota
[ 1441.973549][T14325] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.3354: Failed to acquire dquot type 1
[ 1441.980666][T14339] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 2068)
[ 1441.995799][T14325] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.3354: Invalid block bitmap block 0 in block_group 0
[ 1441.996002][T14325] Quota error (device loop2): write_blk: dquota write failed
[ 1441.996045][T14325] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[ 1441.996069][T14325] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.3354: Failed to acquire dquot type 1
[ 1441.996329][T14325] Quota error (device loop2): write_blk: dquota write failed
[ 1441.996373][T14325] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[ 1441.996396][T14325] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.3354: Failed to acquire dquot type 1
[ 1441.996561][T14325] EXT4-fs (loop2): 1 orphan inode deleted
[ 1441.996727][T14325] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1442.004930][   T28] audit: type=1400 audit(1756545400.202:385): avc:  denied  { read } for  pid=14346 comm="syz.7.3363" path="socket:[54399]" dev="sockfs" ino=54399 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 1442.043384][T14342] EXT4-fs (loop1): can't mount with journal_async_commit, fs mounted w/o journal
[ 1442.053355][T14339] FAT-fs (loop0): Filesystem has been set read-only
[ 1442.061771][T14354] netlink: 'syz.0.3359': attribute type 1 has an invalid length.
[ 1442.072085][   T28] audit: type=1400 audit(1756545400.262:386): avc:  denied  { write } for  pid=14338 comm="syz.0.3359" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1442.117694][  T353] usb 3-1: device not accepting address 29, error -71
[ 1442.163569][   T28] audit: type=1400 audit(1756545400.262:387): avc:  denied  { open } for  pid=14338 comm="syz.0.3359" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1442.267974][T13442] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1442.416885][T13442] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1442.551650][ T1443] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[ 1442.894293][T12753] EXT4-fs (loop2): unmounting filesystem.
[ 1442.900438][ T1443] usb 7-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1442.923015][ T1443] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1442.932909][ T1443] usb 7-1: config 0 descriptor??
[ 1442.943405][   T28] audit: type=1400 audit(1756545401.142:388): avc:  denied  { bind } for  pid=14364 comm="syz.2.3368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1443.101012][T14369] loop7: detected capacity change from 0 to 8192
[ 1443.197945][T14378] loop1: detected capacity change from 0 to 1024
[ 1443.211965][T14378] EXT4-fs: Ignoring removed i_version option
[ 1443.232859][T14378] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1443.245400][T14372] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1443.253202][T14378] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1443.253356][T14372] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1443.275316][T14372] device bridge_slave_0 entered promiscuous mode
[ 1443.286415][T14372] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1443.294369][T14372] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1443.307497][T14372] device bridge_slave_1 entered promiscuous mode
[ 1443.326210][T12872] EXT4-fs (loop1): unmounting filesystem.
[ 1443.409589][T14386] loop2: detected capacity change from 0 to 512
[ 1443.416222][T14386] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1443.445307][T14388] FAULT_INJECTION: forcing a failure.
[ 1443.445307][T14388] name failslab, interval 1, probability 0, space 0, times 0
[ 1443.464315][T14386] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[ 1443.484712][    T8] device bridge_slave_1 left promiscuous mode
[ 1443.493034][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1443.508648][T14388] CPU: 0 PID: 14388 Comm: syz.1.3374 Tainted: G        W          syzkaller #0
[ 1443.517636][T14388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1443.527883][T14388] Call Trace:
[ 1443.531177][T14388]  <TASK>
[ 1443.534118][T14388]  __dump_stack+0x21/0x24
[ 1443.538478][T14388]  dump_stack_lvl+0xee/0x150
[ 1443.543087][T14388]  ? __cfi_dump_stack_lvl+0x8/0x8
[ 1443.548139][T14388]  dump_stack+0x15/0x24
[ 1443.552319][T14388]  should_fail_ex+0x3d4/0x520
[ 1443.557020][T14388]  __should_failslab+0xac/0xf0
[ 1443.561854][T14388]  ? tracepoint_probe_unregister+0x1e6/0x8b0
[ 1443.567858][T14388]  should_failslab+0x9/0x20
[ 1443.572398][T14388]  __kmem_cache_alloc_node+0x3d/0x2c0
[ 1443.577801][T14388]  ? __cfi_mutex_lock+0x10/0x10
[ 1443.582746][T14388]  ? delete_node+0x2f4/0xa60
[ 1443.587358][T14388]  ? tracepoint_probe_unregister+0x1e6/0x8b0
[ 1443.593354][T14388]  __kmalloc+0xa1/0x1e0
[ 1443.597532][T14388]  ? __cfi___bpf_trace_mm_lru_insertion+0x10/0x10
[ 1443.603968][T14388]  tracepoint_probe_unregister+0x1e6/0x8b0
[ 1443.609804][T14388]  bpf_probe_unregister+0x61/0x70
[ 1443.614857][T14388]  bpf_raw_tp_link_release+0x63/0x90
[ 1443.620168][T14388]  bpf_link_free+0x13a/0x390
[ 1443.624782][T14388]  ? bpf_link_put_deferred+0x20/0x20
[ 1443.630092][T14388]  bpf_link_release+0x15f/0x170
[ 1443.634962][T14388]  ? __cfi_bpf_link_release+0x10/0x10
[ 1443.640349][T14388]  __fput+0x1fc/0x8f0
[ 1443.644438][T14388]  ____fput+0x15/0x20
[ 1443.648439][T14388]  task_work_run+0x1db/0x240
[ 1443.653052][T14388]  ? __cfi_task_work_run+0x10/0x10
[ 1443.658179][T14388]  ? filp_close+0x111/0x160
[ 1443.662702][T14388]  exit_to_user_mode_loop+0x9b/0xb0
[ 1443.668013][T14388]  exit_to_user_mode_prepare+0x5a/0xa0
[ 1443.673496][T14388]  syscall_exit_to_user_mode+0x1a/0x30
[ 1443.678979][T14388]  do_syscall_64+0x58/0xa0
[ 1443.683413][T14388]  ? clear_bhb_loop+0x30/0x80
[ 1443.688112][T14388]  ? clear_bhb_loop+0x30/0x80
[ 1443.692890][T14388]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1443.698806][T14388] RIP: 0033:0x7f09b678ebe9
[ 1443.703228][T14388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1443.722844][T14388] RSP: 002b:00007f09b7697038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1443.731275][T14388] RAX: 0000000000000000 RBX: 00007f09b69c5fa0 RCX: 00007f09b678ebe9
[ 1443.739263][T14388] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[ 1443.747251][T14388] RBP: 00007f09b7697090 R08: 0000000000000000 R09: 0000000000000000
[ 1443.755243][T14388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1443.763239][T14388] R13: 00007f09b69c6038 R14: 00007f09b69c5fa0 R15: 00007ffca3983198
[ 1443.771848][T14388]  </TASK>
[ 1443.787829][    T8] device bridge_slave_0 left promiscuous mode
[ 1443.794088][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1443.802965][    T8] device veth1_macvtap left promiscuous mode
[ 1443.809939][    T8] device veth0_vlan left promiscuous mode
[ 1443.810353][T14381] CFI failure at __traceiter_mm_lru_insertion+0x75/0xc0 (target: tp_stub_func+0x0/0x10; expected type: 0x1afd09c9)
[ 1443.827761][T14381] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 1443.833833][T14381] CPU: 1 PID: 14381 Comm: syz.2.3368 Tainted: G        W          syzkaller #0
[ 1443.842766][T14381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1443.852818][T14381] RIP: 0010:__traceiter_mm_lru_insertion+0x75/0xc0
[ 1443.859421][T14381] Code: 49 8d 7e 08 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 8e cc 16 00 49 8b 7f 08 48 89 de 41 ba 37 f6 02 e5 45 03 55 fc 74 02 <0f> 0b 41 ff d5 49 83 c6 18 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74
[ 1443.882245][T14381] RSP: 0018:ffffc90000b770f8 EFLAGS: 00010093
[ 1443.888329][T14381] RAX: 1ffff110238c8493 RBX: ffffea0005161980 RCX: 0000000000080000
[ 1443.896306][T14381] RDX: ffffc9000f9d1000 RSI: ffffea0005161980 RDI: ffffc90000803000
[ 1443.904733][T14381] RBP: ffffc90000b77120 R08: dffffc0000000000 R09: fffffbfff0ee4b3e
[ 1443.912734][T14381] R10: 000000008a435d43 R11: 1ffffffff0ee4b3d R12: dffffc0000000000
[ 1443.920819][T14381] R13: ffffffff817125c0 R14: ffff88811c642490 R15: ffff88811c642490
[ 1443.928816][T14381] FS:  00007f154d05b6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1443.938053][T14381] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1443.944645][T14381] CR2: 0000200000c52030 CR3: 000000012f90c000 CR4: 00000000003506a0
[ 1443.952625][T14381] Call Trace:
[ 1443.955910][T14381]  <TASK>
[ 1443.958848][T14381]  lru_add_fn+0x616/0x660
[ 1443.963201][T14381]  folio_batch_move_lru+0x282/0x470
[ 1443.968421][T14381]  ? __cfi_lru_add_fn+0x10/0x10
[ 1443.973286][T14381]  ? lru_add_drain_cpu+0x4b0/0x4b0
[ 1443.978410][T14381]  ? memcg_rstat_updated+0x56/0x110
[ 1443.983658][T14381]  ? __mod_memcg_lruvec_state+0xd4/0x110
[ 1443.989307][T14381]  folio_add_lru+0x21c/0x390
[ 1443.993915][T14381]  folio_add_lru_vma+0x62/0x80
[ 1443.998693][T14381]  lru_cache_add_inactive_or_unevictable+0x5d/0x80
[ 1444.005207][T14381]  wp_page_copy+0xd3d/0x15b0
[ 1444.009806][T14381]  ? fault_dirty_shared_page+0x310/0x310
[ 1444.015466][T14381]  ? vm_normal_page+0x1eb/0x200
[ 1444.020328][T14381]  do_wp_page+0x9f2/0xfc0
[ 1444.024669][T14381]  handle_mm_fault+0x10e4/0x2640
[ 1444.029616][T14381]  ? __kasan_check_write+0x14/0x20
[ 1444.034739][T14381]  ? __cfi_handle_mm_fault+0x10/0x10
[ 1444.040030][T14381]  ? down_read_trylock+0x273/0x640
[ 1444.045160][T14381]  ? refcount_dec_and_test+0x53/0x80
[ 1444.050455][T14381]  ? consume_skb+0xd4/0x1f0
[ 1444.054969][T14381]  ? lock_mm_and_find_vma+0x9e/0x320
[ 1444.060276][T14381]  ? do_user_addr_fault+0x2ee/0x1050
[ 1444.065587][T14381]  do_user_addr_fault+0x63b/0x1050
[ 1444.070726][T14381]  exc_page_fault+0x51/0xb0
[ 1444.075249][T14381]  asm_exc_page_fault+0x27/0x30
[ 1444.080200][T14381] RIP: 0010:__put_user_nocheck_4+0x3/0x11
[ 1444.085947][T14381] Code: 00 00 48 39 d9 73 54 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 90 90 90 90 90 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 48 bb f9 ef ff ff ff 7f
[ 1444.105558][T14381] RSP: 0018:ffffc90000b778b8 EFLAGS: 00050202
[ 1444.111631][T14381] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000200000c52030
[ 1444.119603][T14381] RDX: ffff888132118000 RSI: 0000000000000002 RDI: 00000000ffffffff
[ 1444.127579][T14381] RBP: ffffc90000b77a50 R08: dffffc0000000000 R09: fffff5200016eecd
[ 1444.135560][T14381] R10: fffff5200016eecd R11: 1ffff9200016eecc R12: dffffc0000000000
[ 1444.143544][T14381] R13: 0000200000c52000 R14: 0000000000000000 R15: 0000000000000002
[ 1444.151531][T14381]  ? ____sys_recvmsg+0x375/0x590
[ 1444.156485][T14381]  ? __sys_recvmsg_sock+0x50/0x50
[ 1444.161603][T14381]  ? import_iovec+0x7c/0xb0
[ 1444.166115][T14381]  ___sys_recvmsg+0x1b2/0x510
[ 1444.170809][T14381]  ? __sys_recvmsg+0x270/0x270
[ 1444.175574][T14381]  ? futex_wait+0x47c/0x750
[ 1444.180081][T14381]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 1444.186269][T14381]  ? do_recvmmsg+0x32c/0x7a0
[ 1444.190867][T14381]  do_recvmmsg+0x359/0x7a0
[ 1444.195290][T14381]  ? __sys_recvmmsg+0x280/0x280
[ 1444.200140][T14381]  ? do_futex+0x2dc/0x420
[ 1444.204474][T14381]  __x64_sys_recvmmsg+0x18d/0x240
[ 1444.209504][T14381]  ? __cfi___x64_sys_recvmmsg+0x10/0x10
[ 1444.215062][T14381]  ? fpregs_restore_userregs+0x128/0x260
[ 1444.220740][T14381]  ? switch_fpu_return+0xe/0x10
[ 1444.225604][T14381]  x64_sys_call+0x3e7/0x9a0
[ 1444.230118][T14381]  do_syscall_64+0x4c/0xa0
[ 1444.234539][T14381]  ? clear_bhb_loop+0x30/0x80
[ 1444.239233][T14381]  ? clear_bhb_loop+0x30/0x80
[ 1444.243944][T14381]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1444.249876][T14381] RIP: 0033:0x7f154c18ebe9
[ 1444.254302][T14381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1444.273919][T14381] RSP: 002b:00007f154d05b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1444.282341][T14381] RAX: ffffffffffffffda RBX: 00007f154c3c6090 RCX: 00007f154c18ebe9
[ 1444.290315][T14381] RDX: 03fffffffffffeda RSI: 00002000000000c0 RDI: 0000000000000003
[ 1444.298285][T14381] RBP: 00007f154c211e19 R08: 0000000000000000 R09: 0000000000000000
[ 1444.306256][T14381] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1444.314230][T14381] R13: 00007f154c3c6128 R14: 00007f154c3c6090 R15: 00007ffd350999d8
[ 1444.322209][T14381]  </TASK>
[ 1444.325225][T14381] Modules linked in:
[ 1444.329122][T14381] ---[ end trace 0000000000000000 ]---
[ 1444.334572][T14381] RIP: 0010:__traceiter_mm_lru_insertion+0x75/0xc0
[ 1444.341086][T14381] Code: 49 8d 7e 08 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 8e cc 16 00 49 8b 7f 08 48 89 de 41 ba 37 f6 02 e5 45 03 55 fc 74 02 <0f> 0b 41 ff d5 49 83 c6 18 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74
[ 1444.360785][T14381] RSP: 0018:ffffc90000b770f8 EFLAGS: 00010093
[ 1444.367290][T14381] RAX: 1ffff110238c8493 RBX: ffffea0005161980 RCX: 0000000000080000
[ 1444.375264][T14381] RDX: ffffc9000f9d1000 RSI: ffffea0005161980 RDI: ffffc90000803000
[ 1444.383258][T14381] RBP: ffffc90000b77120 R08: dffffc0000000000 R09: fffffbfff0ee4b3e
[ 1444.391232][T14381] R10: 000000008a435d43 R11: 1ffffffff0ee4b3d R12: dffffc0000000000
[ 1444.399212][T14381] R13: ffffffff817125c0 R14: ffff88811c642490 R15: ffff88811c642490
[ 1444.407191][T14381] FS:  00007f154d05b6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 1444.416125][T14381] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1444.422725][T14381] CR2: 0000200000c52030 CR3: 000000012f90c000 CR4: 00000000003506a0
[ 1444.430726][T14381] Kernel panic - not syncing: Fatal exception
[ 1444.437079][T14381] Kernel Offset: disabled
[ 1444.441405][T14381] Rebooting in 86400 seconds..