last executing test programs:

11m32.261564729s ago: executing program 32 (id=1037):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'macsec0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={0x1}, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)={0x1b, 0x0, 0x0, 0x9, 0x0, 0xffffffffffffffff, 0x7fffffff, '\x00', r1, 0xffffffffffffffff, 0x1, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0x0, 0x0, r2, 0x0, '\x00', r1, 0xffffffffffffffff, 0x5, 0x5, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000180)=0x7)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff8500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r4, 0xffffb000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, 0x0, 0x0, 0x2, 0x0)
r7 = socket$packet(0x11, 0x3, 0x300)
fsetxattr$security_selinux(r7, &(0x7f0000000380), &(0x7f00000003c0)='system_u:object_r:netlabel_mgmt_exec_t:s0\x00', 0x2a, 0x2)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[], 0x20}}, 0x0)

9m26.893544257s ago: executing program 33 (id=1931):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0100000000000000490000000000000001"])

9m18.17210813s ago: executing program 34 (id=1991):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000000), &(0x7f00000005c0)=r0}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r2)

9m1.675332333s ago: executing program 35 (id=2120):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x2, 0x0, 0x0)
write$FUSE_BMAP(0xffffffffffffffff, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000200))

8m55.209097957s ago: executing program 36 (id=2162):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)

8m53.43917666s ago: executing program 37 (id=2185):
r0 = add_key$keyring(&(0x7f0000001400), &(0x7f0000001300)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r1 = add_key$keyring(&(0x7f0000000140), &(0x7f0000001340)={'syz', 0x0}, 0x0, 0x0, r0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x4cb, &(0x7f0000000700)="$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")
prlimit64(0x0, 0x1, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x1612c2, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0)
socket(0x10, 0x3, 0x9)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
sendfile(r2, r3, 0x0, 0x4000000000010046)
add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r1)
socket$inet(0x2, 0x3, 0x8)
syz_emit_ethernet(0x22, &(0x7f0000000000)={@local, @random="48ed16350a46", @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x2, 0x0, 0x14, 0x65, 0x0, 0x2, 0x8, 0x0, @rand_addr=0x64010100, @broadcast}}}}}, 0x0)

8m32.451177294s ago: executing program 38 (id=2343):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = dup(r1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r3}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})

7m31.802289326s ago: executing program 39 (id=2616):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
clock_gettime(0x0, &(0x7f0000000280))

7m27.611446939s ago: executing program 5 (id=2649):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00"/11], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000800), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYRESDEC=r1, @ANYRESDEC=r0, @ANYRES32=0x0, @ANYRES32=r0, @ANYRESHEX=r1], 0x48)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r5, &(0x7f0000000400)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000040)=0x1b3a, 0x4)

7m26.494545124s ago: executing program 5 (id=2653):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001100)={&(0x7f0000001500)='mm_page_alloc\x00', r0}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff})
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0x10132)

7m26.459679284s ago: executing program 5 (id=2654):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB], 0x48)
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000900)={[{@noblock_validity}, {@data_ordered}, {@norecovery}, {@init_itable}, {@journal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='ext4_es_find_extent_range_exit\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x2711, @host}, 0x10)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710, @local}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f00000008c0), 0x1, 0x5d8, &(0x7f0000000c00)="$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")
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
sendfile(r5, r4, 0x0, 0x7ffff000)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)

7m25.5237918s ago: executing program 5 (id=2658):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000780)={[{@errors_remount}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@resgid}, {@block_validity}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
syz_clone(0x40000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='uid_map\x00')
sendmsg$TIPC_NL_MON_PEER_GET(r3, 0x0, 0x41890)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000300)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
flock(0xffffffffffffffff, 0x5)
creat(&(0x7f0000000140)='./file2\x00', 0x1ad)

7m23.509925732s ago: executing program 5 (id=2667):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000280)={'ip6tnl0\x00', &(0x7f00000003c0)={'syztnl2\x00', 0x0, 0x4, 0x8, 0xe, 0x6, 0x11, @dev={0xfe, 0x80, '\x00', 0x2c}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8000, 0x0, 0x9, 0x80000000}})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8, 0x5, r6}]}, 0x20}}, 0x0)
sendmsg$nl_route(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r6, 0x192}}, 0x20}}, 0x0)

7m20.731783551s ago: executing program 5 (id=2683):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@gettfilter={0x24, 0x2e, 0x301, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0xd}}}, 0x24}}, 0x0)

7m20.66368779s ago: executing program 40 (id=2683):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@gettfilter={0x24, 0x2e, 0x301, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0xd}}}, 0x24}}, 0x0)

2m43.737227634s ago: executing program 2 (id=4346):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, 0x0, 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x110, &(0x7f0000000480)=ANY=[@ANYBLOB='iocharset=macromanian,dmask=00000000000000000000000,errors=remount-ro,errors=continue,fmask=00000000000000000122753,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c696f636861727365743d6d6163726f6d616e69616e2c646973636172642c757466382c6572726f72733d636f6e74696e75652c00b24a414a138ea1f090829675858b"], 0x1, 0x1528, &(0x7f00000037c0)="$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")
recvmmsg(0xffffffffffffffff, &(0x7f000000ae80)=[{{&(0x7f0000000340)=@qipcrtr, 0x80, &(0x7f0000000440)=[{&(0x7f00000001c0)=""/7, 0x7}, {&(0x7f00000003c0)=""/83, 0x53}, {&(0x7f0000000ec0)=""/4096, 0x1000}], 0x3}, 0x1ff}, {{0x0, 0x0, &(0x7f0000002180)}, 0x8}, {{&(0x7f00000009c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000002240)=""/230, 0xe6}, {&(0x7f0000002340)=""/4096, 0x1000}, {&(0x7f0000003440)=""/123, 0x7b}, {&(0x7f0000004d00)=""/4096, 0x1000}], 0x4}, 0xa24f}, {{&(0x7f0000003540)=@generic, 0x80, &(0x7f0000001f80)=[{&(0x7f00000035c0)=""/252, 0xfc}], 0x1, &(0x7f00000036c0)=""/12, 0xc}, 0xc}, {{&(0x7f0000003700)=@xdp, 0x80, &(0x7f0000003780)=[{&(0x7f0000005d00)=""/116, 0x74}, {&(0x7f0000005e80)=""/4096, 0x1000}], 0x2, &(0x7f0000006e80)}, 0x3}, {{&(0x7f0000006ec0)=@nfc, 0x80, &(0x7f00000073c0)=[{&(0x7f0000006f40)=""/143, 0x8f}, {&(0x7f0000007000)=""/207, 0xcf}, {&(0x7f0000007100)=""/64, 0x40}, {&(0x7f0000007140)=""/206, 0xce}, {&(0x7f0000007240)=""/145, 0x91}, {&(0x7f0000007300)=""/155, 0x9b}], 0x6, &(0x7f0000007440)=""/134, 0x86}, 0x401}, {{0x0, 0x0, &(0x7f0000007580), 0x0, &(0x7f00000075c0)=""/175, 0xaf}, 0x5}, {{&(0x7f0000007680)=@nfc_llcp, 0x80, &(0x7f0000008c40)=[{&(0x7f0000007700)=""/4096, 0x1000}, {&(0x7f0000008700)=""/89, 0x59}, {&(0x7f0000008840)=""/150, 0x96}, {&(0x7f0000008900)=""/107, 0x6b}, {&(0x7f0000008980)=""/254, 0xfe}, {&(0x7f0000008a80)=""/196, 0xc4}, {&(0x7f0000008b80)=""/29, 0x1d}, {&(0x7f0000008bc0)=""/112, 0x70}], 0x8, &(0x7f0000008d00)=""/105, 0x69}, 0xc}, {{&(0x7f0000008d80)=@hci, 0x80, &(0x7f0000009e40)=[{&(0x7f0000008e00)=""/53, 0x35}, {&(0x7f0000008e40)=""/4096, 0x1000}], 0x2, &(0x7f0000009e80)=""/4096, 0x1000}, 0x9}], 0x9, 0x2020, &(0x7f000000b0c0)={0x0, 0x989680})
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8)

2m42.74012124s ago: executing program 2 (id=4355):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000006c0)=ANY=[@ANYBLOB="b8"], 0xb8)
write$FUSE_INIT(r2, &(0x7f0000000240)={0x50}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000004000001d8500000007000000440000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r3}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x4000)

2m42.67231932s ago: executing program 2 (id=4358):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
futimesat(0xffffffffffffffff, 0x0, 0x0)

2m42.60297946s ago: executing program 2 (id=4360):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$eJzs3c9rHNcdAPDvrFY/7VYqFFr3JCi0BuNV5ap2C4Wq9FAKNRjaUw+1xWotHK20RrsylhCJTQjkEkhCbsnF5/y8hFzz45BL8n8EGyeRTRxyCAqzP6SVtCvvOtKuHX8+MNZ7M2/2ve+82TfPmtFuAE+tyfSfTMSJiHg5iRivr08iYrCaykbM1so92NzIp0sSW1v/+Sqplrm/uZGPpn1Sx+qZX0fExy9EnMrsr7e8tr44VywWVur5qcrS1any2vrpK0tzC4WFwvLZ6ZmZM+f+dO7s4cX6zefrx++88s/fvzP73fO/evelT5KYjeP1bc1xHJbJmKwfk8H0EO7yj8OurG/ef7aDQk1nQPYoG0OX0o4ZqPfKiRiPgYP6Z7SXLQMAjspzEbHVzkDbLQDAEy2pXf//1u92AAC90vg9wP3NjXxj6e9vJHrr7t8jYqQWf+P+Zm1Ltn7PbqR6H3TsfrLrzkgSEROHUP9kRLzxwf/fSpc4ovuQAK3cuBkRlyYm94//yb5nFrr1h9arF5ozk3s2Gv+gdz5M5z9/bjX/y2zPf6LF/Ge4xXv3UTz8/Z+5fQjVtJXO//7a9Gzbg6b46yYG6rmfVed8g8nlK8VCOrb9PCJOxuBwmp8+oI6T976/125b8/zv61efeTOtP/25UyJzOzu8e5/5ucrcj4m52d2bEb/Jtoo/Hf+Hq/2ftJn/Xuiwjn/95cXX221L40/jbSz74z9aW7ciftey/5PtMsmBzydOVU+HqcZJ0cJ7szHWrv7J7E7/p0taf+P/Ar2Q9v/YwfFPJM3Pa5Y7funtp8U+uzX+UbtCzed/6/hbn/9DyX+r6aH6uutzlcrKdMRQ8u/968/s7NvIN8qn8Z/8bev3f2P8a3H+/y99/UsdHojsnS/ffvT4j1Ya/3xX/d91IkYeLA60q7+z/p/ZtU8n41+nDXzU4wYAAAAAAAAAAAAAAAAAAAAAAAAA3chExPFIMrntdCaTy9W+w/uXMZYplsqVU5dLq8vzUf2u7IkYzDQ+6nK86fNQp+ufh9/In9mT/2NE/CIiXhsereZz+VJxvt/BAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDdsTbf/5/6YnhP4YF+tBAAOBIjLuwA8LRJstl+NwEA6LWRrkqPHlk7AIDe6e76DwD8FLj+A8DT5yHX/71/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADdunD+fLpsfbu5kU/z89fWVhdL107PF8qLuaXVfC5fWrmaWyiVFoqFXL601PaFbtR+FEulqzOxvHp9qlIoV6bKa+sXl0qry5WLV5bmFgoXC4M9iwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOldeW1+cKxYLKxJ9SSx+WuuHx6U9Et0l4kat/x6X9hxeIoZ2RonR/gxOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE+AHwIAAP//4VQjgA==")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x24a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000083c0)={{0x1}})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10)

2m42.431895279s ago: executing program 2 (id=4363):
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000005efe2100850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
uname(&(0x7f0000000100)=""/38)

2m42.278827518s ago: executing program 7 (id=4365):
ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/packet\x00')
pread64(r0, 0x0, 0x0, 0x38)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
execveat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

2m41.631814346s ago: executing program 2 (id=4368):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0)

2m41.623338976s ago: executing program 41 (id=4368):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0)

2m41.382469985s ago: executing program 7 (id=4370):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r1, 0x0, 0x0)

2m41.273670714s ago: executing program 7 (id=4371):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$igmp(0x2, 0x3, 0x2)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x841}, 0x20040000)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
pipe(0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
socket$netlink(0x10, 0x3, 0xa)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x58)
setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000000), 0x4)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./bus\x00', 0x280000a, &(0x7f00000007c0)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b2, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_merged\x00', 0x275a, 0x0)

2m38.379377023s ago: executing program 7 (id=4373):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x24a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000083c0)={{0x1}})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10)

2m38.239315602s ago: executing program 7 (id=4377):
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x4000004)
socket$netlink(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f00000001c0)=[{0x81, 0xfc, 0x7f}]})

2m36.796320667s ago: executing program 7 (id=4385):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffff]}, 0x0, 0x0, 0x8)
timer_create(0x2, &(0x7f0000000180)={0x0, 0x4, 0x4, @tid=r2}, &(0x7f0000000140))
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{}, {0x0, 0x9}}, 0x0)

2m33.242131702s ago: executing program 42 (id=4385):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffff]}, 0x0, 0x0, 0x8)
timer_create(0x2, &(0x7f0000000180)={0x0, 0x4, 0x4, @tid=r2}, &(0x7f0000000140))
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{}, {0x0, 0x9}}, 0x0)

26.918635267s ago: executing program 8 (id=5036):
r0 = fsopen(&(0x7f0000000180)='ntfs3\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480)="627807434619734911420e123cb6f44fb54d82f86f3720b1d5ecd9651a9fcb2a1c358b9cd99a9da0b00953486764e0c7d13faa0d43ad3164e14aa9d4eafc2ae39ce2be18d63433b7dfc78608200e69639a", 0x51, 0x0, 0x0, 0x0)
r1 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="19b200000400000016000000639e87aaffffff7f88bb2f7c73b834cc8a2bec601d8601c8c2462049460a7cc7c276dd3dbc723cc83ed7123aa7c95b4bb03ae7d274010d6742a5777ecf909c2a12046313dca95c77599e518d70d3fd0e7e46e0f11b30c152575625e4ad4f172057e44786a0a859ba4bba1b679faaf121ba3781aa3204323e04b2878fa61692b0c565b3352ee9e7a99bd2b8f9aa444ddd6c1deeb1f91e8dc138b576adeac6d455e04e181e2d7b", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, 0x0, 0x0)
sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020300090a00000000000000000000000300060000000e0002000000e0000009000000000000000002000100000000000000000200000000030005000000000002000000e00000010000000000000000017f8c98dc0ddf9e9bfa93bb4fd8a47ec23ff0b06108246e1805611c3d4aa3f6f9dd6ba5768ef53b8e9d016606a686"], 0x50}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[], 0x94}}, 0x0)
r6 = openat$uinput(0xffffff9c, &(0x7f0000000700), 0x0, 0x0)
r7 = openat$snapshot(0xffffff9c, &(0x7f0000000240), 0x800, 0x0)
ioctl$SNAPSHOT_FREE(r7, 0x3305)
ioctl$UI_GET_VERSION(r6, 0x405c5503, &(0x7f0000000780))
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, 0x0, 0x24028024)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001100)='iocharset', &(0x7f0000001140)='\xe0^@&&}\'\x00', 0x0)

23.591867714s ago: executing program 8 (id=5040):
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)

23.218472422s ago: executing program 8 (id=5047):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = open(0x0, 0x1612c2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x4000000000010046)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))

22.114383518s ago: executing program 8 (id=5052):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x24a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10)

21.473460874s ago: executing program 8 (id=5058):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x2a00a9, &(0x7f0000000000)={[{@nr_inodes}]})

17.133251886s ago: executing program 8 (id=5079):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095000000"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000100)='neigh_update\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r5, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00'}, 0x10)
accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000500), 0x1000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)

17.036194106s ago: executing program 43 (id=5079):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095000000"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000100)='neigh_update\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r5, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00'}, 0x10)
accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000500), 0x1000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)

11.869017317s ago: executing program 9 (id=5117):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000025ad9835850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000080)=0x3, 0x4)
sendto$inet(r0, &(0x7f0000000040)="0e00", 0xffec, 0x0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)

11.775818056s ago: executing program 9 (id=5118):
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mm_page_alloc\x00', r2}, 0x10)
fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000"], 0xfe44, 0x0)

11.710956576s ago: executing program 9 (id=5119):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000040)=0xc, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x9004}, 0x4)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00'})
sendto$packet(r2, &(0x7f0000000180)="10030600e0ff020004004788aa96a13b", 0x10, 0x0, 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r7)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
r8 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)
ftruncate(r8, 0x1)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
write$cgroup_subtree(r0, 0x0, 0xfdef)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

11.564935366s ago: executing program 9 (id=5122):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000340), 0x3, 0x44d, &(0x7f0000001f80)="$eJzs281vFOUfAPDvzLbl9+OtFfEFRK0SY+NLSwsqBy8aTTxgNNEDHuu2EMJCDa2JECLVGLyYGBI9G48m/gXevBj1ZOJV74aEKBfQU83MzsDuslsobHcr+/kkA88z83Sf57vPPDvPzLMbwMAaz/5JIrZGxG8RMVrPNhcYr/939fLZ6t+Xz1aTWFl5688kL3fl8tlqWbT8uy1FZiKNSD9JikqaLZ4+c3y2Vps/VeSnlk68N7V4+syzx07MHp0/On9y5uDBA/unX3h+5rmuxJnFdWX3hwt7dr32zoXXq4cvvPvTt1l7txbHG+PolvEs8L9WcvmOrdePPdHtyvpsW0M6GepjQ1iTSkRk3TWcj//RqMT1zhuNVz/ua+OAdZVdmzZ1Pry8AtzFkuh3C4D+KC/02f1vufVo6rEhXHqpfgOUxX212OpHhiItygy33N9203hEHF7+56tsi3V6DgEA0Oiz6peH4pl287807m8ot71YQxmLiHsiYkdE3BsROyPivoi87AMR8eAa629dGrpx/pNevK3AblE2/3uxWNtqnv+Vs78YqxS5bXn8w8mRY7X5fcV7MhHDm7L89Cp1fP/Kr593OtY4/8u2rP5yLli04+JQywO6udml2XxS2gWXPorYPdQu/uTaSkASEbsiYvfaXnp7mTj21Dd7OhW6efyr6MI608rXEU/W+385WuIvJauvT079L2rz+6bKs+JGP/9y/s1O9d9R/F2Q9f/m5vO/tchY0rheu7j2Os7//mnHe5rbPf9Hkrfzfhkp9n0wu7R0ajpiJDmU55v2z1z/2zJfls/in9jbfvzvyGuonwcPRUR2Ej8cEY9ExKNF2x+LiMcjYu8q8f/4cudjG6H/59p+/l07/1v6f+2JyvEfvutU/631/4E8NVHsyT//buJWG3gn7x0AAAD8V6T519KTdPJaOk0nJ+vf4d8Zm9PawuLS00cW3j85V//6+lgMp+WTrtGG56HTyXLxivX8TPGsuDy+v3hu/EXl/3l+srpQm+tz7DDotnQY/5k/Kv1uHbDu2q2jzYz0oSFAz7WO/7Q5e+6NXjYG6Cm/14bBdZPxn/aqHUDvuf7D4Go3/s+15K0FwN3J9R8Gl/EPg8v4h8Fl/MNAupPf9UsMciLSDdEMiXVK9PuTCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDv+DQAA//9M5O7b")
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x4)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0)

11.415014725s ago: executing program 9 (id=5124):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x30, 0x4, 0x0, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x3, 0xfffffff9, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x3a}, 0x658}, {@broadcast}, {@empty, 0x3}, {@loopback, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x8, [{@dev={0xac, 0x14, 0x14, 0x80}, 0x20000}, {@dev={0xac, 0x14, 0x14, 0x15}}, {@multicast2, 0x7}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@multicast2}]}, @noop, @noop, @lsrr={0x83, 0x3, 0xdc}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
sendmsg$NLBL_MGMT_C_PROTOCOLS(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000009c0)={0x14, 0x0, 0x400, 0x70bd26, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x10)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

11.163584504s ago: executing program 9 (id=5125):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r4, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0xffffffffffffff57, 0x2, 0x2, 0x301, 0x0, 0x0, {0x7, 0x0, 0x7}}, 0xf8}, 0x1, 0x0, 0x0, 0x800}, 0x4800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095000000"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00', r5}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000500), 0x1000)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)

11.058066944s ago: executing program 44 (id=5125):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r4, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0xffffffffffffff57, 0x2, 0x2, 0x301, 0x0, 0x0, {0x7, 0x0, 0x7}}, 0xf8}, 0x1, 0x0, 0x0, 0x800}, 0x4800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000095000000"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00', r5}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000500), 0x1000)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)

6.492335396s ago: executing program 0 (id=5170):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000006000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
mount$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2a00a9, &(0x7f0000000080)={[{@nr_blocks={'nr_blocks', 0x3d, [0x39]}}]})

6.491957226s ago: executing program 0 (id=5171):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b000000070000000100010009"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = open(0x0, 0x1612c2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x4000000000010046)
r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r6, 0x400, 0x1)
r7 = userfaultfd(0x801)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})

4.785457349s ago: executing program 0 (id=5186):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
setresuid(0xee01, 0xee00, 0x0)
request_key(&(0x7f0000000b80)='rxrpc_s\x00', &(0x7f0000000bc0)={'syz', 0x0}, &(0x7f0000000c00)=']!\'\x00', 0xfffffffffffffffe)

4.739947059s ago: executing program 0 (id=5190):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
close_range(r1, 0xffffffffffffffff, 0x0)

4.73938052s ago: executing program 6 (id=5191):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000002c0)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x572, &(0x7f0000003780)="$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")
chdir(&(0x7f0000000100)='./file0\x00')
link(&(0x7f0000001240)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

4.649075269s ago: executing program 0 (id=5192):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x2d)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r0, 0x8004745a, 0x2000000c)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f00000001c0), 0x74)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
pipe2(&(0x7f0000000040), 0x0)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, 0x0, &(0x7f00000000c0))
fcntl$lock(r0, 0x24, &(0x7f0000000180)={0x1, 0x1, 0xff, 0x3, 0xffffffffffffffff})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$eJzs3c9vI1cdAPDvTH65222zCz1ABewChQWt1t5421XVS8sFhKpKiIoD4rANiTcKseMQO6UJkUj/BpBA4gR/AgckDkg9ceDGEYkDQpQDUoEItEHiYDRjJ+smNmtqx+7Gn480O/Pmzcz3PWdn3vNz4hfA1LoeEQcRMR8Rb0TEYmd/0lnilfaSHffgcH/l6HB/JYlW6/W/J3l+ti+6zsk82blmISK+/pWIbydn4zZ29zaWq9XKdiddata2So3dvVvrteW1ylpls1y+u3T39ot3XiiPrK7Xar9478vrr37j17/65Lu/O/ji97NiXe7kdddjlNpVnzuJk5mNiFfPI9gEzHTW8xMuBx9MGhEfiYjP5Pf/Yszk/zsBgIus1VqM1mJ3GgC46NJ8DCxJixGRpp1OQLE9hvdMXEqr9Ubz5v36zuZqe6zsSsyl99erldtXF/7w3fzguSRLL+V5eX6eLp9K34mIqxHxo4Un8nRxpV5dnUyXBwCm3pPd7X9E/GshTYvFgU7t8akeAPDYKEy6AADA2Gn/AWD6aP8BYPoM0P53Puw/OPeyAADj4f0/AEwf7T8ATB/tPwBMla+99lq2tI4633+9+ubuzkb9zVurlcZGsbazUlypb28V1+r1tfw7e2qPul61Xt9aej523io1K41mqbG7d69W39ls3su/1/teZW4stQIA/per1975fRIRBy89kS/RNZeDthoutnSERwGPl5lhTtZBgMea2b5geg3UhOedhN+ee1mAyej5Zd6Fnpvv95P/I4jfM4IPlRsfH3z83xzPcLEY2Yfp9cHG/18eeTmA8TP+D9Or1UpOz/k/f5IFAFxIQ/wKX+sHo+qEABP1qMm8R/L5PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwwlyPiO5GkxXwu8DT7Ny0WI56KiCsxl9xfr1ZuR8TTcS0i5hay9NKkCw0ADCn9a9KZ/+vG4nOXT+fOJ/9eyNcR8b2fvv7jt5abze2lbP8/TvYvHE8fVn543hDzCgIAg/vzIAfl7Xe5s+56I//gcH/leDnHMp7x3pdOJh9dOTrcz5d2zmy0Wq1WRCHvS1z6ZxKznXMKEfFsRMyMIP7B2xHxsV71T/KxkSudmU+740cn9lNjjZ++L36a57XX2cv30RGUBabNO9nz55Ve918a1/N17/u/kD+hhpc//woRx8++o674s51IMz3iZ/f89UFjPP+br57Z2Vps570d8exsr/jJSfykT/znBoz/x0986ocv98lr/SziRvSO3x2r1KxtlRq7e7fWa8trlbXKZrl8d+nu7RfvvFAu5WPUpeOR6rP+9tLNp/uVLav/pT7xCz3rP39y7ucGrP/P//PGtz79MLlwOv4XPtv75/9Mz/htWZv4+QHjL1/6Zd/pu7P4q33q/6if/80B47/7l73VAQ8FAMagsbu3sVytVraH2sjehY7iOmc2siIOdvBxd3G4oH+KfGNEL0ufjawzNsjBc+f1qp77xuxJX3G0V/5mdsUxVycdeS2G2ngwrliTeyYB4/Hwpp90SQAAAAAAAAAAAAAAgH7G8adLk64jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF9d/AwAA//8+JMPM")
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)

4.409510208s ago: executing program 6 (id=5198):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x38, 0xb, 0x6, 0x3, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_NAME={0x9, 0x12, 'syz1\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x44080}, 0x4000002)

4.206186577s ago: executing program 6 (id=5199):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$igmp(0x2, 0x3, 0x2)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x841}, 0x20040000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
pipe(0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000001c00)={0x0, 0x0}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x58)
setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000000), 0x4)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./bus\x00', 0x280000a, &(0x7f00000007c0)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b2, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_merged\x00', 0x275a, 0x0)

3.258004643s ago: executing program 0 (id=5204):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000100)='asymmetric\x00', 0x0, &(0x7f0000000140)="10", 0x1, r1)

3.187505203s ago: executing program 1 (id=5205):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1cd02, &(0x7f0000001b80)=ANY=[], 0x1, 0x11f3, &(0x7f0000000980)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000ac0)='mm_page_free_batched\x00', r1}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000100)={'sit0\x00', &(0x7f00000002c0)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x8, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp_addr={0x44, 0xc, 0x38, 0x1, 0x4, [{@rand_addr=0x64010102, 0xf}]}]}}}}})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
r5 = dup(r3)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000040)={'ip_vti0\x00', 0x0})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r6, 0xae9a)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

2.827999912s ago: executing program 1 (id=5206):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x10, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}]}]}, @NFTA_IMMEDIATE_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}, 0x1, 0x0, 0x0, 0x404c000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000060000000a14000000020a01"], 0x3c}}, 0x0)

2.749025681s ago: executing program 1 (id=5207):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x528, 0x0, 0x18c, 0x203, 0x0, 0x19030000, 0x458, 0x2e0, 0x2e0, 0x458, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}, {0x0, 0x0, 0x3}, {0x0, 0x0, 0x4}, {0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0xfffe}, {0x0, 0x0, 0x6}, {}, {0x0, 0x0, 0x0, 0x3cddd4a}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x1}, {}, {0x0, 0x0, 0x0, 0x7f}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x3}]}}, @common=@hl={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@private, 'veth1_macvtap\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x6, 0x1, "b626da8f4391f5aedf33fd5edb0eddf13423b0ff45e429ffd3f276fd864c"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x588)

2.718179801s ago: executing program 1 (id=5208):
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x45, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))

2.716669191s ago: executing program 6 (id=5209):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB], 0x48)
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000900)={[{@noblock_validity}, {@data_ordered}, {@norecovery}, {@init_itable}, {@journal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x21, 0x4a6, &(0x7f0000000a40)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='ext4_es_find_extent_range_exit\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x2711, @host}, 0x10)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710, @local}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f00000008c0), 0x1, 0x5d8, &(0x7f0000000c00)="$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")
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
sendfile(r5, r4, 0x0, 0x7ffff000)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)

2.643795511s ago: executing program 1 (id=5210):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
readv(r0, &(0x7f0000000840)=[{&(0x7f00000008c0)=""/143, 0x8f}], 0x1)
getpgrp(0xffffffffffffffff)

2.38701875s ago: executing program 4 (id=5211):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10002, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$inet6(0xa, 0x1, 0x0)

1.783907017s ago: executing program 1 (id=5212):
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r4, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)

1.679095197s ago: executing program 6 (id=5213):
open(&(0x7f0000000200)='./bus\x00', 0x14d27e, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
ftruncate(r1, 0x2007ff3)
copy_file_range(r1, 0x0, r0, 0x0, 0xffffffffa003e459, 0x700000000000000)

1.507794886s ago: executing program 3 (id=5214):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10)
syz_io_uring_setup(0x10f, &(0x7f0000000380)={0x0, 0x5881, 0x1000}, &(0x7f0000000340), &(0x7f0000000280))

1.448444196s ago: executing program 4 (id=5215):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
readahead(0xffffffffffffffff, 0x101, 0xa8)

1.440349856s ago: executing program 3 (id=5216):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x20000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x18)
readlink(&(0x7f0000000cc0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000dc0)=""/61, 0x3d)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)

1.309848326s ago: executing program 4 (id=5217):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRES32=r0], 0x48)
r2 = socket$inet6(0xa, 0x3, 0xff)
bind$inet6(r2, &(0x7f0000000880)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
r3 = dup2(r2, r2)
write$P9_RSTATFS(r3, &(0x7f00000000c0)={0x43, 0x9, 0x0, {0x0, 0xfffffffd, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x3, 0x4a}}, 0x43)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@map=r1, 0xf, 0x1, 0xfffffffc, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x0, &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r4=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000900)={@cgroup=r3, 0xffffffffffffffff, 0x36, 0x2009, 0xffffffffffffffff, @value, @void, @void, @void, r4}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r5 = socket$inet6(0xa, 0x5, 0x0)
mkdir(&(0x7f0000000300)='./file0\x00', 0x10)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
r6 = socket$unix(0x1, 0x1, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
bind$unix(r6, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r5, 0x50)
listen(r5, 0x0)
listen(r2, 0x8)
ioctl$EXT4_IOC_GET_ES_CACHE(r3, 0xc020662a, &(0x7f0000000380)={0x887, 0x7d, 0x6, 0x0, 0x1, 0x0, [{0x7fffffffffffffff, 0x9, 0xffffffffffff0001, '\x00', 0x400}]})
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r9, 0x541c, &(0x7f0000000000))
request_key(&(0x7f0000000280)='asymmetric\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000300)='@\x9f+^\xbe-@(/[+\x9f{\x00', 0xfffffffffffffffe)

1.308454966s ago: executing program 4 (id=5218):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
fcntl$setlease(r1, 0x400, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x8682, 0x86)

833.652323ms ago: executing program 6 (id=5219):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000000)={0x84, @remote, 0x0, 0x0, 'wrr\x00'}, 0x2c)

266.698911ms ago: executing program 3 (id=5220):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x80000000000}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x2c, r3, 0x301, 0x0, 0x3, {0x1c}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}]}, 0x2c}}, 0x4000)

111.354131ms ago: executing program 4 (id=5221):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000006c0)=ANY=[@ANYBLOB="b8"], 0xb8)
write$FUSE_INIT(r2, &(0x7f0000000240)={0x50}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1])
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000004000001d8500000007000000440000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r3}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x4000)

108.780741ms ago: executing program 3 (id=5222):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x5, 0x4)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f00000003c0), &(0x7f0000000580)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
recvmmsg(r0, &(0x7f0000000280)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=""/218, 0xda}, 0xf}], 0x1, 0x2040, 0x0)

66.71252ms ago: executing program 3 (id=5223):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x4000004)
socket$netlink(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f00000001c0)=[{0x81, 0xfc, 0x7f}]})

65.951301ms ago: executing program 4 (id=5224):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1805000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0xfffffa84, 0x0, 0x0, 0x41000, 0x72, '\x00', 0x0, @cgroup_sock_addr, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x2, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="18110000ff3b31045c7624d1e2241f6fdaa526a1e7253c4a734ed6956d238cedbd8d4f2f990b389f66b19f84fe2edc230aaa441ea32342fb1e867be4798b7d366de3fe4b99c6adca5bff33b164ab7827ff8169066c70fd77dfebda0f45f7a284fe600ce7b88e3192c9efb65d2663143a5bd6f4a2b9550034dbeaa25707c81e6b6905702c63e3bccadf9a342aaa5c", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000076000000bf0900000000000026090600000003e704000000060000005c93000000000000b5030200000000008500000000000000b70000000000000095000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x8, &(0x7f0000000000)=0xfffffffd, 0x4)
getsockopt$inet6_tcp_buf(r6, 0x6, 0x8, 0x0, &(0x7f0000001040))
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = open(&(0x7f0000007fc0)='./bus\x00', 0x60142, 0x0)
r8 = open(&(0x7f0000000380)='./file1\x00', 0x42042, 0x0)
r9 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x82100, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_ext={0x1c, 0x19, &(0x7f0000000b00)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @alu={0x4, 0x1, 0x5, 0x7, 0x7, 0x1}, @cb_func={0x18, 0x1, 0x4, 0x0, 0xfffffffffffffffd}, @cb_func={0x18, 0x7, 0x4, 0x0, 0xfffffffffffffffe}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffc}, @map_val={0x18, 0x9, 0x2, 0x0, r9, 0x0, 0x0, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}, @call={0x85, 0x0, 0x0, 0x6f}], &(0x7f0000000700)='syzkaller\x00', 0xffffffff, 0x0, &(0x7f0000000740), 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000a00)={0x4, 0x7, 0x7, 0x8001}, 0x10, 0x21b75, r3, 0x4, 0x0, &(0x7f0000000cc0)=[{0x1, 0x1, 0x3, 0x6}, {0x3, 0x1, 0x1, 0xa}, {0x3, 0x4, 0x7, 0x7}, {0x5, 0x1, 0x4, 0x6}], 0x10, 0x2, @void, @value}, 0x94)
openat$full(0xffffffffffffff9c, &(0x7f0000001780), 0x20100, 0x0)
r10 = socket(0x10, 0x80002, 0x4)
sendmsg$nl_route_sched(r10, &(0x7f0000002980)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=@newtaction={0x14, 0x13, 0x53b}, 0x14}}, 0x0)
sendfile(r7, r8, 0x0, 0x1000000211005)

0s ago: executing program 3 (id=5225):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$igmp(0x2, 0x3, 0x2)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x841}, 0x20040000)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
pipe(0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r6, 0x107, 0x16, &(0x7f0000001c00)={0x0, 0x0}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
socket$netlink(0x10, 0x3, 0xa)
connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x58)
setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000000), 0x4)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./bus\x00', 0x280000a, &(0x7f00000007c0)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2b2, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_merged\x00', 0x275a, 0x0)

kernel console output (not intermixed with test programs):

iled to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  772.529463][   T60] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  772.593506][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  772.593521][   T28] audit: type=1326 audit(1734577206.692:5413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  772.599489][   T60] usb 9-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  772.673659][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  772.680136][   T28] audit: type=1326 audit(1734577206.692:5414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  772.690767][   T60] usb 9-1: config 0 descriptor??
[  772.759363][   T28] audit: type=1326 audit(1734577206.732:5415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  772.841911][   T28] audit: type=1326 audit(1734577206.732:5416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  772.910949][   T28] audit: type=1326 audit(1734577206.732:5417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  772.934403][   T28] audit: type=1326 audit(1734577206.732:5418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  772.968305][   T28] audit: type=1326 audit(1734577206.732:5419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  772.992017][   T28] audit: type=1326 audit(1734577206.732:5420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  773.018735][   T28] audit: type=1326 audit(1734577206.732:5421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  773.042227][   T28] audit: type=1326 audit(1734577206.732:5422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14966 comm="syz.9.4636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  773.162570][   T60] logitech 0003:046D:C29C.0075: hidraw0: USB HID v0.00 Device [HID 046d:c29c] on usb-dummy_hcd.8-1/input0
[  773.262343][T14983] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  773.373377][    T6] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  773.565476][   T60] logitech 0003:046D:C29C.0075: no inputs found
[  773.657850][   T60] usb 9-1: USB disconnect, device number 5
[  774.389408][    T6] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  774.398254][    T6] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  775.360293][    T6] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  775.369166][    T6] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  775.417634][    T6] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  775.439535][    T6] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  775.516023][    T6] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  775.524003][    T6] usb 7-1: Product: syz
[  775.528048][    T6] usb 7-1: Manufacturer: syz
[  776.259634][    T6] usb 7-1: can't set config #1, error -71
[  776.273304][    T6] usb 7-1: USB disconnect, device number 10
[  776.913851][T15026] loop3: detected capacity change from 0 to 512
[  776.929179][T15026] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  776.938357][T15026] ext4 filesystem being mounted at /483/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  777.008277][T15031] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  777.018093][T15031] loop9: detected capacity change from 0 to 512
[  777.598824][T15031] EXT4-fs error (device loop9): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.9.4650: corrupted xattr block 95
[  777.612065][T15031] EXT4-fs error (device loop9): ext4_validate_block_bitmap:429: comm syz.9.4650: bg 0: block 7: invalid block bitmap
[  777.625496][T15031] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  777.634971][T15031] EXT4-fs error (device loop9): ext4_xattr_delete_inode:2925: inode #11: comm syz.9.4650: corrupted xattr block 95
[  777.648063][T15031] EXT4-fs warning (device loop9): ext4_evict_inode:299: xattr delete (err -117)
[  777.657053][T15031] EXT4-fs (loop9): 1 orphan inode deleted
[  777.662758][T15031] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  778.297159][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  779.242631][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  779.242651][   T28] audit: type=1326 audit(1734577212.472:5434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  779.272982][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  779.274781][   T28] audit: type=1326 audit(1734577212.472:5435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  779.286313][T15047] I/O error, dev loop17, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  779.314673][T15047] FAT-fs (loop17): unable to read boot sector
[  779.328397][   T28] audit: type=1326 audit(1734577212.472:5436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  779.353948][   T28] audit: type=1326 audit(1734577212.472:5437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  779.378406][T15052] 9pnet_fd: Insufficient options for proto=fd
[  779.422053][   T28] audit: type=1326 audit(1734577212.482:5438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  779.534953][   T28] audit: type=1326 audit(1734577212.482:5439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  779.540366][T15063] loop9: detected capacity change from 0 to 256
[  779.559112][   T28] audit: type=1326 audit(1734577212.482:5440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  779.686931][T15064] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4662'.
[  779.736615][T15063] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  779.741747][   T28] audit: type=1326 audit(1734577212.482:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15034 comm="syz.8.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  780.114803][    T6] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  780.497782][    T6] usb 9-1: Using ep0 maxpacket: 16
[  780.506081][    T6] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  780.539406][    T6] usb 9-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22
[  780.554123][    T6] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  780.564248][    T6] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  780.575460][    T6] usb 9-1: SerialNumber: syz
[  780.585141][    T6] cdc_acm 9-1:1.0: skipping garbage
[  780.591567][    T6] cdc_acm 9-1:1.0: Control and data interfaces are not separated!
[  780.600452][    T6] cdc_acm 9-1:1.0: This needs exactly 3 endpoints
[  780.607774][   T24] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  780.607860][    T6] cdc_acm: probe of 9-1:1.0 failed with error -22
[  780.791025][   T60] usb 9-1: USB disconnect, device number 6
[  780.797656][   T24] usb 7-1: Using ep0 maxpacket: 16
[  780.805282][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  780.820673][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  780.830471][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  780.843245][   T24] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  780.852294][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  781.031114][   T24] usb 7-1: config 0 descriptor??
[  781.413532][   T28] audit: type=1326 audit(1734577215.502:5442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15090 comm="syz.0.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb30b85d29 code=0x7ffc0000
[  781.444357][   T28] audit: type=1326 audit(1734577215.502:5443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15090 comm="syz.0.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb30b85d29 code=0x7ffc0000
[  781.502794][   T24] usbhid 7-1:0.0: can't add hid device: -71
[  781.513938][   T24] usbhid: probe of 7-1:0.0 failed with error -71
[  781.545875][   T24] usb 7-1: USB disconnect, device number 11
[  781.678774][T15103] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4674'.
[  782.666360][T15129] loop6: detected capacity change from 0 to 256
[  782.828522][T15129] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  783.033138][T15133] loop8: detected capacity change from 0 to 8192
[  783.070797][T15133] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  783.197702][T11947] usb 10-1: new high-speed USB device number 42 using dummy_hcd
[  783.270396][T15139] loop3: detected capacity change from 0 to 2048
[  783.276816][T15139] EXT4-fs: Ignoring removed mblk_io_submit option
[  783.290617][T15139] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  783.366366][T15142] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4686'.
[  783.417665][T11947] usb 10-1: Using ep0 maxpacket: 16
[  783.427978][T11947] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  783.445653][T11947] usb 10-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22
[  783.560585][T11947] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  783.688361][T11947] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  783.707771][T11947] usb 10-1: SerialNumber: syz
[  783.871584][T11947] cdc_acm 10-1:1.0: skipping garbage
[  783.876940][T11947] cdc_acm 10-1:1.0: Control and data interfaces are not separated!
[  783.884950][T11947] cdc_acm 10-1:1.0: This needs exactly 3 endpoints
[  783.891522][T11947] cdc_acm: probe of 10-1:1.0 failed with error -22
[  784.114869][T11947] usb 10-1: USB disconnect, device number 42
[  784.751185][T15162] loop9: detected capacity change from 0 to 512
[  784.780550][T15162] EXT4-fs: Invalid want_extra_isize 6
[  784.788703][   T60] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  784.837538][T15162] loop9: detected capacity change from 0 to 1024
[  784.865276][T15162] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  784.977630][   T60] usb 9-1: Using ep0 maxpacket: 16
[  784.983676][   T60] usb 9-1: config 0 has an invalid interface number: 2 but max is 0
[  785.047915][   T60] usb 9-1: config 0 has no interface number 0
[  785.055575][   T60] usb 9-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 0.01
[  785.067707][   T60] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  785.075625][   T60] usb 9-1: Product: syz
[  785.079570][   T60] usb 9-1: Manufacturer: syz
[  785.083942][   T60] usb 9-1: SerialNumber: syz
[  785.089108][   T60] usb 9-1: config 0 descriptor??
[  785.346286][   T28] kauditd_printk_skb: 6 callbacks suppressed
[  785.346302][   T28] audit: type=1326 audit(1734577219.442:5450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.428458][T15144] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  785.453250][T15144] EXT4-fs (loop3): Remounting filesystem read-only
[  785.460899][   T28] audit: type=1326 audit(1734577219.442:5451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.499346][   T28] audit: type=1326 audit(1734577219.442:5452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.528707][   T24] usb 9-1: USB disconnect, device number 7
[  785.535264][   T28] audit: type=1326 audit(1734577219.442:5453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.561816][   T28] audit: type=1326 audit(1734577219.442:5454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.599012][   T28] audit: type=1326 audit(1734577219.472:5455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.623983][   T28] audit: type=1326 audit(1734577219.472:5456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.624092][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  785.647744][   T28] audit: type=1326 audit(1734577219.472:5457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15166 comm="syz.6.4692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  785.681207][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  786.075483][T15187] loop6: detected capacity change from 0 to 8192
[  786.159901][T15187] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  786.834898][   T28] audit: type=1400 audit(1734577220.862:5458): avc:  denied  { execute } for  pid=15194 comm="syz.0.4701" path="/342/cpuset.memory_pressure_enabled" dev="tmpfs" ino=1850 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  787.826514][T15224] loop9: detected capacity change from 0 to 2048
[  787.878675][T15224] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  788.062328][T15225] loop6: detected capacity change from 0 to 40427
[  788.085059][T15225] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  788.092730][T15225] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  788.104860][T15225] F2FS-fs (loop6): Found nat_bits in checkpoint
[  788.149296][T15225] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  788.156226][T15225] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  788.176659][   T24] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  788.317656][ T1506] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  788.368717][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  788.379514][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  788.389178][   T24] usb 4-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00
[  788.398098][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  788.406380][   T24] usb 4-1: config 0 descriptor??
[  788.498108][ T1506] usb 9-1: too many configurations: 9, using maximum allowed: 8
[  788.506357][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.515107][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.525764][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.533024][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.541745][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.552444][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.559528][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.568245][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.578914][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.585955][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.594692][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.605368][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.613254][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.621994][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.664688][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.672229][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  788.679219][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.688388][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.703598][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.725625][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.734669][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.745430][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.767844][ T1506] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  788.776622][ T1506] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  788.790234][ T1506] usb 9-1: config 0 interface 0 has no altsetting 0
[  788.921032][ T1506] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  788.955864][ T1506] usb 9-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  788.968242][T15250] loop6: detected capacity change from 0 to 256
[  789.021110][ T1506] usb 9-1: Product: syz
[  789.025443][ T1506] usb 9-1: Manufacturer: syz
[  789.032126][ T1506] usb 9-1: SerialNumber: syz
[  789.063368][ T1506] usb 9-1: config 0 descriptor??
[  789.296792][ T1506] usb 9-1: USB disconnect, device number 8
[  789.392561][   T24] chicony 0003:04F2:1421.0076: unbalanced delimiter at end of report description
[  789.435774][   T24] chicony 0003:04F2:1421.0076: Chicony hid parse failed: -22
[  789.447200][   T24] chicony: probe of 0003:04F2:1421.0076 failed with error -22
[  789.668009][   T24] usb 4-1: USB disconnect, device number 58
[  790.037845][   T28] audit: type=1326 audit(1734577224.112:5459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15261 comm="syz.3.4720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  790.198500][T15274] tmpfs: Unknown parameter 'usrquota'
[  790.325009][T15269] loop3: detected capacity change from 0 to 512
[  790.425295][   T28] audit: type=1326 audit(1734577224.112:5460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15261 comm="syz.3.4720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff0c5d84690 code=0x7ffc0000
[  790.718729][T15269] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  790.746812][   T28] audit: type=1326 audit(1734577224.122:5461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15261 comm="syz.3.4720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff0c5d84690 code=0x7ffc0000
[  790.767620][T15269] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  790.770704][   T28] audit: type=1326 audit(1734577224.122:5462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15261 comm="syz.3.4720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  790.804679][   T28] audit: type=1326 audit(1734577224.132:5463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15261 comm="syz.3.4720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  790.810202][T15291] loop8: detected capacity change from 0 to 2048
[  790.828449][   T28] audit: type=1326 audit(1734577224.132:5464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15261 comm="syz.3.4720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  790.858748][T15269] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4720: Failed to acquire dquot type 0
[  790.870414][   T28] audit: type=1326 audit(1734577224.132:5465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15261 comm="syz.3.4720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  790.893801][T15269] EXT4-fs (loop3): Remounting filesystem read-only
[  790.900647][T15269] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  790.911843][T15269] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  790.921510][T15269] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4720: Failed to acquire dquot type 0
[  790.951732][T15269] EXT4-fs (loop3): Remounting filesystem read-only
[  790.962501][T15291] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  790.971308][T15269] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4720: Failed to acquire dquot type 0
[  791.056283][T15269] EXT4-fs (loop3): Remounting filesystem read-only
[  791.079498][T15269] EXT4-fs (loop3): 1 orphan inode deleted
[  791.085357][T15269] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  791.086139][T14070] EXT4-fs (loop8): unmounting filesystem.
[  791.094417][T15269] ext4 filesystem being mounted at /501/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  791.126317][T15284] loop9: detected capacity change from 0 to 40427
[  791.136427][T15284] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  791.149759][T15284] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  791.196145][T15284] F2FS-fs (loop9): Found nat_bits in checkpoint
[  791.267358][T15284] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  791.274641][T15284] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  791.318278][T15319] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  791.438494][T15326] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4739'.
[  791.550235][T15331] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4741'.
[  791.610349][T15331] fuse: Bad value for 'user_id'
[  791.895118][T15338] loop9: detected capacity change from 0 to 2048
[  791.937433][T15338] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  792.048478][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  792.283499][T15361] loop9: detected capacity change from 0 to 8192
[  792.307352][T15361] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  792.357673][ T9950] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  792.432992][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  792.470584][T15370] loop3: detected capacity change from 0 to 256
[  792.498735][T15370] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  792.515043][T15370] exFAT-fs (loop3): hint_cluster is invalid (17)
[  792.529621][T15370] exFAT-fs (loop3): error, broken FAT chain.
[  792.535519][T15370] exFAT-fs (loop3): Filesystem has been set read-only
[  792.542228][T15370] exFAT-fs (loop3): error, failed to bmap (inode : ffff88810dc33670 iblock : 8, err : -5)
[  792.557933][ T9950] usb 9-1: Using ep0 maxpacket: 8
[  792.575463][ T9950] usb 9-1: config 0 has an invalid interface number: 186 but max is 0
[  792.587666][ T9950] usb 9-1: config 0 has no interface number 0
[  792.593589][ T9950] usb 9-1: config 0 interface 186 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  792.607018][ T9950] usb 9-1: config 0 interface 186 altsetting 0 has an invalid endpoint with address 0x9A, skipping
[  792.623937][ T9950] usb 9-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  792.643274][ T9950] usb 9-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  792.656392][ T9950] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  792.665506][ T9950] usb 9-1: Product: syz
[  792.669678][ T9950] usb 9-1: Manufacturer: syz
[  792.674133][ T9950] usb 9-1: SerialNumber: syz
[  792.715352][ T9950] usb 9-1: config 0 descriptor??
[  793.343752][T15397] loop6: detected capacity change from 0 to 512
[  793.445047][T15403] loop9: detected capacity change from 0 to 512
[  793.453178][T15397] EXT4-fs error (device loop6): ext4_acquire_dquot:6788: comm syz.6.4766: Failed to acquire dquot type 0
[  793.464850][T15403] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  793.471293][T15397] EXT4-fs (loop6): Remounting filesystem read-only
[  793.481558][T15397] EXT4-fs error (device loop6): ext4_acquire_dquot:6788: comm syz.6.4766: Failed to acquire dquot type 0
[  793.494413][T15403] EXT4-fs (loop9): 1 orphan inode deleted
[  793.536393][T15397] EXT4-fs (loop6): Remounting filesystem read-only
[  793.544962][T15397] EXT4-fs error (device loop6): ext4_acquire_dquot:6788: comm syz.6.4766: Failed to acquire dquot type 0
[  793.558975][T15403] EXT4-fs (loop9): 1 truncate cleaned up
[  793.566552][T15403] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  793.567987][T15397] EXT4-fs (loop6): Remounting filesystem read-only
[  793.652672][T15397] EXT4-fs (loop6): 1 orphan inode deleted
[  793.659069][T15397] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  793.668247][T15397] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  793.757241][T15414] EXT4-fs error (device loop9): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.9.4767: path /517/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  793.779094][T15414] EXT4-fs (loop9): Remounting filesystem read-only
[  795.156189][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  795.160059][   T24] usb 9-1: USB disconnect, device number 9
[  795.289167][T15439] hub 2-0:1.0: USB hub found
[  795.295415][T15439] hub 2-0:1.0: 1 port detected
[  795.441199][T15440] loop0: detected capacity change from 0 to 2048
[  795.682065][T15440] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  796.556274][   T28] kauditd_printk_skb: 64 callbacks suppressed
[  796.556289][   T28] audit: type=1400 audit(1734577230.652:5522): avc:  denied  { create } for  pid=15452 comm="syz.8.4782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  796.579063][T15448] loop9: detected capacity change from 0 to 40427
[  796.617502][T15448] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  796.636343][T15448] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  796.756782][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  796.757930][   T28] audit: type=1400 audit(1734577230.742:5523): avc:  denied  { setopt } for  pid=15452 comm="syz.8.4782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  796.763660][T15448] F2FS-fs (loop9): Found nat_bits in checkpoint
[  796.782069][   T28] audit: type=1400 audit(1734577230.742:5524): avc:  denied  { bind } for  pid=15452 comm="syz.8.4782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  796.840762][T15448] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  796.847829][T15448] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  796.907682][ T1506] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  797.017370][T14136] EXT4-fs (loop6): unmounting filesystem.
[  797.110662][ T1506] usb 4-1: Using ep0 maxpacket: 32
[  797.123516][T15469] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  797.146434][T15469] loop0: detected capacity change from 0 to 512
[  797.248884][T15469] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.0.4784: corrupted xattr block 95
[  797.262901][T15469] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.4784: bg 0: block 7: invalid block bitmap
[  797.276885][T15469] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  797.286558][T15469] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2925: inode #11: comm syz.0.4784: corrupted xattr block 95
[  797.299959][T15469] EXT4-fs warning (device loop0): ext4_evict_inode:299: xattr delete (err -117)
[  797.309112][T15469] EXT4-fs (loop0): 1 orphan inode deleted
[  797.314730][T15469] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  797.323436][  T366] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  797.619264][  T366] usb 7-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  797.659968][  T366] usb 7-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  797.854647][  T366] usb 7-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  797.865302][T15476] I/O error, dev loop17, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  797.884931][  T366] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  797.893335][T15476] FAT-fs (loop17): unable to read boot sector
[  797.967236][ T1506] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  797.993186][ T1506] usb 4-1: New USB device found, idVendor=172f, idProduct=0037, bcdDevice= 0.00
[  798.002342][ T1506] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  798.018232][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  798.024458][ T1506] usb 4-1: config 0 descriptor??
[  798.746381][  T366] usb 7-1: string descriptor 0 read error: -71
[  798.855485][  T366] aiptek 7-1:17.0: interface has no int in endpoints, but must have minimum 1
[  798.865300][  T366] usb 7-1: USB disconnect, device number 12
[  798.973514][T15495] loop9: detected capacity change from 0 to 2048
[  799.012459][T15495] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  799.262181][T11947] usb 1-1: new high-speed USB device number 92 using dummy_hcd
[  799.271461][ T1506] waltop 0003:172F:0037.0077: item fetching failed at offset 2/5
[  799.279697][ T1506] waltop: probe of 0003:172F:0037.0077 failed with error -22
[  799.308897][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  799.341377][T15503] loop9: detected capacity change from 0 to 8192
[  799.350836][T15503] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  799.457755][T11947] usb 1-1: Using ep0 maxpacket: 16
[  799.463856][T11947] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  799.474076][T11947] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  799.485097][T11947] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  799.486255][   T24] usb 4-1: USB disconnect, device number 59
[  799.504647][T11947] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 22
[  799.524301][T11947] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  799.533211][T11947] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  799.540986][T11947] usb 1-1: SerialNumber: syz
[  799.583513][T11947] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[  799.591242][T11947] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[  799.597454][T11947] cdc_acm: probe of 1-1:1.0 failed with error -22
[  799.760986][   T28] audit: type=1400 audit(1734577233.862:5525): avc:  denied  { create } for  pid=15518 comm="syz.8.4801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  799.843961][T11947] usb 1-1: USB disconnect, device number 92
[  800.163547][T15511] loop6: detected capacity change from 0 to 512
[  800.180579][   T28] audit: type=1326 audit(1734577234.262:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15506 comm="syz.6.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  800.209548][   T28] audit: type=1326 audit(1734577234.262:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15506 comm="syz.6.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f12bcf85d29 code=0x7ffc0000
[  800.233085][   T28] audit: type=1326 audit(1734577234.262:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15506 comm="syz.6.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f12bcf84690 code=0x7ffc0000
[  800.259683][   T28] audit: type=1326 audit(1734577234.262:5529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15506 comm="syz.6.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f12bcf84690 code=0x7ffc0000
[  800.295492][T15511] Quota error (device loop6): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  800.305782][T15511] Quota error (device loop6): qtree_read_dquot: Can't read quota structure for id 0
[  800.315042][T15511] EXT4-fs error (device loop6): ext4_acquire_dquot:6788: comm syz.6.4796: Failed to acquire dquot type 0
[  800.334317][T15511] EXT4-fs (loop6): Remounting filesystem read-only
[  800.340854][T15511] EXT4-fs error (device loop6): ext4_acquire_dquot:6788: comm syz.6.4796: Failed to acquire dquot type 0
[  800.352290][T15511] EXT4-fs (loop6): Remounting filesystem read-only
[  800.359462][T15511] EXT4-fs error (device loop6): ext4_acquire_dquot:6788: comm syz.6.4796: Failed to acquire dquot type 0
[  800.371529][T15511] EXT4-fs (loop6): Remounting filesystem read-only
[  800.378039][T15511] EXT4-fs (loop6): 1 orphan inode deleted
[  800.383745][T15511] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  800.392775][T15511] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  800.446748][T15539] loop0: detected capacity change from 0 to 8192
[  800.453935][T15539] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  800.543346][T14136] EXT4-fs (loop6): unmounting filesystem.
[  800.566791][T15543] loop6: detected capacity change from 0 to 2048
[  800.579103][T15543] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  800.627668][  T366] usb 10-1: new high-speed USB device number 43 using dummy_hcd
[  800.725983][T15550] 9pnet_fd: Insufficient options for proto=fd
[  800.829272][T15557] loop8: detected capacity change from 0 to 256
[  800.864903][  T366] usb 10-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  801.608194][  T366] usb 10-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  801.623022][  T366] usb 10-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  801.632659][  T366] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  801.670241][T14136] EXT4-fs (loop6): unmounting filesystem.
[  801.732585][T15565] loop3: detected capacity change from 0 to 512
[  801.754303][T15565] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  801.763288][T15565] ext4 filesystem being mounted at /518/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  802.846401][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  802.880777][  T366] usb 10-1: string descriptor 0 read error: -71
[  802.887236][  T366] aiptek 10-1:17.0: interface has no int in endpoints, but must have minimum 1
[  803.307367][  T366] usb 10-1: USB disconnect, device number 43
[  803.329934][T15582] loop8: detected capacity change from 0 to 8192
[  803.414366][T15582] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  803.787664][   T24] usb 1-1: new high-speed USB device number 93 using dummy_hcd
[  803.866916][   T28] kauditd_printk_skb: 38 callbacks suppressed
[  803.866932][   T28] audit: type=1326 audit(1734577237.962:5564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15586 comm="syz.9.4823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  803.925150][   T28] audit: type=1326 audit(1734577237.962:5565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15586 comm="syz.9.4823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  803.987760][   T24] usb 1-1: Using ep0 maxpacket: 16
[  803.996064][   T24] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  804.015213][   T24] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  804.026170][   T24] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  804.037075][   T24] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  804.095961][   T24] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 22
[  804.111213][   T24] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  804.120939][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  804.129047][   T24] usb 1-1: SerialNumber: syz
[  804.134975][   T24] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[  804.142629][   T24] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[  804.209195][   T24] cdc_acm: probe of 1-1:1.0 failed with error -22
[  804.273878][T15599] xt_TCPMSS: Only works on TCP SYN packets
[  804.314643][T15604] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4828'.
[  804.332830][T15606] loop8: detected capacity change from 0 to 256
[  804.341297][T15606] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  804.345540][   T24] usb 1-1: USB disconnect, device number 93
[  804.353290][T11947] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[  804.370112][T15606] exFAT-fs (loop8): hint_cluster is invalid (17)
[  804.413176][T15610] loop9: detected capacity change from 0 to 512
[  804.434386][T15610] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  804.443374][T15610] ext4 filesystem being mounted at /532/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  804.548075][T11947] usb 4-1: too many configurations: 9, using maximum allowed: 8
[  804.556304][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.565091][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.757540][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.764679][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.773441][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.784081][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.791156][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.799871][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.810577][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.817636][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.826333][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.837045][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.844132][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.852851][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.865452][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.878485][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.892401][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.911983][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.919875][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.941830][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.952851][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.962879][T11947] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  804.971930][T11947] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  804.983778][T11947] usb 4-1: config 0 interface 0 has no altsetting 0
[  804.994843][   T28] audit: type=1400 audit(1734577239.092:5566): avc:  denied  { accept } for  pid=15619 comm="syz.0.4832" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  804.996108][T11947] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  805.023625][T11947] usb 4-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  805.031783][T11947] usb 4-1: Product: syz
[  805.035759][T11947] usb 4-1: Manufacturer: syz
[  805.040214][T11947] usb 4-1: SerialNumber: syz
[  806.411590][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  806.525909][T11947] usb 4-1: config 0 descriptor??
[  806.592702][T15639] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4839'.
[  806.614046][T15632] xt_TCPMSS: Only works on TCP SYN packets
[  806.652030][T15645] loop9: detected capacity change from 0 to 256
[  806.702861][T15649] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  806.712458][T15649] FAT-fs (loop1): unable to read boot sector
[  806.718934][T15645] exFAT-fs (loop9): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  806.737948][   T28] audit: type=1400 audit(1734577240.842:5567): avc:  denied  { shutdown } for  pid=15629 comm="syz.8.4836" lport=7 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  807.071390][T15645] exFAT-fs (loop9): hint_cluster is invalid (17)
[  807.123593][T15652] loop9: detected capacity change from 0 to 512
[  807.147884][T15652] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  807.163952][   T24] usb 4-1: USB disconnect, device number 60
[  807.181719][T15652] EXT4-fs (loop9): 1 orphan inode deleted
[  807.187315][T15652] EXT4-fs (loop9): 1 truncate cleaned up
[  807.194075][T15652] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  807.375555][T15657] EXT4-fs error (device loop9): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.9.4844: path /535/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  807.397444][T15657] EXT4-fs (loop9): Remounting filesystem read-only
[  807.467838][  T366] usb 1-1: new high-speed USB device number 94 using dummy_hcd
[  807.707813][  T366] usb 1-1: Using ep0 maxpacket: 16
[  807.789461][   T28] audit: type=1400 audit(1734577241.892:5568): avc:  denied  { create } for  pid=15659 comm="syz.6.4845" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  807.794013][  T366] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  807.862610][  T366] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  807.869217][   T28] audit: type=1400 audit(1734577241.962:5569): avc:  denied  { sys_admin } for  pid=15659 comm="syz.6.4845" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  807.930198][  T366] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 22
[  807.963759][T15664] loop3: detected capacity change from 0 to 512
[  808.043967][T15664] EXT4-fs: Invalid want_extra_isize 6
[  808.047306][  T366] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  808.050777][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  808.067637][  T366] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  808.075537][  T366] usb 1-1: SerialNumber: syz
[  808.100468][  T366] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[  808.113752][  T366] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[  808.120293][  T366] cdc_acm: probe of 1-1:1.0 failed with error -22
[  808.143556][T15664] loop3: detected capacity change from 0 to 1024
[  808.154793][T15664] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  808.211034][T15674] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4850'.
[  809.424688][T15685] loop8: detected capacity change from 0 to 256
[  809.434373][T15687] I/O error, dev loop13, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  809.445394][T15685] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  809.462607][T15685] exFAT-fs (loop8): hint_cluster is invalid (17)
[  809.474889][T15687] FAT-fs (loop13): unable to read boot sector
[  809.481410][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  809.486688][T11947] usb 1-1: USB disconnect, device number 94
[  809.526643][T15691] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4857'.
[  809.563349][T15676] loop9: detected capacity change from 0 to 40427
[  809.573633][T15698] loop6: detected capacity change from 0 to 512
[  809.573902][T15676] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  809.589333][T15701] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4861'.
[  809.593566][T15676] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  809.623704][T15676] F2FS-fs (loop9): invalid crc value
[  809.636124][T15698] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  809.645337][T15698] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  809.700091][T15676] F2FS-fs (loop9): Found nat_bits in checkpoint
[  809.793703][T15676] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  809.800685][T15676] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  810.818246][T14136] EXT4-fs (loop6): unmounting filesystem.
[  811.039847][T15723] loop8: detected capacity change from 0 to 512
[  811.116362][T15723] EXT4-fs: Invalid want_extra_isize 6
[  811.305154][T15727] loop0: detected capacity change from 0 to 256
[  811.318812][T15727] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  811.339217][T15727] exFAT-fs (loop0): hint_cluster is invalid (17)
[  811.375937][T15729] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  811.385101][T15729] FAT-fs (loop1): unable to read boot sector
[  811.554317][T15739] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4872'.
[  811.563658][T11947] usb 10-1: new high-speed USB device number 44 using dummy_hcd
[  811.598699][T15723] loop8: detected capacity change from 0 to 1024
[  811.607544][T15723] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  811.695654][T15745] xt_TCPMSS: Only works on TCP SYN packets
[  812.347627][T15746] loop3: detected capacity change from 0 to 512
[  812.358584][    T6] usb 1-1: new high-speed USB device number 95 using dummy_hcd
[  812.518152][T11947] usb 10-1: Using ep0 maxpacket: 32
[  812.623372][T11947] usb 10-1: config 0 has an invalid interface number: 12 but max is 0
[  812.646602][T15746] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  812.656976][T15746] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  812.666357][T15746] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4873: Failed to acquire dquot type 0
[  812.689773][T15746] EXT4-fs (loop3): Remounting filesystem read-only
[  812.696617][T15746] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  812.707063][T15746] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  812.716464][T15746] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4873: Failed to acquire dquot type 0
[  812.741229][T15746] EXT4-fs (loop3): Remounting filesystem read-only
[  812.757297][T15746] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  812.767608][T15746] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  812.776912][T15746] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4873: Failed to acquire dquot type 0
[  812.802364][T15746] EXT4-fs (loop3): Remounting filesystem read-only
[  812.809583][T15746] EXT4-fs (loop3): 1 orphan inode deleted
[  812.815439][T15746] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  812.825476][T15746] ext4 filesystem being mounted at /527/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  812.951789][T11947] usb 10-1: config 0 has no interface number 0
[  813.040950][T11947] usb 10-1: config 0 interface 12 has no altsetting 0
[  813.216457][T11947] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  813.386073][    T6] usb 1-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  813.397637][T11947] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  813.409719][    T6] usb 1-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  813.424458][T14070] EXT4-fs (loop8): unmounting filesystem.
[  813.430462][T11947] usb 10-1: Product: syz
[  813.434638][T11947] usb 10-1: Manufacturer: syz
[  813.439578][    T6] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  813.448910][T11947] usb 10-1: SerialNumber: syz
[  813.457243][T11947] usb 10-1: config 0 descriptor??
[  813.462280][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  813.468781][T15753] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4874'.
[  813.515760][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  813.609029][T15765] loop3: detected capacity change from 0 to 256
[  813.617748][T15765] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  813.639294][T15765] exFAT-fs (loop3): hint_cluster is invalid (17)
[  813.675667][T15768] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  813.686605][T15768] FAT-fs (loop7): unable to read boot sector
[  813.693477][    T6] usb 1-1: string descriptor 0 read error: -71
[  813.700988][    T6] aiptek 1-1:17.0: interface has no int in endpoints, but must have minimum 1
[  813.710829][    T6] usb 1-1: USB disconnect, device number 95
[  814.045360][   T28] audit: type=1400 audit(1734577247.952:5570): avc:  denied  { create } for  pid=15773 comm="syz.3.4883" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  814.161315][   T24] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  814.358374][   T24] usb 7-1: Using ep0 maxpacket: 16
[  814.381900][   T24] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  814.396009][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  814.407738][   T24] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 22
[  814.441024][   T24] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  814.450933][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  814.459792][   T24] usb 7-1: SerialNumber: syz
[  814.578732][   T24] cdc_acm 7-1:1.0: Control and data interfaces are not separated!
[  814.586375][   T24] cdc_acm 7-1:1.0: This needs exactly 3 endpoints
[  814.592818][   T24] cdc_acm: probe of 7-1:1.0 failed with error -22
[  814.634596][T15786] input: syz0 as /devices/virtual/input/input61
[  814.695556][   T24] usb 10-1: USB disconnect, device number 44
[  814.849909][T15795] loop3: detected capacity change from 0 to 512
[  814.886007][    T6] usb 7-1: USB disconnect, device number 13
[  814.984035][T15795] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  814.994385][T15795] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  815.003693][T15795] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4887: Failed to acquire dquot type 0
[  815.016671][T15795] EXT4-fs (loop3): Remounting filesystem read-only
[  815.023208][T15795] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  815.033482][T15795] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4887: Failed to acquire dquot type 0
[  815.045594][T15795] EXT4-fs (loop3): Remounting filesystem read-only
[  815.053273][T15795] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4887: Failed to acquire dquot type 0
[  815.065247][T15795] EXT4-fs (loop3): Remounting filesystem read-only
[  815.071813][T15795] EXT4-fs (loop3): 1 orphan inode deleted
[  815.077427][T15795] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  815.086403][T15795] ext4 filesystem being mounted at /535/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  815.923577][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  816.041502][T15808] loop9: detected capacity change from 0 to 256
[  816.053264][T15808] exFAT-fs (loop9): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  816.068295][T15810] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15810 comm=syz.3.4892
[  816.112463][T15808] exFAT-fs (loop9): hint_cluster is invalid (17)
[  816.877650][   T24] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[  817.058734][   T24] usb 4-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  817.068946][   T24] usb 4-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  817.081832][   T24] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  817.090786][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  817.127646][  T366] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  817.301198][   T24] usb 4-1: string descriptor 0 read error: -71
[  817.308776][  T366] usb 9-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  817.323755][   T24] aiptek 4-1:17.0: interface has no int in endpoints, but must have minimum 1
[  817.435510][   T24] usb 4-1: USB disconnect, device number 61
[  817.441681][  T366] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  817.450896][  T366] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  817.459579][  T366] usb 9-1: SerialNumber: syz
[  817.464855][T15845] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4902'.
[  817.474528][T15845] fuse: Unknown parameter 'group_i00000000000000000010'
[  817.671561][ T1506] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  817.870637][T15861] 9pnet_fd: Insufficient options for proto=fd
[  817.897716][ T1506] usb 7-1: Using ep0 maxpacket: 16
[  817.904071][ T1506] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  817.915593][ T1506] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  817.925339][ T1506] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  817.938119][ T1506] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  817.952238][ T1506] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  817.961464][ T1506] usb 7-1: config 0 descriptor??
[  818.067843][T15866] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  818.089496][T15866] loop3: detected capacity change from 0 to 512
[  818.167521][  T366] cdc_ether 9-1:1.0 eth1: register 'cdc_ether' at usb-dummy_hcd.8-1, CDC Ethernet Device, 42:42:42:42:42:42
[  818.504632][T15866] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.4909: corrupted xattr block 95
[  818.518523][T15866] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.4909: bg 0: block 7: invalid block bitmap
[  818.531662][T15866] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  818.541378][T15866] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.4909: corrupted xattr block 95
[  818.554169][T15866] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[  818.563220][T15866] EXT4-fs (loop3): 1 orphan inode deleted
[  818.568832][T15866] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  818.648701][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  818.648722][   T28] audit: type=1400 audit(1734577252.752:5577): avc:  denied  { read } for  pid=141 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  818.718926][T15831] 9pnet_fd: Insufficient options for proto=fd
[  818.831767][   T28] audit: type=1400 audit(1734577252.892:5578): avc:  denied  { read } for  pid=141 comm="dhcpcd" name="n15" dev="tmpfs" ino=30470 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  818.871738][   T28] audit: type=1400 audit(1734577252.892:5579): avc:  denied  { open } for  pid=141 comm="dhcpcd" path="/run/udev/data/n15" dev="tmpfs" ino=30470 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  818.914208][   T28] audit: type=1400 audit(1734577252.892:5580): avc:  denied  { getattr } for  pid=141 comm="dhcpcd" path="/run/udev/data/n15" dev="tmpfs" ino=30470 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  818.960495][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  818.960688][ T1506] HID 045e:07da: Invalid code 65791 type 1
[  818.974895][ T1506] input: HID 045e:07da as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:045E:07DA.0078/input/input63
[  818.987038][ T1506] microsoft 0003:045E:07DA.0078: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  818.990182][   T28] audit: type=1400 audit(1734577252.932:5581): avc:  denied  { search } for  pid=15875 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  819.009058][ T1506] usb 7-1: USB disconnect, device number 14
[  819.044513][   T28] audit: type=1400 audit(1734577252.952:5582): avc:  denied  { read } for  pid=15876 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=419 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  819.073838][   T28] audit: type=1400 audit(1734577252.952:5583): avc:  denied  { open } for  pid=15876 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=419 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  819.098043][  T366] usb 10-1: new high-speed USB device number 45 using dummy_hcd
[  819.106461][T11947] usb 9-1: USB disconnect, device number 10
[  819.114390][T11947] cdc_ether 9-1:1.0 eth1: unregister 'cdc_ether' usb-dummy_hcd.8-1, CDC Ethernet Device
[  819.137976][   T28] audit: type=1400 audit(1734577252.952:5584): avc:  denied  { getattr } for  pid=15876 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=419 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  819.140853][T15889] loop0: detected capacity change from 0 to 2048
[  819.164302][   T28] audit: type=1400 audit(1734577253.082:5585): avc:  denied  { write } for  pid=15875 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=418 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  819.205446][   T28] audit: type=1400 audit(1734577253.082:5586): avc:  denied  { add_name } for  pid=15875 comm="dhcpcd-run-hook" name="resolv.conf.eth1.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  820.311636][T15889] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  820.487724][  T366] usb 10-1: Using ep0 maxpacket: 16
[  820.493945][  T366] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  820.514254][  T366] usb 10-1: config 1 has 0 interfaces, different from the descriptor's value: 11
[  820.533467][  T366] usb 10-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  820.550416][  T366] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  820.607793][T15912] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  820.622560][T15927] loop3: detected capacity change from 0 to 512
[  820.651146][T15927] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4915: Failed to acquire dquot type 0
[  820.662717][T15927] EXT4-fs (loop3): Remounting filesystem read-only
[  820.669174][T15927] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4915: Failed to acquire dquot type 0
[  820.681181][T15927] EXT4-fs (loop3): Remounting filesystem read-only
[  820.688213][T15927] EXT4-fs error (device loop3): ext4_acquire_dquot:6788: comm syz.3.4915: Failed to acquire dquot type 0
[  820.699841][T15927] EXT4-fs (loop3): Remounting filesystem read-only
[  820.706205][T15927] EXT4-fs (loop3): 1 orphan inode deleted
[  820.711748][T15927] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  820.720522][T15927] ext4 filesystem being mounted at /541/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  820.827778][T15912] usb 9-1: Using ep0 maxpacket: 8
[  820.839135][T15912] usb 9-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  820.857714][T15912] usb 9-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  820.865877][T15912] usb 9-1: Product: syz
[  820.869962][T15912] usb 9-1: Manufacturer: syz
[  820.887645][T15912] usb 9-1: SerialNumber: syz
[  820.895307][T15912] usb 9-1: config 0 descriptor??
[  820.939518][T15912] usb 10-1: USB disconnect, device number 45
[  821.127683][ T1506] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  821.307666][ T1506] usb 7-1: Using ep0 maxpacket: 32
[  821.314215][ T1506] usb 7-1: config 0 has an invalid interface number: 111 but max is 3
[  821.322424][ T1506] usb 7-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  821.335578][ T1506] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  821.364483][ T1506] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 4
[  821.373201][ T1506] usb 7-1: config 0 has no interface number 0
[  821.379133][ T1506] usb 7-1: config 0 interface 111 altsetting 1 endpoint 0xB has an invalid bInterval 138, changing to 11
[  821.390121][ T1506] usb 7-1: config 0 interface 111 altsetting 1 endpoint 0xC has invalid wMaxPacketSize 0
[  821.399783][ T1506] usb 7-1: config 0 interface 111 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 7
[  821.413231][ T1506] usb 7-1: config 0 interface 111 has no altsetting 0
[  821.421419][ T1506] usb 7-1: New USB device found, idVendor=2001, idProduct=3a02, bcdDevice=57.90
[  821.438728][ T1506] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  821.458325][ T1506] usb 7-1: Product: syz
[  821.462462][ T1506] usb 7-1: Manufacturer: syz
[  821.466862][ T1506] usb 7-1: SerialNumber: syz
[  821.475544][ T1506] usb 7-1: config 0 descriptor??
[  821.502690][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  821.683008][ T9950] usb 7-1: USB disconnect, device number 15
[  821.712011][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  821.797707][ T1506] usb 10-1: new high-speed USB device number 46 using dummy_hcd
[  822.348599][ T1506] usb 10-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  822.358847][ T1506] usb 10-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  822.371741][ T1506] usb 10-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  822.380681][ T1506] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  822.606537][ T1506] usb 10-1: string descriptor 0 read error: -71
[  822.614752][T15963] xt_TCPMSS: Only works on TCP SYN packets
[  822.621100][ T1506] aiptek 10-1:17.0: interface has no int in endpoints, but must have minimum 1
[  822.630610][ T1506] usb 10-1: USB disconnect, device number 46
[  823.088206][T15969] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  823.114102][T15969] loop3: detected capacity change from 0 to 512
[  823.233313][T15969] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.4922: corrupted xattr block 95
[  823.247125][T15969] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.4922: bg 0: block 7: invalid block bitmap
[  823.261274][T15969] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  823.271380][T15969] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.4922: corrupted xattr block 95
[  823.284759][T15969] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[  823.293860][T15969] EXT4-fs (loop3): 1 orphan inode deleted
[  823.299596][T15969] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  823.730544][T15912] usb 9-1: USB disconnect, device number 11
[  823.902949][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  823.916814][   T28] kauditd_printk_skb: 61 callbacks suppressed
[  823.916829][   T28] audit: type=1400 audit(1734577258.012:5642): avc:  denied  { create } for  pid=15977 comm="syz.9.4926" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  824.215788][T15972] loop0: detected capacity change from 0 to 256
[  824.276201][T15987] loop3: detected capacity change from 0 to 2048
[  824.327400][T15987] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  824.404946][T15980] loop8: detected capacity change from 0 to 40427
[  824.433794][T15980] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  824.441497][T15980] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  824.460161][T15980] F2FS-fs (loop8): Found nat_bits in checkpoint
[  824.525356][T15980] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  824.532780][T15980] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  826.220081][   T28] audit: type=1400 audit(1734577259.202:5643): avc:  denied  { mount } for  pid=15997 comm="syz.6.4929" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  826.255527][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  826.332319][T16011] loop6: detected capacity change from 0 to 256
[  826.374595][T16011] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  826.485556][T16011] exFAT-fs (loop6): hint_cluster is invalid (17)
[  826.749552][   T28] audit: type=1326 audit(1734577260.652:5644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  826.776008][   T28] audit: type=1326 audit(1734577260.652:5645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  826.830875][   T28] audit: type=1326 audit(1734577260.652:5646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  826.983892][   T28] audit: type=1326 audit(1734577260.652:5647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  827.007868][   T28] audit: type=1326 audit(1734577260.662:5648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  827.031497][   T28] audit: type=1326 audit(1734577260.662:5649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  827.054891][   T28] audit: type=1326 audit(1734577260.662:5650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  827.080931][   T28] audit: type=1326 audit(1734577260.662:5651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16012 comm="syz.9.4933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  833.113941][T16115] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  834.169426][   T28] audit: type=1326 audit(1734577267.412:5652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.333920][   T28] audit: type=1326 audit(1734577267.412:5653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.357413][   T28] audit: type=1326 audit(1734577267.412:5654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.380953][   T28] audit: type=1326 audit(1734577267.422:5655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.404389][   T28] audit: type=1326 audit(1734577267.422:5656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.497658][ T9151] usb 7-1: new full-speed USB device number 16 using dummy_hcd
[  834.505176][   T28] audit: type=1326 audit(1734577267.422:5657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.821975][   T28] audit: type=1326 audit(1734577267.422:5658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.865509][   T28] audit: type=1326 audit(1734577267.432:5659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16121 comm="syz.8.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  834.949799][ T9151] usb 7-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[  835.028115][T16146] loop0: detected capacity change from 0 to 512
[  835.075542][ T9151] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  835.100275][T16146] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  835.110711][T16146] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  835.120011][T16146] EXT4-fs error (device loop0): ext4_acquire_dquot:6788: comm syz.0.4970: Failed to acquire dquot type 0
[  835.132493][T16146] EXT4-fs (loop0): Remounting filesystem read-only
[  835.139026][T16146] EXT4-fs error (device loop0): ext4_acquire_dquot:6788: comm syz.0.4970: Failed to acquire dquot type 0
[  835.151036][T16146] EXT4-fs (loop0): Remounting filesystem read-only
[  835.158667][T16146] EXT4-fs error (device loop0): ext4_acquire_dquot:6788: comm syz.0.4970: Failed to acquire dquot type 0
[  835.204824][T16146] EXT4-fs (loop0): Remounting filesystem read-only
[  835.211407][T16146] EXT4-fs (loop0): 1 orphan inode deleted
[  835.217003][T16146] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  835.225982][T16146] ext4 filesystem being mounted at /387/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  836.616681][ T9151] usb 7-1: config 0 descriptor??
[  836.631890][ T9151] usb 7-1: can't set config #0, error -71
[  836.804753][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  836.807201][ T9151] usb 7-1: USB disconnect, device number 16
[  836.867765][  T366] usb 10-1: new high-speed USB device number 47 using dummy_hcd
[  836.900790][T16169] 9pnet_fd: Insufficient options for proto=fd
[  837.048526][  T366] usb 10-1: Using ep0 maxpacket: 32
[  837.060276][  T366] usb 10-1: config index 0 descriptor too short (expected 35577, got 27)
[  837.069789][  T366] usb 10-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  837.078446][  T366] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 92
[  837.087622][  T366] usb 10-1: config 1 has no interface number 0
[  837.094197][  T366] usb 10-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  837.105299][  T366] usb 10-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  837.118866][  T366] usb 10-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  837.129615][  T366] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  838.046402][T16186] loop8: detected capacity change from 0 to 8192
[  838.168226][T16186] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  838.757693][ T1506] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[  838.781565][T16210] 9pnet_fd: Insufficient options for proto=fd
[  838.809597][T16212] loop6: detected capacity change from 0 to 512
[  838.816277][T16212] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  838.972836][  T366] usb 10-1: USB disconnect, device number 47
[  839.063431][T16212] EXT4-fs (loop6): 1 orphan inode deleted
[  839.086001][T16212] EXT4-fs (loop6): 1 truncate cleaned up
[  839.096727][T16212] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  839.221213][ T1506] usb 4-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  839.231428][ T1506] usb 4-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  839.245349][ T1506] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  839.254757][ T1506] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  839.353445][T16223] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  839.376726][T16223] loop9: detected capacity change from 0 to 512
[  839.527938][T16222] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.6.4990: path /109/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  839.666669][T16222] EXT4-fs (loop6): Remounting filesystem read-only
[  840.495414][T14136] EXT4-fs (loop6): unmounting filesystem.
[  840.536423][T16223] EXT4-fs error (device loop9): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.9.4992: corrupted xattr block 95
[  840.550989][T16223] EXT4-fs error (device loop9): ext4_validate_block_bitmap:429: comm syz.9.4992: bg 0: block 7: invalid block bitmap
[  840.563810][T16223] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  840.573172][T16223] EXT4-fs error (device loop9): ext4_xattr_delete_inode:2925: inode #11: comm syz.9.4992: corrupted xattr block 95
[  840.585936][T16223] EXT4-fs warning (device loop9): ext4_evict_inode:299: xattr delete (err -117)
[  840.595086][T16223] EXT4-fs (loop9): 1 orphan inode deleted
[  840.600690][T16223] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  840.809123][ T1506] usb 4-1: string descriptor 0 read error: -71
[  840.815509][ T1506] aiptek 4-1:17.0: interface has no int in endpoints, but must have minimum 1
[  840.824762][ T1506] usb 4-1: USB disconnect, device number 62
[  840.858349][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  842.002873][T16243] loop3: detected capacity change from 0 to 8192
[  842.025869][T16243] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  842.286131][T16253] 9pnet_fd: Insufficient options for proto=fd
[  842.392936][T16261] loop9: detected capacity change from 0 to 512
[  843.087747][T16261] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  843.328638][T16261] EXT4-fs (loop9): 1 orphan inode deleted
[  843.338415][T16261] EXT4-fs (loop9): 1 truncate cleaned up
[  843.343891][T16261] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  843.453630][T16275] loop0: detected capacity change from 0 to 40427
[  843.483450][T16275] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  843.491361][T16275] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  844.558769][T16283] EXT4-fs error (device loop9): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz.9.5004: path /560/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  844.581373][T16283] EXT4-fs (loop9): Remounting filesystem read-only
[  844.706434][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  844.706450][   T28] audit: type=1326 audit(1734577278.802:5661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16289 comm="syz.8.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  844.741878][   T28] audit: type=1326 audit(1734577278.842:5662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16289 comm="syz.8.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  844.767729][T12602] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  844.777326][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  844.822056][T16292] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  844.846233][T16292] loop3: detected capacity change from 0 to 512
[  844.907242][T16292] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.5006: corrupted xattr block 95
[  844.920697][T16292] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.5006: bg 0: block 7: invalid block bitmap
[  844.935090][T16292] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  844.944788][T16292] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.5006: corrupted xattr block 95
[  844.958004][T16292] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[  844.967073][T16292] EXT4-fs (loop3): 1 orphan inode deleted
[  844.972745][T16292] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  845.007452][   T28] audit: type=1326 audit(1734577278.842:5663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16289 comm="syz.8.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  845.036144][T12602] usb 7-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  845.181321][T16275] F2FS-fs (loop0): Found nat_bits in checkpoint
[  845.190633][T12602] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  845.209121][T16297] loop9: detected capacity change from 0 to 128
[  845.225597][T12602] usb 7-1: Product: syz
[  845.265217][T12602] usb 7-1: Manufacturer: syz
[  845.273287][T12602] usb 7-1: SerialNumber: syz
[  845.293567][   T28] audit: type=1326 audit(1734577278.842:5664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16289 comm="syz.8.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  845.323033][T12602] usb 7-1: config 0 descriptor??
[  845.391918][T12602] usb-storage 7-1:0.0: USB Mass Storage device detected
[  845.399312][   T28] audit: type=1326 audit(1734577278.842:5665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16289 comm="syz.8.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2dd985d29 code=0x7ffc0000
[  845.438479][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  845.716018][T16311] netlink: 'syz.8.5017': attribute type 30 has an invalid length.
[  845.735546][T16275] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  845.767697][   T28] audit: type=1400 audit(1734577279.852:5666): avc:  denied  { setopt } for  pid=16315 comm="syz.8.5018" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  845.781118][T16275] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  847.319710][T16337] loop3: detected capacity change from 0 to 1024
[  847.326744][T16337] EXT4-fs (loop3): Can't support bigalloc feature without extents feature
[  847.326744][T16337] 
[  847.338425][T16337] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  847.693249][T16348] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  847.717015][T16348] loop3: detected capacity change from 0 to 512
[  848.271392][T16348] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.5026: corrupted xattr block 95
[  848.284928][T16348] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.5026: bg 0: block 7: invalid block bitmap
[  848.299242][T16348] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  848.308692][T16348] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.5026: corrupted xattr block 95
[  848.322652][T16348] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[  848.331770][T16348] EXT4-fs (loop3): 1 orphan inode deleted
[  848.337355][T16348] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  848.536849][T12602] usb 7-1: USB disconnect, device number 17
[  848.712597][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  849.079224][T16365] mmap: syz.0.5029 (16365) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  850.090039][   T28] audit: type=1400 audit(1734577284.192:5667): avc:  denied  { read } for  pid=16376 comm="syz.8.5036" name="snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  850.114500][   T28] audit: type=1400 audit(1734577284.192:5668): avc:  denied  { open } for  pid=16376 comm="syz.8.5036" path="/dev/snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  850.193213][T16387] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  850.235455][T16387] loop3: detected capacity change from 0 to 512
[  852.936639][T16387] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.3.5038: corrupted xattr block 95
[  852.949233][T16387] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.5038: bg 0: block 7: invalid block bitmap
[  852.961515][T16387] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  852.970251][T16387] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2925: inode #11: comm syz.3.5038: corrupted xattr block 95
[  852.982546][T16387] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117)
[  852.991583][T16387] EXT4-fs (loop3): 1 orphan inode deleted
[  852.997155][T16387] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  853.095949][   T28] audit: type=1400 audit(1734577287.192:5669): avc:  denied  { create } for  pid=16396 comm="syz.6.5041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  853.148013][T16397] device veth0_to_team entered promiscuous mode
[  853.222572][   T28] audit: type=1326 audit(1734577287.322:5670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16398 comm="syz.9.5042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  853.246610][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  853.252214][   T28] audit: type=1326 audit(1734577287.322:5671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16398 comm="syz.9.5042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  853.302798][   T28] audit: type=1326 audit(1734577287.402:5672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16411 comm="syz.3.5044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  853.339470][   T28] audit: type=1326 audit(1734577287.432:5673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16411 comm="syz.3.5044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  853.363764][   T28] audit: type=1326 audit(1734577287.432:5674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16411 comm="syz.3.5044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  853.387237][   T28] audit: type=1326 audit(1734577287.432:5675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16411 comm="syz.3.5044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  853.411054][   T28] audit: type=1326 audit(1734577287.432:5676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16411 comm="syz.3.5044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  854.635554][T16429] loop8: detected capacity change from 0 to 2048
[  854.644203][T16430] loop9: detected capacity change from 0 to 2048
[  854.651149][T16431] loop3: detected capacity change from 0 to 2048
[  854.691772][T16429] EXT4-fs: Ignoring removed mblk_io_submit option
[  854.768475][T16430] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  854.782595][T16431] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  854.782630][T16429] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  854.917251][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  855.031505][T14070] EXT4-fs error (device loop8): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /148/file0/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  856.167738][T16451] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  856.369864][T16451] loop0: detected capacity change from 0 to 512
[  856.860522][T16451] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.0.5055: corrupted xattr block 95
[  856.873494][T16451] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.5055: bg 0: block 7: invalid block bitmap
[  856.886692][T16451] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  856.896094][T16451] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2925: inode #11: comm syz.0.5055: corrupted xattr block 95
[  856.908974][T16451] EXT4-fs warning (device loop0): ext4_evict_inode:299: xattr delete (err -117)
[  856.917996][T16451] EXT4-fs (loop0): 1 orphan inode deleted
[  856.923612][T16451] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  857.077779][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  857.084286][T14070] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 34: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=4096, inode=0, rec_len=1025, size=2048 fake=0
[  857.115915][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  857.136183][T14070] EXT4-fs error (device loop8): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /148/file0/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  857.164383][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  857.174629][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  857.182038][T14070] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 34: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=4096, inode=0, rec_len=1025, size=2048 fake=0
[  857.211042][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  857.222761][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  857.229529][T14070] EXT4-fs error (device loop8): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /148/file0/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  857.273018][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  857.291651][T14070] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 34: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=4096, inode=0, rec_len=1025, size=2048 fake=0
[  857.367190][T16467] xt_TCPMSS: Only works on TCP SYN packets
[  857.512815][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  857.541415][T16466] loop6: detected capacity change from 0 to 512
[  857.565753][T14070] EXT4-fs error (device loop8): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /148/file0/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  857.710357][T16466] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  857.736542][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  857.774565][T14070] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 34: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=4096, inode=0, rec_len=1025, size=2048 fake=0
[  857.804391][T16466] EXT4-fs (loop6): 1 truncate cleaned up
[  857.829850][T16466] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  857.980491][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  858.097211][T14136] EXT4-fs (loop6): unmounting filesystem.
[  858.105373][T14070] EXT4-fs error (device loop8): ext4_readdir:260: inode #11: block 34: comm syz-executor: path /148/file0/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1025, size=2048 fake=0
[  858.164081][T14070] EXT4-fs (loop8): Remounting filesystem read-only
[  858.172036][T14070] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 34: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=4096, inode=0, rec_len=1025, size=2048 fake=0
[  858.267987][T16480] I/O error, dev loop13, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  858.277083][T16480] FAT-fs (loop13): unable to read boot sector
[  858.280264][T16483] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  858.302543][T16483] device bridge_slave_0 left promiscuous mode
[  858.311080][T16483] bridge0: port 1(bridge_slave_0) entered disabled state
[  858.319625][T16483] device bridge_slave_1 left promiscuous mode
[  858.325638][T16483] bridge0: port 2(bridge_slave_1) entered disabled state
[  858.379182][T16482] netlink: 'syz.3.5070': attribute type 7 has an invalid length.
[  858.386741][T16482] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5070'.
[  859.056125][T16497] loop3: detected capacity change from 0 to 1024
[  859.077118][T16497] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  859.094935][T16495] loop0: detected capacity change from 0 to 2048
[  859.129463][T16495] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  859.391295][T16508] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5077'.
[  859.438159][T16508] fuse: Bad value for 'rootmode'
[  859.690946][ T1055] device bridge_slave_1 left promiscuous mode
[  859.697371][ T1055] bridge0: port 2(bridge_slave_1) entered disabled state
[  859.716833][T16516] loop3: detected capacity change from 0 to 512
[  859.725729][ T1055] device bridge_slave_0 left promiscuous mode
[  859.745216][T16516] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[  859.778676][ T1055] bridge0: port 1(bridge_slave_0) entered disabled state
[  859.782280][T16516] EXT4-fs: error: could not find journal device path
[  859.796884][ T1055] device veth1_macvtap left promiscuous mode
[  859.809311][ T1055] device veth0_vlan left promiscuous mode
[  859.842926][   T28] kauditd_printk_skb: 20 callbacks suppressed
[  859.842942][   T28] audit: type=1400 audit(1734577293.942:5697): avc:  denied  { create } for  pid=16520 comm="syz.3.5083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  860.011242][T16519] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  860.019190][T16524] netlink: 3 bytes leftover after parsing attributes in process `syz.3.5083'.
[  860.071385][T16527] netlink: 76 bytes leftover after parsing attributes in process `syz.9.5084'.
[  860.105087][T16514] bridge0: port 1(bridge_slave_0) entered blocking state
[  860.128069][T16514] bridge0: port 1(bridge_slave_0) entered disabled state
[  860.151137][T16514] device bridge_slave_0 entered promiscuous mode
[  860.166132][T16514] bridge0: port 2(bridge_slave_1) entered blocking state
[  860.173105][T16514] bridge0: port 2(bridge_slave_1) entered disabled state
[  860.180504][T16514] device bridge_slave_1 entered promiscuous mode
[  860.194312][T16531] loop9: detected capacity change from 0 to 128
[  860.257478][ T1898] kworker/u4:7: attempt to access beyond end of device
[  860.257478][ T1898] loop9: rw=1, sector=145, nr_sectors = 896 limit=128
[  860.302584][T16514] bridge0: port 2(bridge_slave_1) entered blocking state
[  860.309488][T16514] bridge0: port 2(bridge_slave_1) entered forwarding state
[  860.316592][T16514] bridge0: port 1(bridge_slave_0) entered blocking state
[  860.316635][   T28] audit: type=1326 audit(1734577294.412:5698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  860.323353][T16514] bridge0: port 1(bridge_slave_0) entered forwarding state
[  860.435100][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  860.443421][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[  860.450814][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[  860.467202][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  860.483443][   T28] audit: type=1326 audit(1734577294.412:5699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  860.509386][  T317] bridge0: port 1(bridge_slave_0) entered blocking state
[  860.516262][  T317] bridge0: port 1(bridge_slave_0) entered forwarding state
[  860.524014][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  860.531926][   T28] audit: type=1326 audit(1734577294.412:5700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  860.555861][  T317] bridge0: port 2(bridge_slave_1) entered blocking state
[  860.562740][  T317] bridge0: port 2(bridge_slave_1) entered forwarding state
[  860.590878][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  860.612738][   T28] audit: type=1326 audit(1734577294.412:5701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  860.639922][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  860.703736][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  860.792140][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  860.812366][   T28] audit: type=1326 audit(1734577294.412:5702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  861.074798][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  861.085017][   T28] audit: type=1326 audit(1734577294.412:5703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  861.086140][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  861.118784][   T28] audit: type=1326 audit(1734577294.422:5704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  861.142880][   T28] audit: type=1326 audit(1734577294.422:5705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  861.168242][T16514] device veth0_vlan entered promiscuous mode
[  861.207387][   T28] audit: type=1326 audit(1734577294.452:5706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16537 comm="syz.9.5088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f0edd585d29 code=0x7ffc0000
[  861.219780][T16514] device veth1_macvtap entered promiscuous mode
[  861.275957][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  861.299102][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  861.308308][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  861.316984][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  861.335654][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  861.343898][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  861.354331][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  861.409271][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  861.459319][T16553] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  861.466385][T16553] IPv6: NLM_F_CREATE should be set when creating new route
[  861.489820][T16553] loop6: detected capacity change from 0 to 512
[  861.772110][T16553] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.6.5091: corrupted xattr block 95
[  861.785378][T16553] EXT4-fs error (device loop6): ext4_validate_block_bitmap:429: comm syz.6.5091: bg 0: block 7: invalid block bitmap
[  861.798937][T16553] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  861.808030][T16553] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2925: inode #11: comm syz.6.5091: corrupted xattr block 95
[  861.820696][T16553] EXT4-fs warning (device loop6): ext4_evict_inode:299: xattr delete (err -117)
[  861.829738][T16553] EXT4-fs (loop6): 1 orphan inode deleted
[  861.835346][T16553] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  862.148483][T16562] loop1: detected capacity change from 0 to 2048
[  862.164580][T16562] EXT4-fs: Ignoring removed mblk_io_submit option
[  862.210192][T16562] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  862.278708][T14136] EXT4-fs (loop6): unmounting filesystem.
[  862.334040][T16554] loop0: detected capacity change from 0 to 256
[  862.342631][T16572] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5095'.
[  862.390463][T16558] loop3: detected capacity change from 0 to 40427
[  862.428065][T16558] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  862.440382][T16558] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  862.495063][T16558] F2FS-fs (loop3): Found nat_bits in checkpoint
[  862.618637][T16558] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  862.629730][T16558] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  862.748945][T16591] loop6: detected capacity change from 0 to 2048
[  863.035282][T16591] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  863.427815][T16557] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  863.449377][T16600] loop0: detected capacity change from 0 to 2048
[  863.496991][T16557] EXT4-fs (loop1): Remounting filesystem read-only
[  863.560787][T16600] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  863.636900][T16602] loop9: detected capacity change from 0 to 8192
[  863.682641][T16602] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  863.900253][T16514] EXT4-fs (loop1): unmounting filesystem.
[  863.999431][T14136] EXT4-fs (loop6): unmounting filesystem.
[  864.005395][T16619] 9pnet: Could not find request transport: fd0x0000000000000003
[  864.125005][T16627] bridge0: port 2(bridge_slave_1) entered disabled state
[  864.132065][T16627] bridge0: port 1(bridge_slave_0) entered disabled state
[  864.594629][T16641] loop6: detected capacity change from 0 to 2048
[  864.602578][T16641] EXT4-fs: Ignoring removed mblk_io_submit option
[  864.635283][T16641] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  864.873915][T16654] loop3: detected capacity change from 0 to 2048
[  864.904734][T16658] loop9: detected capacity change from 0 to 512
[  864.919931][T16658] EXT4-fs error (device loop9): ext4_xattr_inode_iget:404: comm syz.9.5122: inode #1: comm syz.9.5122: iget: illegal inode #
[  864.933498][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  864.936315][T16654] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  864.952198][T16658] EXT4-fs error (device loop9): ext4_xattr_inode_iget:409: comm syz.9.5122: error while reading EA inode 1 err=-117
[  864.974714][T16658] EXT4-fs (loop9): 1 orphan inode deleted
[  864.986847][T16658] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  865.068751][ T7035] EXT4-fs error (device loop9): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  865.099109][T16663] loop1: detected capacity change from 0 to 512
[  865.108235][T16663] EXT4-fs: Invalid want_extra_isize 6
[  865.113944][ T7035] EXT4-fs error (device loop9): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 15
[  865.125316][   T28] kauditd_printk_skb: 19 callbacks suppressed
[  865.125332][   T28] audit: type=1400 audit(1734577299.212:5726): avc:  denied  { unlink } for  pid=7035 comm="syz-executor" name="lost+found" dev="loop9" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=blk_file permissive=1
[  865.160811][T16663] loop1: detected capacity change from 0 to 1024
[  865.167339][ T7035] EXT4-fs error (device loop9): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 15
[  865.180308][T16663] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  865.249398][ T7035] EXT4-fs (loop9): unmounting filesystem.
[  865.276104][T16670] 9pnet: Could not find request transport: fd0x0000000000000003
[  865.740109][T14136] EXT4-fs (loop6): unmounting filesystem.
[  865.893562][ T7561] EXT4-fs (loop3): unmounting filesystem.
[  865.899928][T16673] bridge0: port 1(bridge_slave_0) entered blocking state
[  865.916938][T16673] bridge0: port 1(bridge_slave_0) entered disabled state
[  865.930303][T16673] device bridge_slave_0 entered promiscuous mode
[  865.937159][T16673] bridge0: port 2(bridge_slave_1) entered blocking state
[  865.952652][T16673] bridge0: port 2(bridge_slave_1) entered disabled state
[  865.961486][T16514] EXT4-fs (loop1): unmounting filesystem.
[  865.961875][T16673] device bridge_slave_1 entered promiscuous mode
[  866.029968][   T28] audit: type=1326 audit(1734577300.132:5727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16688 comm="syz.3.5131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  866.073089][   T28] audit: type=1326 audit(1734577300.132:5728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16688 comm="syz.3.5131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  866.073117][   T28] audit: type=1326 audit(1734577300.132:5729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16688 comm="syz.3.5131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  866.073138][   T28] audit: type=1326 audit(1734577300.132:5730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16688 comm="syz.3.5131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  866.073159][   T28] audit: type=1326 audit(1734577300.132:5731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16688 comm="syz.3.5131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0c5d85d29 code=0x7ffc0000
[  866.081363][T16673] bridge0: port 2(bridge_slave_1) entered blocking state
[  866.081382][T16673] bridge0: port 2(bridge_slave_1) entered forwarding state
[  866.081458][T16673] bridge0: port 1(bridge_slave_0) entered blocking state
[  866.081471][T16673] bridge0: port 1(bridge_slave_0) entered forwarding state
[  866.099958][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  866.100353][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[  866.100567][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[  866.102836][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  866.103017][  T317] bridge0: port 1(bridge_slave_0) entered blocking state
[  866.103031][  T317] bridge0: port 1(bridge_slave_0) entered forwarding state
[  866.104551][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  866.104721][  T317] bridge0: port 2(bridge_slave_1) entered blocking state
[  866.104736][  T317] bridge0: port 2(bridge_slave_1) entered forwarding state
[  866.112583][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  866.114246][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  866.123183][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  866.127391][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  866.128889][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  866.129168][  T317] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  866.130563][T16673] device veth0_vlan entered promiscuous mode
[  866.162081][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  866.163688][T16673] device veth1_macvtap entered promiscuous mode
[  866.168280][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  866.170671][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  866.297721][ T1506] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  866.387866][   T28] audit: type=1326 audit(1734577300.432:5732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16695 comm="syz.4.5135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc921585d29 code=0x7ffc0000
[  866.438570][T16702] 9pnet_fd: Insufficient options for proto=fd
[  866.441505][   T28] audit: type=1326 audit(1734577300.432:5733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16695 comm="syz.4.5135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc921585d29 code=0x7ffc0000
[  866.570407][T16709] loop6: detected capacity change from 0 to 512
[  866.593867][T16712] loop0: detected capacity change from 0 to 512
[  866.601124][T16709] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  866.611517][T16709] ext4 filesystem being mounted at /140/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  866.699493][T14136] EXT4-fs (loop6): unmounting filesystem.
[  866.707706][ T1506] usb 2-1: Using ep0 maxpacket: 16
[  866.716056][T16712] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  866.725088][T16712] ext4 filesystem being mounted at /407/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  866.725839][ T1506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  866.751825][ T1506] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  866.761702][ T1506] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  866.775095][ T1506] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  866.784133][ T1506] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  866.795807][ T1506] usb 2-1: config 0 descriptor??
[  867.202882][T16727] bridge0: port 1(bridge_slave_0) entered blocking state
[  867.209966][T16727] bridge0: port 1(bridge_slave_0) entered disabled state
[  867.217426][T16727] device bridge_slave_0 entered promiscuous mode
[  867.224436][T16727] bridge0: port 2(bridge_slave_1) entered blocking state
[  867.231976][T16727] bridge0: port 2(bridge_slave_1) entered disabled state
[  867.239523][T16727] device bridge_slave_1 entered promiscuous mode
[  867.247517][ T1506] microsoft 0003:045E:07DA.0079: unknown main item tag 0x2
[  867.254692][ T1506] microsoft 0003:045E:07DA.0079: unknown main item tag 0x2
[  867.261913][ T1506] microsoft 0003:045E:07DA.0079: unknown main item tag 0x0
[  867.269181][ T1506] microsoft 0003:045E:07DA.0079: unknown main item tag 0x0
[  867.276309][ T1506] microsoft 0003:045E:07DA.0079: unknown main item tag 0x0
[  867.288381][ T1506] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0079/input/input67
[  867.345895][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  867.353405][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  867.362745][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  867.371414][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  867.372153][ T1506] microsoft 0003:045E:07DA.0079: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  867.380333][T14076] bridge0: port 1(bridge_slave_0) entered blocking state
[  867.397835][T14076] bridge0: port 1(bridge_slave_0) entered forwarding state
[  867.416868][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  867.425289][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  867.433593][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  867.442148][T14076] bridge0: port 2(bridge_slave_1) entered blocking state
[  867.449049][T14076] bridge0: port 2(bridge_slave_1) entered forwarding state
[  867.465077][  T318] usb 2-1: USB disconnect, device number 47
[  867.474284][ T9940] EXT4-fs (loop0): unmounting filesystem.
[  867.488442][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  867.496387][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  867.513170][T14076] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  867.517161][   T28] audit: type=1326 audit(1734577301.612:5734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16732 comm="syz.0.5143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb30b85d29 code=0x7ffc0000
[  867.548719][ T1898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  867.556928][ T1898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  867.564410][ T1898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  867.568142][   T28] audit: type=1326 audit(1734577301.612:5735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16732 comm="syz.0.5143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb30b85d29 code=0x7ffc0000
[  867.573108][T16727] device veth0_vlan entered promiscuous mode
[  867.611418][ T1898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  867.620974][T16727] device veth1_macvtap entered promiscuous mode
[  867.639760][ T1898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  867.662495][T16738] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5145'.
[  867.672944][ T1898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  867.696527][T16740] 9pnet_fd: Insufficient options for proto=fd
[  867.716874][T16742] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  867.729648][T16742] FAT-fs (loop7): unable to read boot sector
[  867.771967][T16748] loop3: detected capacity change from 0 to 2048
[  867.805187][T16748] EXT4-fs (loop3): failed to initialize system zone (-117)
[  867.813295][T16748] EXT4-fs (loop3): mount failed
[  867.840088][  T313] device bridge_slave_1 left promiscuous mode
[  867.846153][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[  867.854098][  T313] device bridge_slave_0 left promiscuous mode
[  867.873183][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[  867.882009][  T313] device veth1_macvtap left promiscuous mode
[  867.892006][  T313] device veth0_vlan left promiscuous mode
[  867.996620][T16757] loop6: detected capacity change from 0 to 256
[  869.499005][T16790] netlink: 76 bytes leftover after parsing attributes in process `syz.1.5163'.
[  869.654625][T16798] loop3: detected capacity change from 0 to 512
[  869.721258][T16798] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  869.739131][T16798] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  869.753757][T16801] loop6: detected capacity change from 0 to 512
[  869.782428][T16801] EXT4-fs: Invalid want_extra_isize 6
[  869.857944][T16801] loop6: detected capacity change from 0 to 1024
[  869.901084][T16801] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  869.960825][T16811] syz.0.5170[16811] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  869.960900][T16811] syz.0.5170[16811] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  870.153028][T16817] loop4: detected capacity change from 0 to 512
[  870.305604][T16817] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  870.314921][T16817] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  870.505786][T16727] EXT4-fs (loop3): unmounting filesystem.
[  870.513045][T16825] netlink: 300 bytes leftover after parsing attributes in process `syz.1.5173'.
[  870.550032][T16827] loop1: detected capacity change from 0 to 512
[  870.565574][T16827] __quota_error: 31 callbacks suppressed
[  870.565593][T16827] Quota error (device loop1): v2_read_file_info: Number of blocks too big for quota file size (2103296 > 6144).
[  870.592693][T16827] EXT4-fs warning (device loop1): ext4_enable_quotas:7023: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  870.608706][T14136] EXT4-fs (loop6): unmounting filesystem.
[  870.631217][T16827] EXT4-fs (loop1): mount failed
[  870.704665][T16827] netlink: 'syz.1.5175': attribute type 4 has an invalid length.
[  870.826159][T16844] loop6: detected capacity change from 0 to 512
[  870.913950][T16844] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.6.5177: corrupted xattr block 95
[  870.927239][T16844] EXT4-fs error (device loop6): ext4_validate_block_bitmap:429: comm syz.6.5177: bg 0: block 7: invalid block bitmap
[  870.940840][T16844] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  870.951281][T16844] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2925: inode #11: comm syz.6.5177: corrupted xattr block 95
[  870.964606][T16844] EXT4-fs warning (device loop6): ext4_evict_inode:299: xattr delete (err -117)
[  870.973685][T16844] EXT4-fs (loop6): 1 orphan inode deleted
[  870.979415][T16844] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  871.268389][T16849] loop1: detected capacity change from 0 to 512
[  871.337699][   T28] audit: type=1400 audit(1734577305.342:5767): avc:  denied  { connect } for  pid=16848 comm="syz.1.5181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  871.360077][T16849] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  871.413380][T16849] EXT4-fs (loop1): 1 truncate cleaned up
[  871.430234][T16849] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  871.560732][T16514] EXT4-fs (loop1): unmounting filesystem.
[  871.611857][T16853] 9pnet_fd: Insufficient options for proto=fd
[  871.640528][   T28] audit: type=1400 audit(1734577305.742:5768): avc:  denied  { watch watch_reads } for  pid=16854 comm="syz.3.5184" path="/12/file0" dev="tmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  871.689626][T14136] EXT4-fs (loop6): unmounting filesystem.
[  871.728036][T16673] EXT4-fs (loop4): unmounting filesystem.
[  871.765356][   T28] audit: type=1326 audit(1734577305.862:5769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.1.5182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3668f85d29 code=0x7ffc0000
[  871.768659][T16867] loop1: detected capacity change from 0 to 512
[  871.795305][T16866] 9pnet: Could not find request transport: rdma
[  871.818130][   T28] audit: type=1326 audit(1734577305.862:5770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.1.5182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3668f85d29 code=0x7ffc0000
[  871.845612][T16867] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  871.848682][T16873] loop6: detected capacity change from 0 to 1024
[  871.862920][T16867] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  871.863407][   T28] audit: type=1326 audit(1734577305.862:5771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.1.5182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3668f85d29 code=0x7ffc0000
[  871.901340][   T28] audit: type=1326 audit(1734577305.862:5772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.1.5182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3668f85d29 code=0x7ffc0000
[  871.924968][   T28] audit: type=1326 audit(1734577305.862:5773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.1.5182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3668f85d29 code=0x7ffc0000
[  871.948540][   T28] audit: type=1326 audit(1734577305.862:5774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.1.5182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3668f85d29 code=0x7ffc0000
[  871.949572][T16873] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  871.972243][   T28] audit: type=1326 audit(1734577305.862:5775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16859 comm="syz.1.5182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3668f85d63 code=0x7ffc0000
[  872.061102][T16873] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2739: inode #12: comm syz.6.5191: corrupted in-inode xattr
[  872.081492][T16514] EXT4-fs (loop1): unmounting filesystem.
[  872.094100][T14136] EXT4-fs (loop6): unmounting filesystem.
[  872.168460][T16285] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[  872.232657][T16882] loop0: detected capacity change from 0 to 512
[  872.337755][T16285] usb 4-1: device descriptor read/64, error -71
[  872.627640][T16285] usb 4-1: device descriptor read/64, error -71
[  872.640276][T16882] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  872.650071][T16882] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  872.750337][T16902] loop6: detected capacity change from 0 to 256
[  872.851608][T16875] EXT4-fs error (device loop0): ext4_do_update_inode:5226: inode #2: comm syz.0.5192: corrupted inode contents
[  872.864122][T16875] EXT4-fs error (device loop0): ext4_dirty_inode:6091: inode #2: comm syz.0.5192: mark_inode_dirty error
[  872.876498][T16875] EXT4-fs error (device loop0): ext4_do_update_inode:5226: inode #2: comm syz.0.5192: corrupted inode contents
[  872.888715][T16875] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.5192: mark_inode_dirty error
[  872.907718][T16285] usb 4-1: new high-speed USB device number 64 using dummy_hcd
[  873.147835][T16285] usb 4-1: device descriptor read/64, error -71
[  873.165224][T16904] loop4: detected capacity change from 0 to 256
[  873.357442][T16912] loop1: detected capacity change from 0 to 8192
[  873.417711][T16285] usb 4-1: device descriptor read/64, error -71
[  873.430457][T16912] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  873.547767][T16285] usb usb4-port1: attempt power cycle
[  873.802831][T16924] loop6: detected capacity change from 0 to 512
[  873.826131][T16924] EXT4-fs: Invalid want_extra_isize 6
[  873.870573][T16924] loop6: detected capacity change from 0 to 1024
[  873.892769][T16924] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  873.967622][T16285] usb 4-1: new high-speed USB device number 65 using dummy_hcd
[  874.008681][T16285] usb 4-1: device descriptor read/8, error -71
[  874.159189][T16285] usb 4-1: device descriptor read/8, error -71
[  874.437656][T16285] usb 4-1: new high-speed USB device number 66 using dummy_hcd
[  874.478955][T16285] usb 4-1: device descriptor read/8, error -71
[  874.629055][T16285] usb 4-1: device descriptor read/8, error -71
[  874.778130][T16285] usb usb4-port1: unable to enumerate USB device
[  874.827982][T14136] EXT4-fs (loop6): unmounting filesystem.
[  876.400760][T16964] 9pnet_fd: Insufficient options for proto=fd
[  877.719108][T16977] loop3: detected capacity change from 0 to 256
[  878.787834][T16897] ------------[ cut here ]------------
[  878.793121][T16897] kernel BUG at fs/buffer.c:2714!
[  878.828344][T16897] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  878.832429][   T28] kauditd_printk_skb: 101 callbacks suppressed
[  878.832444][   T28] audit: type=1400 audit(1734577312.922:5877): avc:  denied  { mount } for  pid=16973 comm="syz.3.5225" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  878.834247][T16897] CPU: 0 PID: 16897 Comm: kmmpd-loop0 Not tainted 6.1.118-syzkaller-00073-ge50cf165f4e7 #0
[  878.834267][T16897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  878.834275][T16897] RIP: 0010:submit_bh_wbc+0x4cd/0x4f0
[  878.834319][T16897] Code: c3 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c bd fe ff ff 48 89 df e8 d4 c3 e6 ff e9 b0 fe ff ff e8 8a 50 9f ff 0f 0b e8 83 50 9f ff <0f> 0b e8 7c 50 9f ff 0f 0b e8 75 50 9f ff 0f 0b e8 6e 50 9f ff 0f
[  878.834331][T16897] RSP: 0018:ffffc90000dc7c20 EFLAGS: 00010293
[  878.834346][T16897] RAX: ffffffff81d6362d RBX: 0000000000000000 RCX: ffff888116655100
[  878.834356][T16897] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  878.834366][T16897] RBP: ffffc90000dc7c70 R08: ffffffff81d63200 R09: ffffed10200b97e4
[  878.834378][T16897] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  878.834389][T16897] R13: 1ffff110200b97e3 R14: ffff8881005cbf18 R15: 0000000000003801
[  878.834399][T16897] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  878.834411][T16897] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  878.834421][T16897] CR2: 0000001b30e20220 CR3: 000000000700f000 CR4: 00000000003506b0
[  878.834434][T16897] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  878.834444][T16897] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  878.834453][T16897] Call Trace:
[  878.834458][T16897]  <TASK>
[  878.834465][T16897]  ? __die_body+0x62/0xb0
[  878.834482][T16897]  ? die+0x88/0xb0
[  878.834506][T16897]  ? do_trap+0x103/0x330
[  878.834527][T16897]  ? submit_bh_wbc+0x4cd/0x4f0
[  878.834547][T16897]  ? handle_invalid_op+0x95/0xc0
[  878.834567][T16897]  ? submit_bh_wbc+0x4cd/0x4f0
[  878.834586][T16897]  ? exc_invalid_op+0x32/0x50
[  878.834605][T16897]  ? asm_exc_invalid_op+0x1b/0x20
[  878.834625][T16897]  ? submit_bh_wbc+0xa0/0x4f0
[  878.834644][T16897]  ? submit_bh_wbc+0x4cd/0x4f0
[  878.834664][T16897]  ? submit_bh_wbc+0x4cd/0x4f0
[  878.834685][T16897]  ? __kasan_check_read+0x11/0x20
[  878.834702][T16897]  submit_bh+0x1d/0x30
[  878.834722][T16897]  write_mmp_block_thawed+0x3a0/0x570
[  878.834742][T16897]  ? read_mmp_block+0x7d0/0x7d0
[  878.834757][T16897]  ? update_process_times+0x1b0/0x1b0
[  878.834779][T16897]  write_mmp_block+0x12b/0x2a0
[  878.834796][T16897]  kmmpd+0x40c/0xa10
[  878.834811][T16897]  ? write_mmp_block_thawed+0x570/0x570
[  878.834826][T16897]  ? __kthread_parkme+0x12d/0x180
[  878.834840][T16897]  kthread+0x26d/0x300
[  878.834853][T16897]  ? write_mmp_block_thawed+0x570/0x570
[  878.834869][T16897]  ? kthread_blkcg+0xd0/0xd0
[  878.834884][T16897]  ret_from_fork+0x1f/0x30
[  878.834904][T16897]  </TASK>
[  878.834909][T16897] Modules linked in:
[  878.834959][T16897] ---[ end trace 0000000000000000 ]---
[  878.834968][T16897] RIP: 0010:submit_bh_wbc+0x4cd/0x4f0
[  878.834990][T16897] Code: c3 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c bd fe ff ff 48 89 df e8 d4 c3 e6 ff e9 b0 fe ff ff e8 8a 50 9f ff 0f 0b e8 83 50 9f ff <0f> 0b e8 7c 50 9f ff 0f 0b e8 75 50 9f ff 0f 0b e8 6e 50 9f ff 0f
[  878.835004][T16897] RSP: 0018:ffffc90000dc7c20 EFLAGS: 00010293
[  879.153705][T16897] RAX: ffffffff81d6362d RBX: 0000000000000000 RCX: ffff888116655100
[  879.161670][T16897] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  879.169553][T16897] RBP: ffffc90000dc7c70 R08: ffffffff81d63200 R09: ffffed10200b97e4
[  879.177269][T16897] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  879.185099][T16897] R13: 1ffff110200b97e3 R14: ffff8881005cbf18 R15: 0000000000003801
[  879.192981][T16897] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  879.201783][T16897] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  879.208837][T16897] CR2: 000000110c306683 CR3: 0000000126567000 CR4: 00000000003506b0
[  879.216708][T16897] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  879.224842][T16897] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  879.233279][T16897] Kernel panic - not syncing: Fatal exception
[  879.239416][T16897] Kernel Offset: disabled
[  879.243537][T16897] Rebooting in 86400 seconds..