last executing test programs:

32m24.783054128s ago: executing program 4 (id=305):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$tty1(0xc, 0x4, 0x1)

32m24.674647228s ago: executing program 4 (id=307):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x2, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010700000000000000002600181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000000))

32m24.638167778s ago: executing program 4 (id=308):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0xfb36b7c5edaff0c7, 0x0, 0x1, 0x0, &(0x7f0000000000))
chdir(&(0x7f0000000140)='./file0\x00')
creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3e0, 0x1b0, 0xc8, 0x8, 0x1b0, 0x5803, 0x310, 0x2e8, 0x2e8, 0x310, 0x2e8, 0x3, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1b0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67442c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket1={{0x28}, 0xa490f54eab606508}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@remote, @mcast2, [], [], 'macvtap0\x00', 'syzkaller1\x00'}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x440)

32m22.142079634s ago: executing program 4 (id=310):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800700, &(0x7f0000000880)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@sysvgroups}, {@usrjquota}]}, 0x3, 0x467, &(0x7f0000002280)="$eJzs3M9rHFUcAPDvzCb93SbWKrRWjRYx+CNp0qo9eFEUPFQU9FCPcZOW0m0jTQRbio0i9SJIQc/iUfAv8OZF1JPgVe9SKBqEVk+R2Z1JN9vdZNNsdmv384Fp39t5M/O+O+/tvJm3mwD61kj2TxKxKyJ+i4ihWnZlgZHafzcXL5X/WbxUTmJp6a0/k2q5G4uXykXRYrudeWY0jUg/SfKDxNb63c5duHhmqlKZOZ/nx+fPvjc+d+His6fPTp2aOTVzbvLYsaNHJl54fvK5tuJI1lifxXXjwIezB/e/9s7V18snrr7707fZNrvy9fVxdMpIFvhfS1WN657o9MF6bHddOhnoYUVYl1JEZKdrsNr/h6IUt07eULz6cU8rB2yq7Nq0tfXqhSXgHpbE2mX+7kZFgC4rLvTZ/W+xdGnocVe4/lLtBiiL+2a+1NYMRJqXGWy4v+2kkYg4sfDvV9kSm/QcAgCg3mflL4/HM83Gf2k8WFduTz6HMhwR90XE3oi4PyL2RcQDEVnZxiFlW0Ya8rePf9JrdxhaW7Lx34v53NbK8V8x+ovhUp7bXY1/MDl5ujJzOH9PRmNwa5afWOUY37/y6+et1tWP/7IlO34xFszrcW2g4QHd9NT8VHVQ2gHXP4o4MNAs/mR5JiCJiP0RcWB9u95TJE4/9c3B7QebF1o7/lV0YJ5p6euIJ2vnfyEa4i8kq89Pjm+Lyszh8aJV3O7nX6682er4LeLfsvHI2pOd/x0r239jkeGkfr52bv3HuPL7py3vae60/W9J3q6el+KN+mBqfv78RMSW5Hg1v+L1yVvbFvmifBb/6KHm/X9vvk12nIciImvCD0fEIxHxaF73xyLi8Yg4tEr8P76cJ5q01w21/w7I4p9u+vm33P4bzv/6E6UzP3xX7GzbuuPPzv/Ramo0f6X6+beGdiu40fcPAAAA/g/S6nfgk3RsOZ2mY2O17/Dvix1pZXZu/umTs++fm659V344BtPiSddQ3fPQiWQh32MtP5k/Ky7WH8mfG39R2l7Nj5VnK9M9jh363c4W/T/zR6nXtQM2XbN5tMmuTUEBvdTY/9OV2ctvdLMyQFf5vTb0rzX6f9qtegDd5/oP/atZ/7/ckDcXAPcm13/oX/o/9C/9H/qX/g99aSO/65fo50Sklcr0tojVCxd/EOjuqLNE+4lefzIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB0xn8BAAD///xQ9VA=")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
symlink(&(0x7f0000000dc0)='./file0\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x5be60480b9579340)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x0)
syz_clone(0x4000, &(0x7f0000000400), 0x0, 0x0, 0x0, 0x0)
getdents(r0, &(0x7f0000000340)=""/145, 0x91)

32m20.147810497s ago: executing program 4 (id=316):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r0, &(0x7f0000000180), 0x12)
socket$netlink(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3000490, &(0x7f0000000100)={[{@lazytime}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@auto_da_alloc}, {@mblk_io_submit}, {@nouid32}, {@barrier_val}, {@grpjquota}, {}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$eJzs3c9rHNcdAPDvrFY/7VYqFFr3JCi0BuNV5ap2C4Wq9FAKNRjaUw+1xWotHK20RrsylhCJTQjkEkhCbsnF5/y8hFzz45BL8n8EGyeRTRxyCAqzP6SVtCvvOtKuHX8+MNZ7M2/2ve+82TfPmtFuAE+tyfSfTMSJiHg5iRivr08iYrCaykbM1so92NzIp0sSW1v/+Sqplrm/uZGPpn1Sx+qZX0fExy9EnMrsr7e8tr44VywWVur5qcrS1any2vrpK0tzC4WFwvLZ6ZmZM+f+dO7s4cX6zefrx++88s/fvzP73fO/evelT5KYjeP1bc1xHJbJmKwfk8H0EO7yj8OurG/ef7aDQk1nQPYoG0OX0o4ZqPfKiRiPgYP6Z7SXLQMAjspzEbHVzkDbLQDAEy2pXf//1u92AAC90vg9wP3NjXxj6e9vJHrr7t8jYqQWf+P+Zm1Ltn7PbqR6H3TsfrLrzkgSEROHUP9kRLzxwf/fSpc4ovuQAK3cuBkRlyYm94//yb5nFrr1h9arF5ozk3s2Gv+gdz5M5z9/bjX/y2zPf6LF/Ge4xXv3UTz8/Z+5fQjVtJXO//7a9Gzbg6b46yYG6rmfVed8g8nlK8VCOrb9PCJOxuBwmp8+oI6T976/125b8/zv61efeTOtP/25UyJzOzu8e5/5ucrcj4m52d2bEb/Jtoo/Hf+Hq/2ftJn/Xuiwjn/95cXX221L40/jbSz74z9aW7ciftey/5PtMsmBzydOVU+HqcZJ0cJ7szHWrv7J7E7/p0taf+P/Ar2Q9v/YwfFPJM3Pa5Y7funtp8U+uzX+UbtCzed/6/hbn/9DyX+r6aH6uutzlcrKdMRQ8u/968/s7NvIN8qn8Z/8bev3f2P8a3H+/y99/UsdHojsnS/ffvT4j1Ya/3xX/d91IkYeLA60q7+z/p/ZtU8n41+nDXzU4wYAAAAAAAAAAAAAAAAAAAAAAAAA3chExPFIMrntdCaTy9W+w/uXMZYplsqVU5dLq8vzUf2u7IkYzDQ+6nK86fNQp+ufh9/In9mT/2NE/CIiXhsereZz+VJxvt/BAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDdsTbf/5/6YnhP4YF+tBAAOBIjLuwA8LRJstl+NwEA6LWRrkqPHlk7AIDe6e76DwD8FLj+A8DT5yHX/71/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADdunD+fLpsfbu5kU/z89fWVhdL107PF8qLuaXVfC5fWrmaWyiVFoqFXL601PaFbtR+FEulqzOxvHp9qlIoV6bKa+sXl0qry5WLV5bmFgoXC4M9iwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOldeW1+cKxYLKxJ9SSx+WuuHx6U9Et0l4kat/x6X9hxeIoZ2RonR/gxOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE+AHwIAAP//4VQjgA==")
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
truncate(0x0, 0x4)
write$binfmt_script(r6, &(0x7f0000000140), 0xfcb8)
r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/mnt\x00')
setns(r7, 0x0)

32m19.888626058s ago: executing program 4 (id=319):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='scsi_dispatch_cmd_start\x00', r1}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={0x0, 0x2000003, 0x4000})
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000040)=0x1, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback=r0, 0x6, 0x0, 0x2, &(0x7f0000000280)=[0x0, 0x0], 0x2, 0x0, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0]}, 0x40)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4)

32m18.511288531s ago: executing program 32 (id=319):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='scsi_dispatch_cmd_start\x00', r1}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={0x0, 0x2000003, 0x4000})
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000040)=0x1, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback=r0, 0x6, 0x0, 0x2, &(0x7f0000000280)=[0x0, 0x0], 0x2, 0x0, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0]}, 0x40)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4)

10.488654631s ago: executing program 2 (id=6291):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000300)=0xe7, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}], [{@hash}, {@flag='sync'}, {@uid_lt={'uid<', 0xee00}}]})
mknodat$loop(0xffffffffffffffff, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c00000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000001600000000000000", @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES8=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)={0x6c, r4, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x13}, 0xf8}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

9.687710396s ago: executing program 3 (id=6293):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x256c, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000009c0)='kfree\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f00000013c0)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x0, "741cb976"}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f00000009c0)={0x2c, 0x0, &(0x7f0000000680)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x80a}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001840)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="00036d"], 0x0, 0x0}, 0x0)

9.607498287s ago: executing program 1 (id=6295):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000007000000fc00000000000000", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000d34e7a4100000000004000"/28], 0x48)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
read$FUSE(r4, &(0x7f0000010140)={0x2020}, 0x2036)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x1ff)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000000)='./file0\x00', 0x40c040, &(0x7f0000000740), 0x3e, 0x51a, &(0x7f0000000dc0)="$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")

8.700494011s ago: executing program 1 (id=6298):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$tty1(0xc, 0x4, 0x1)

8.464957253s ago: executing program 5 (id=6299):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000001600)='./file1\x00', 0x2000, 0x0)

8.447119423s ago: executing program 5 (id=6300):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x4044, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x99, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, 0x0}])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x9)
r3 = getpid()
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f00000008c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xc957c5ff30d31eb}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x1b8, r5, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xbb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1319}]}, @TIPC_NLA_NODE={0x168, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xc0, 0x3, "40dbc9dcc0945217f8f8d5ba5a57d430a94dad4d9a3d314f2d90f5872e54c7c246ab93f283cf1ab91a555d6f2a8e1e83df54db29bcaa6ffb8584d80abf173fbcbcb0bf7c1774a806352ce12b2ade5a6933ac53f2c71735e99b19527f45399bec8c2e2ff0681c7c8b4a644e5e8727d3103a8fb18e0a7d654ace3a78488a2313847c88f0465729b4f78c7a6d7304dc3192848c83dd1015b46b4bbc25e70988c8bf60ced6f2ce8ac4e88e78b572e9ec9ef8422024129b1fbe86c79c0c46"}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "aa4558078e944a9612616b0c5f698fc425d5187c9f86f6d98f708085"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20a}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "e05ce2f7b1bdb9315c9ff373d17d7cfd33f21e909b25032244560135789987fd4079"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x1}]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x14}, 0x4041)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
renameat2(r0, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1, &(0x7f0000000040)='./file1\x00', 0x2)

8.287681054s ago: executing program 2 (id=6301):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x4044, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
io_setup(0x7, &(0x7f0000000c80))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r2 = getpid()
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000710000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
renameat2(r0, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1, &(0x7f0000000040)='./file1\x00', 0x2)

7.521742318s ago: executing program 5 (id=6303):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYBLOB='\x00'/11], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r6}, &(0x7f0000000180), &(0x7f0000000200)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000004140)="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", 0x2000, 0x0)
symlinkat(0x0, 0xffffffffffffffff, &(0x7f0000000340)='./file0\x00')
r9 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r9, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, &(0x7f0000000380)="66b9b603000066b89500000066ba000000000f3066b95009000066b80078000066ba000000000f30f20f09647fec660f38803966f30fc776b4f30f0966b9800000c00f326635001000000f300f01b5c2460f3801a15f0f", 0x57}], 0x1, 0x0, 0x0, 0x0)

6.751485803s ago: executing program 3 (id=6304):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x4044, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x99, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
io_setup(0x7, &(0x7f0000000c80)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0}])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x9)
r3 = getpid()
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f00000008c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xc957c5ff30d31eb}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x1b8, r5, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xbb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1319}]}, @TIPC_NLA_NODE={0x168, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xc0, 0x3, "40dbc9dcc0945217f8f8d5ba5a57d430a94dad4d9a3d314f2d90f5872e54c7c246ab93f283cf1ab91a555d6f2a8e1e83df54db29bcaa6ffb8584d80abf173fbcbcb0bf7c1774a806352ce12b2ade5a6933ac53f2c71735e99b19527f45399bec8c2e2ff0681c7c8b4a644e5e8727d3103a8fb18e0a7d654ace3a78488a2313847c88f0465729b4f78c7a6d7304dc3192848c83dd1015b46b4bbc25e70988c8bf60ced6f2ce8ac4e88e78b572e9ec9ef8422024129b1fbe86c79c0c46"}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "aa4558078e944a9612616b0c5f698fc425d5187c9f86f6d98f708085"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20a}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "e05ce2f7b1bdb9315c9ff373d17d7cfd33f21e909b25032244560135789987fd4079"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x1}]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x14}, 0x4041)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
renameat2(r0, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1, &(0x7f0000000040)='./file1\x00', 0x2)

6.629097253s ago: executing program 0 (id=6305):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000000000c70200ac432e97de3b00"/28, @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/11], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x50300, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000500)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], 0x0, 0x4, 0x93, &(0x7f00000003c0)=""/147, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd602a84350014060020010000000000000000000000000001fe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="58c2000091780000"], 0x0)

6.623693003s ago: executing program 1 (id=6306):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x2006, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x4048040}, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
unshare(0x64000600)

6.622489254s ago: executing program 2 (id=6307):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$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")
sched_setaffinity(0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000005000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x1, 0x7ffc1ffb}]})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, 0x0, &(0x7f0000000040))
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000440)='sched_switch\x00', r6}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)

4.797884894s ago: executing program 0 (id=6308):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b7030000000000208500000072000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$incfs(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)

4.401595616s ago: executing program 3 (id=6309):
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x800, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000280)=0x2, 0x4)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r5, 0x0, 0x0, 0x2000c801, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x5543, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{}, 0x0, 0x0}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r6}, 0x10)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000640), 0xc0802, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000c00))
socket$inet6_udp(0xa, 0x2, 0x0)

4.279193716s ago: executing program 2 (id=6310):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0, r1}, 0x18)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
readv(r2, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6}, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a5000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="720ac4ff0000007071101906000000009500015300000008be5cc7788ee8ef9faff08821c28bc80806bce39730b3b9"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendfile(r8, r8, 0x0, 0x7a680000)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)

3.818470809s ago: executing program 0 (id=6311):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0xb, 0x8, 0x40, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000480), 0x1000, r0}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r0, &(0x7f0000000100), &(0x7f0000000580)=""/4096}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x42002, 0x180)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f00000001c0)=0x700, 0x12)

3.765178199s ago: executing program 0 (id=6312):
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
epoll_create1(0x0)

3.746843429s ago: executing program 0 (id=6313):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x2006, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
unshare(0x64000600)

3.703264559s ago: executing program 5 (id=6314):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x4044, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x99, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
io_submit(0x0, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, 0x0}])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x9)
r3 = getpid()
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f00000008c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xc957c5ff30d31eb}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x1b8, r5, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xbb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1319}]}, @TIPC_NLA_NODE={0x168, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xc0, 0x3, "40dbc9dcc0945217f8f8d5ba5a57d430a94dad4d9a3d314f2d90f5872e54c7c246ab93f283cf1ab91a555d6f2a8e1e83df54db29bcaa6ffb8584d80abf173fbcbcb0bf7c1774a806352ce12b2ade5a6933ac53f2c71735e99b19527f45399bec8c2e2ff0681c7c8b4a644e5e8727d3103a8fb18e0a7d654ace3a78488a2313847c88f0465729b4f78c7a6d7304dc3192848c83dd1015b46b4bbc25e70988c8bf60ced6f2ce8ac4e88e78b572e9ec9ef8422024129b1fbe86c79c0c46"}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "aa4558078e944a9612616b0c5f698fc425d5187c9f86f6d98f708085"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20a}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "e05ce2f7b1bdb9315c9ff373d17d7cfd33f21e909b25032244560135789987fd4079"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x1}]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x14}, 0x4041)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
renameat2(r0, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1, &(0x7f0000000040)='./file1\x00', 0x2)

3.423018231s ago: executing program 1 (id=6315):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
readv(r1, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="720ac4ff0000007071101906000000009500015300000008be5cc7788ee8ef9faff08821c28bc80806bce39730"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendfile(r7, r7, 0x0, 0x7a680000)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)

2.723385375s ago: executing program 5 (id=6316):
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r5 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@empty, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffd, 0x0, 0x4, 0x2}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in=@multicast2, 0xfffffffc, 0x33}, 0x0, @in=@empty, 0x0, 0x0, 0x2, 0x7}}, 0xe8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$int_in(r6, 0x5452, 0x0)
r8 = dup2(r6, r7)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1a, 0x4, 0x7fe6, 0x5, 0x24002, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89900)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
sendmmsg(r5, &(0x7f0000000480), 0x2e9, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(r8, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
sendmsg$key(r3, &(0x7f00000001c0)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="020100000a0000000600000000000000030006000000000002000000ffffffff0000000000000000030005000000000002000000ac1e00010000000000000000020013"], 0x50}}, 0x0)

1.633261431s ago: executing program 1 (id=6317):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x4044, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
io_setup(0x7, &(0x7f0000000c80))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r2 = getpid()
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
renameat2(r0, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1, &(0x7f0000000040)='./file1\x00', 0x2)

908.213475ms ago: executing program 3 (id=6318):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000000000c70200ac432e97de3b00"/28, @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/11], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x50300, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000500)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], 0x0, 0x4, 0x93, &(0x7f00000003c0)=""/147, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd602a84350014060020010000000000000000000000000001fe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="58c2000091780000"], 0x0)

807.189406ms ago: executing program 5 (id=6319):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x4044, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x99, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
io_setup(0x7, &(0x7f0000000c80)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0}])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x9)
r3 = getpid()
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r4, &(0x7f00000008c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xc957c5ff30d31eb}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x1b8, r5, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xbb}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1319}]}, @TIPC_NLA_NODE={0x168, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xc0, 0x3, "40dbc9dcc0945217f8f8d5ba5a57d430a94dad4d9a3d314f2d90f5872e54c7c246ab93f283cf1ab91a555d6f2a8e1e83df54db29bcaa6ffb8584d80abf173fbcbcb0bf7c1774a806352ce12b2ade5a6933ac53f2c71735e99b19527f45399bec8c2e2ff0681c7c8b4a644e5e8727d3103a8fb18e0a7d654ace3a78488a2313847c88f0465729b4f78c7a6d7304dc3192848c83dd1015b46b4bbc25e70988c8bf60ced6f2ce8ac4e88e78b572e9ec9ef8422024129b1fbe86c79c0c46"}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "aa4558078e944a9612616b0c5f698fc425d5187c9f86f6d98f708085"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20a}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "e05ce2f7b1bdb9315c9ff373d17d7cfd33f21e909b25032244560135789987fd4079"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x1}]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x14}, 0x4041)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
renameat2(r0, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1, &(0x7f0000000040)='./file1\x00', 0x2)

798.811256ms ago: executing program 0 (id=6320):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='scsi_dispatch_cmd_start\x00', r2}, 0x18)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FITRIM(r5, 0xc0185879, &(0x7f0000000080)={0x0, 0x2000003, 0x4000})
setsockopt$inet6_udp_int(r5, 0x11, 0x66, 0x0, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@fallback=r1, 0x6, 0x0, 0x2, &(0x7f0000000280)=[0x0, 0x0], 0x2, 0x0, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0], <r7=>0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)={@map=r0, r4, 0x1, 0x2040, 0x0, @value=r6, @void, @void, @void, r7}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r9}, 0x10)
write$cgroup_int(r6, &(0x7f0000000000), 0xffffff6a)
ioctl$FS_IOC_RESVSP(r6, 0x4030582a, &(0x7f0000000300)={0x113e, 0x0, 0x0, 0x10000})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4)

309.439599ms ago: executing program 3 (id=6321):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000001600)='./file1\x00', 0x2000, 0x0)

279.996329ms ago: executing program 3 (id=6322):
syz_emit_ethernet(0x8a, &(0x7f0000000640)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}, @dest_unreach={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, {0x18, 0x4, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast2, @local, {[@end, @generic={0x0, 0x2}, @ssrr={0x89, 0xf, 0x0, [@private, @broadcast, @broadcast]}, @timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@loopback}, {}, {@local}, {@loopback}, {@private}, {@broadcast}]}, @timestamp={0x44, 0x4}]}}}}}}}, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
fstat(0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000300)={0x0, 0xfffd, 0x0, 0x3, 0xfff9, 0x2})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x10, 0x8c}, [@ldst={0x3, 0x3, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x2010, r5, 0x0)
r6 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_ZEROPAGE(r6, 0xc020aa04, &(0x7f0000000040)={{&(0x7f000030e000/0x1000)=nil, 0x1000}, 0x1})

221.307599ms ago: executing program 1 (id=6323):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000300)=0xe7, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}], [{@hash}, {@flag='sync'}, {@uid_lt={'uid<', 0xee00}}]})
mknodat$loop(0xffffffffffffffff, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c00000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000001600000000000000", @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES8=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)={0x6c, r4, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x13}, 0xf8}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

86.72524ms ago: executing program 2 (id=6324):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0xb, 0x8, 0x40, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000480), 0x1000, r0}, 0x38)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x42002, 0x180)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f00000001c0)=0x700, 0x12)

0s ago: executing program 2 (id=6325):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x4044, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x99, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
io_setup(0x7, &(0x7f0000000c80)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, 0x0}])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x9)
r4 = getpid()
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
renameat2(r0, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1, &(0x7f0000000040)='./file1\x00', 0x2)

kernel console output (not intermixed with test programs):

/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1653.745025][T19743] 9pnet_fd: Insufficient options for proto=fd
[ 1653.757642][   T28] audit: type=1326 audit(1733933088.366:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19719 comm="syz.3.4997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1653.781314][   T28] audit: type=1326 audit(1733933088.366:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19719 comm="syz.3.4997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1653.805062][   T28] audit: type=1326 audit(1733933088.366:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19719 comm="syz.3.4997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1653.805114][T19743] overlayfs: overlapping lowerdir path
[ 1655.040589][T18256] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1655.235790][T18256] usb 1-1: Using ep0 maxpacket: 32
[ 1655.264721][T18256] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1655.383790][T18256] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1655.493918][T18256] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1655.503233][T18256] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1655.514758][T18256] usb 1-1: config 0 descriptor??
[ 1656.209840][T19780] netlink: 'syz.2.5014': attribute type 2 has an invalid length.
[ 1656.217497][T19780] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5014'.
[ 1657.125747][ T7334] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[ 1657.356690][ T7334] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1657.374028][ T7334] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1657.395993][ T7334] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1657.405839][ T7334] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1657.450230][ T7334] usb 3-1: config 0 descriptor??
[ 1657.459330][T19798] 9pnet_fd: Insufficient options for proto=fd
[ 1657.465823][T18256] usbhid 1-1:0.0: can't add hid device: -71
[ 1657.471736][T18256] usbhid: probe of 1-1:0.0 failed with error -71
[ 1657.481070][T19798] overlayfs: overlapping lowerdir path
[ 1657.486074][T18256] usb 1-1: USB disconnect, device number 38
[ 1657.947438][T19809] netlink: 'syz.0.5021': attribute type 2 has an invalid length.
[ 1657.968152][T19809] netlink: 9 bytes leftover after parsing attributes in process `syz.0.5021'.
[ 1658.173768][T19813] netlink: 'syz.3.5023': attribute type 2 has an invalid length.
[ 1658.181397][T19813] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5023'.
[ 1658.735778][ T7334] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.000D/input/input85
[ 1658.892780][ T7334] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.000D/input/input86
[ 1658.907710][ T7334] input: HID 256c:006d Touch Strip as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.000D/input/input87
[ 1658.926115][ T7334] input: HID 256c:006d Dial as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.000D/input/input88
[ 1658.940414][ T7334] uclogic 0003:256C:006D.000D: input,hiddev96,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.2-1/input0
[ 1658.955209][ T7334] usb 3-1: USB disconnect, device number 42
[ 1659.095913][  T294] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1659.288118][T19835] netlink: 'syz.3.5027': attribute type 2 has an invalid length.
[ 1659.295741][T19835] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5027'.
[ 1659.355685][  T294] usb 1-1: Using ep0 maxpacket: 32
[ 1659.362781][  T294] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1659.463344][  T294] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1659.504247][  T294] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1659.518160][  T294] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1659.556549][  T294] usb 1-1: config 0 descriptor??
[ 1659.580259][T19841] overlayfs: missing 'lowerdir'
[ 1660.674499][T19851] 9pnet_fd: Insufficient options for proto=fd
[ 1660.682376][T19851] overlayfs: overlapping lowerdir path
[ 1664.087358][T19828] Bluetooth: hci0: command 0x1003 tx timeout
[ 1664.097286][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1664.155899][  T294] usbhid 1-1:0.0: can't add hid device: -71
[ 1664.168700][  T294] usbhid: probe of 1-1:0.0 failed with error -71
[ 1664.200002][  T294] usb 1-1: USB disconnect, device number 39
[ 1664.213888][T19860] syz.0.5034[19860] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1664.213953][T19860] syz.0.5034[19860] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1664.228719][T19859] syz.2.5035[19859] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1664.272819][T19859] syz.2.5035[19859] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1665.312259][T19874] netlink: 'syz.0.5037': attribute type 2 has an invalid length.
[ 1665.331205][T19874] netlink: 9 bytes leftover after parsing attributes in process `syz.0.5037'.
[ 1665.399179][T19880] overlayfs: missing 'lowerdir'
[ 1665.596198][T19886] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5041'.
[ 1665.875651][  T523] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1666.076754][  T523] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1666.093549][  T523] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1666.426516][  T523] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1666.435405][  T523] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1666.455744][  T523] usb 2-1: config 0 descriptor??
[ 1667.189750][  T523] keytouch 0003:0926:3333.000E: fixing up Keytouch IEC report descriptor
[ 1667.205127][  T523] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.000E/input/input90
[ 1667.304434][  T523] keytouch 0003:0926:3333.000E: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[ 1667.438551][  T523] usb 2-1: USB disconnect, device number 40
[ 1667.641517][T19916] syz.3.5049[19916] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1667.641703][T19916] syz.3.5049[19916] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1668.249830][T19930] netlink: 'syz.1.5053': attribute type 2 has an invalid length.
[ 1668.268616][T19930] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5053'.
[ 1668.881167][   T28] kauditd_printk_skb: 60 callbacks suppressed
[ 1668.881213][   T28] audit: type=1400 audit(1733933103.756:1825): avc:  denied  { relabelfrom } for  pid=19935 comm="syz.2.5055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1668.942696][T19942] overlayfs: missing 'lowerdir'
[ 1668.955760][   T28] audit: type=1400 audit(1733933103.756:1826): avc:  denied  { relabelto } for  pid=19935 comm="syz.2.5055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1670.316304][T19961] 9pnet_fd: Insufficient options for proto=fd
[ 1670.322689][T19961] overlayfs: overlapping lowerdir path
[ 1670.351136][   T28] audit: type=1326 audit(1733933105.446:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1670.375860][   T28] audit: type=1326 audit(1733933105.446:1828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1670.457838][   T28] audit: type=1326 audit(1733933105.446:1829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1670.482034][   T28] audit: type=1326 audit(1733933105.446:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1670.505416][   T28] audit: type=1326 audit(1733933105.446:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1670.528817][   T28] audit: type=1326 audit(1733933105.446:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1670.552151][   T28] audit: type=1326 audit(1733933105.446:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1670.576040][   T28] audit: type=1326 audit(1733933105.446:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19958 comm="syz.3.5062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f371097ff19 code=0x7ffc0000
[ 1671.335627][T19829] Bluetooth: hci0: command 0x1003 tx timeout
[ 1671.425254][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1671.708521][T19982] overlayfs: failed to resolve './file0': -2
[ 1673.407653][T19993] netlink: 'syz.0.5070': attribute type 2 has an invalid length.
[ 1673.415209][T19993] netlink: 9 bytes leftover after parsing attributes in process `syz.0.5070'.
[ 1673.919557][T20002] overlayfs: missing 'lowerdir'
[ 1676.900543][T20015] input: syz0 as /devices/virtual/input/input91
[ 1677.432618][   T28] kauditd_printk_skb: 27 callbacks suppressed
[ 1677.432643][   T28] audit: type=1326 audit(1733933112.536:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20012 comm="syz.0.5075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1677.491342][   T28] audit: type=1326 audit(1733933112.586:1863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20012 comm="syz.0.5075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1678.409630][   T28] audit: type=1326 audit(1733933113.516:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1678.450467][   T28] audit: type=1326 audit(1733933113.516:1865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1678.474179][   T28] audit: type=1326 audit(1733933113.536:1866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1678.497533][   T28] audit: type=1326 audit(1733933113.536:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1678.522028][   T28] audit: type=1326 audit(1733933113.536:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1678.547939][   T28] audit: type=1326 audit(1733933113.536:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1678.629936][   T28] audit: type=1326 audit(1733933113.536:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1680.303676][   T28] audit: type=1326 audit(1733933113.536:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20038 comm="syz.2.5083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4cc17ff19 code=0x7ffc0000
[ 1680.345050][T20063] overlayfs: missing 'lowerdir'
[ 1680.860647][T20048] overlayfs: missing 'workdir'
[ 1681.124027][T20048] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5085'.
[ 1683.484743][T20108] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5100'.
[ 1684.002751][  T523] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1684.156630][T20116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5102'.
[ 1684.478193][  T523] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1684.497111][  T523] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1684.515151][  T523] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1684.530205][  T523] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1684.545830][  T523] usb 1-1: config 0 descriptor??
[ 1684.906328][T20124] overlayfs: unrecognized mount option "hash" or missing value
[ 1684.923925][T20124] tipc: Started in network mode
[ 1684.928747][T20124] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[ 1684.938141][T20124] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1685.235135][  T523] usbhid 1-1:0.0: can't add hid device: -32
[ 1685.241099][  T523] usbhid: probe of 1-1:0.0 failed with error -32
[ 1685.250721][  T523] usb 1-1: USB disconnect, device number 40
[ 1685.440220][T20129] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5106'.
[ 1685.993972][T20138] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5107'.
[ 1686.106619][  T372] tipc: Node number set to 4269801491
[ 1688.553987][T20171] netlink: 'syz.1.5115': attribute type 2 has an invalid length.
[ 1688.594868][T20171] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5115'.
[ 1688.790508][T20175] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5117'.
[ 1691.281048][T20188] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5121'.
[ 1693.532342][T20213] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5127'.
[ 1694.598020][T20224] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1694.606820][T20224] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1694.677393][T20221] SELinux:  policydb version -592982237 does not match my version range 15-33
[ 1694.686298][T20221] SELinux: failed to load policy
[ 1695.340386][T20243] netlink: 'syz.2.5136': attribute type 2 has an invalid length.
[ 1695.348013][T20243] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5136'.
[ 1695.580460][T20248] syz.1.5140[20248] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1695.580524][T20248] syz.1.5140[20248] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1695.650524][T20254] input: syz0 as /devices/virtual/input/input92
[ 1695.712723][   T28] kauditd_printk_skb: 27 callbacks suppressed
[ 1695.712740][   T28] audit: type=1400 audit(1733933130.810:1899): avc:  denied  { write } for  pid=20257 comm="syz.0.5145" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1695.730859][T20259] incfs: Can't find or create .index dir in ./file0
[ 1695.746556][T20259] incfs: mount failed -14
[ 1695.750901][   T28] audit: type=1400 audit(1733933130.830:1900): avc:  denied  { add_name } for  pid=20257 comm="syz.0.5145" name=".index" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1695.771698][   T28] audit: type=1400 audit(1733933130.830:1901): avc:  denied  { associate } for  pid=20257 comm="syz.0.5145" name=".index" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1697.604157][T20284] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1697.623044][T20284] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1697.635616][T18256] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[ 1697.855811][T18256] usb 3-1: Using ep0 maxpacket: 32
[ 1697.861918][T18256] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1697.875772][T18256] usb 3-1: config 0 has no interface number 0
[ 1697.887826][T18256] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1697.947920][T18256] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1697.956104][T18256] usb 3-1: Product: syz
[ 1698.055328][   T28] audit: type=1326 audit(1733933133.090:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20294 comm="syz.5.5156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd15477ff19 code=0x7ffc0000
[ 1698.083238][   T28] audit: type=1326 audit(1733933133.090:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20294 comm="syz.5.5156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd15477ff19 code=0x7ffc0000
[ 1698.106825][   T28] audit: type=1326 audit(1733933133.090:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20294 comm="syz.5.5156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fd15477ff19 code=0x7ffc0000
[ 1698.158617][   T28] audit: type=1326 audit(1733933133.090:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20294 comm="syz.5.5156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd15477ff19 code=0x7ffc0000
[ 1698.212543][T18256] usb 3-1: Manufacturer: syz
[ 1698.245972][T18256] usb 3-1: SerialNumber: syz
[ 1698.252338][T18256] usb 3-1: config 0 descriptor??
[ 1698.256352][   T28] audit: type=1326 audit(1733933133.090:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20294 comm="syz.5.5156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd15477ff19 code=0x7ffc0000
[ 1698.262787][T18256] ums-jumpshot 3-1:0.16: USB Mass Storage device detected
[ 1698.287754][   T28] audit: type=1326 audit(1733933133.100:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20294 comm="syz.5.5156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7fd15477ff19 code=0x7ffc0000
[ 1698.311646][   T28] audit: type=1326 audit(1733933133.100:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20294 comm="syz.5.5156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd15477ff19 code=0x7ffc0000
[ 1698.335506][T18256] ums-jumpshot 3-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1698.344635][T18256] scsi host1: usb-storage 3-1:0.16
[ 1698.556531][T20308] netlink: 'syz.1.5158': attribute type 2 has an invalid length.
[ 1698.564125][T20308] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5158'.
[ 1698.665461][T18256] usb 3-1: USB disconnect, device number 43
[ 1699.533007][T20330] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5161'.
[ 1699.852696][T20340] incfs: Can't find or create .index dir in ./file0
[ 1699.859239][T20340] incfs: mount failed -14
[ 1699.878378][T20342] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1699.887465][T20342] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1699.905648][  T898] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1700.745622][  T898] usb 4-1: Using ep0 maxpacket: 32
[ 1700.751626][  T898] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[ 1700.759794][  T898] usb 4-1: config 0 has no interface number 0
[ 1700.766965][  T898] usb 4-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1700.777210][  T898] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1701.076600][T20350] netlink: 'syz.1.5171': attribute type 2 has an invalid length.
[ 1701.084257][T20350] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5171'.
[ 1701.213826][  T898] usb 4-1: Product: syz
[ 1701.217876][  T898] usb 4-1: Manufacturer: syz
[ 1701.222246][  T898] usb 4-1: SerialNumber: syz
[ 1701.230349][  T898] usb 4-1: config 0 descriptor??
[ 1701.237779][  T898] ums-jumpshot 4-1:0.16: USB Mass Storage device detected
[ 1701.245280][  T898] ums-jumpshot 4-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1701.254387][  T898] scsi host1: usb-storage 4-1:0.16
[ 1701.654085][  T715] usb 4-1: USB disconnect, device number 39
[ 1702.602352][T20366] syz.1.5175[20366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1702.602435][T20366] syz.1.5175[20366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1702.691985][T20374] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5176'.
[ 1703.645703][T18256] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[ 1703.716624][T20394] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5182'.
[ 1704.236113][T18256] usb 1-1: Using ep0 maxpacket: 32
[ 1704.242683][T18256] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1704.256588][T18256] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1704.266577][T18256] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1704.275467][T18256] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1704.287941][T18256] usb 1-1: config 0 descriptor??
[ 1704.849879][   T28] kauditd_printk_skb: 28 callbacks suppressed
[ 1704.849897][   T28] audit: type=1400 audit(1733933139.950:1937): avc:  denied  { wake_alarm } for  pid=20406 comm="syz.5.5187" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1705.280117][T20415] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5190'.
[ 1705.805916][T18256] usbhid 1-1:0.0: can't add hid device: -71
[ 1705.818798][T18256] usbhid: probe of 1-1:0.0 failed with error -71
[ 1705.827228][T18256] usb 1-1: USB disconnect, device number 41
[ 1707.001880][T20446] 9pnet_fd: Insufficient options for proto=fd
[ 1707.021993][T20446] overlayfs: overlapping lowerdir path
[ 1709.208825][T20479] overlayfs: missing 'lowerdir'
[ 1711.599231][T20528] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5221'.
[ 1711.655607][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1711.815723][T19828] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1711.930552][T20540] overlayfs: missing 'lowerdir'
[ 1712.172455][T20546] incfs: Can't find or create .index dir in ./file0
[ 1712.179633][T20546] incfs: mount failed -14
[ 1712.645617][    T6] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1712.826639][    T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1712.837412][    T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1712.846932][    T6] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1712.885911][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1712.895956][    T6] usb 1-1: config 0 descriptor??
[ 1713.989422][    T6] usbhid 1-1:0.0: can't add hid device: -32
[ 1713.996471][    T6] usbhid: probe of 1-1:0.0 failed with error -32
[ 1714.043696][    T6] usb 1-1: USB disconnect, device number 42
[ 1714.080431][T20576] syz.1.5237[20576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1714.080540][T20576] syz.1.5237[20576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1715.162405][T20583] overlayfs: statfs failed on './file0'
[ 1715.503581][T20585] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5238'.
[ 1717.553647][T20618] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1718.281522][T20648] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1718.383173][ T1717] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 1718.597738][ T1717] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1718.710054][ T1717] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1718.720271][ T1717] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1718.729313][ T1717] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1718.758225][ T1717] usb 1-1: config 0 descriptor??
[ 1719.177059][ T1717] keytouch 0003:0926:3333.000F: fixing up Keytouch IEC report descriptor
[ 1719.192542][ T1717] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.000F/input/input93
[ 1721.479119][ T1717] keytouch 0003:0926:3333.000F: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[ 1721.516885][ T1717] usb 1-1: USB disconnect, device number 43
[ 1722.144815][T20705] netlink: 'syz.3.5274': attribute type 2 has an invalid length.
[ 1722.152479][T20705] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5274'.
[ 1722.688883][T20716] input: syz0 as /devices/virtual/input/input94
[ 1722.698295][T20717] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1722.972749][ T1717] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[ 1723.165573][ T1717] usb 3-1: Using ep0 maxpacket: 32
[ 1723.172233][ T1717] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1723.185251][ T1717] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1723.194866][ T1717] usb 3-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1723.217527][ T1717] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1723.243321][ T1717] usb 3-1: config 0 descriptor??
[ 1723.355690][    T6] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[ 1724.426706][    T6] usb 1-1: Using ep0 maxpacket: 32
[ 1724.960627][    T6] usb 1-1: config 0 has an invalid interface number: 16 but max is 0
[ 1724.980228][    T6] usb 1-1: config 0 has no interface number 0
[ 1724.992477][    T6] usb 1-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1725.006567][    T6] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1725.019569][    T6] usb 1-1: Product: syz
[ 1725.287876][T20751] netlink: 'syz.3.5288': attribute type 2 has an invalid length.
[ 1725.295511][T20751] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5288'.
[ 1725.749916][ T1717] usbhid 3-1:0.0: can't add hid device: -71
[ 1725.765118][ T1717] usbhid: probe of 3-1:0.0 failed with error -71
[ 1725.782721][    T6] usb 1-1: Manufacturer: syz
[ 1725.787345][    T6] usb 1-1: SerialNumber: syz
[ 1725.792578][    T6] usb 1-1: config 0 descriptor??
[ 1725.795316][ T1717] usb 3-1: USB disconnect, device number 44
[ 1725.799507][    T6] ums-jumpshot 1-1:0.16: USB Mass Storage device detected
[ 1725.811121][    T6] ums-jumpshot 1-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1725.860981][    T6] scsi host1: usb-storage 1-1:0.16
[ 1726.152052][    T6] usb 1-1: USB disconnect, device number 44
[ 1726.223307][T20769] overlayfs: missing 'lowerdir'
[ 1726.575612][ T1717] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[ 1726.799116][ T1717] usb 3-1: Using ep0 maxpacket: 32
[ 1726.809041][ T1717] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1726.818211][ T1717] usb 3-1: config 0 has no interface number 0
[ 1726.827264][ T1717] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1726.836398][ T1717] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1726.844299][ T1717] usb 3-1: Product: syz
[ 1726.849242][ T1717] usb 3-1: Manufacturer: syz
[ 1726.853757][ T1717] usb 3-1: SerialNumber: syz
[ 1727.137373][ T1717] usb 3-1: config 0 descriptor??
[ 1727.204651][ T1717] ums-jumpshot 3-1:0.16: USB Mass Storage device detected
[ 1727.295974][ T1717] ums-jumpshot 3-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1727.315686][ T1717] scsi host1: usb-storage 3-1:0.16
[ 1727.335688][ T8627] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[ 1727.401368][T12355] usb 3-1: USB disconnect, device number 45
[ 1727.508602][T20802] netlink: 'syz.5.5303': attribute type 2 has an invalid length.
[ 1727.516228][T20802] netlink: 9 bytes leftover after parsing attributes in process `syz.5.5303'.
[ 1727.727274][ T8627] usb 1-1: Using ep0 maxpacket: 32
[ 1727.734756][ T8627] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1727.745765][ T8627] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1727.755418][ T8627] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1727.764327][ T8627] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1727.831637][ T8627] usb 1-1: config 0 descriptor??
[ 1728.648312][T20819] input: syz0 as /devices/virtual/input/input95
[ 1730.439490][T20846] netlink: 'syz.1.5316': attribute type 2 has an invalid length.
[ 1730.447135][T20846] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5316'.
[ 1730.459323][ T8627] usbhid 1-1:0.0: can't add hid device: -71
[ 1730.501666][ T8627] usbhid: probe of 1-1:0.0 failed with error -71
[ 1730.669101][ T8627] usb 1-1: USB disconnect, device number 45
[ 1731.571529][T20865] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1731.635710][T20868] overlayfs: unrecognized mount option "hash" or missing value
[ 1731.656906][T20868] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1732.049298][T20880] syz.3.5327[20880] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1732.049358][T20880] syz.3.5327[20880] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1733.673915][T20891] netlink: 'syz.2.5329': attribute type 2 has an invalid length.
[ 1733.692698][T20891] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5329'.
[ 1734.071656][T20901] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5331'.
[ 1735.236930][T20912] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5332'.
[ 1735.477861][T20917] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5336'.
[ 1736.895666][T20936] incfs: Backing dir is not set, filesystem can't be mounted.
[ 1736.903045][T20936] incfs: mount failed -2
[ 1737.546028][T20949] netlink: 'syz.3.5343': attribute type 2 has an invalid length.
[ 1737.553615][T20949] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5343'.
[ 1738.802267][T20963] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1739.182199][  T294] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1740.258791][  T294] usb 4-1: Using ep0 maxpacket: 32
[ 1740.315747][T20981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5352'.
[ 1741.042018][  T294] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1741.060365][  T294] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1741.092508][  T294] usb 4-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1741.203535][  T294] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1741.246141][  T294] usb 4-1: config 0 descriptor??
[ 1744.221356][  T294] usbhid 4-1:0.0: can't add hid device: -71
[ 1744.691722][  T294] usbhid: probe of 4-1:0.0 failed with error -71
[ 1744.908300][  T294] usb 4-1: USB disconnect, device number 40
[ 1745.238261][T21013] netlink: 'syz.1.5360': attribute type 2 has an invalid length.
[ 1745.279546][T21013] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5360'.
[ 1748.135651][T21045] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1748.945969][  T661] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[ 1749.216991][  T523] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[ 1750.578448][  T661] usb 1-1: Using ep0 maxpacket: 32
[ 1750.618204][T21067] 9pnet_fd: Insufficient options for proto=fd
[ 1750.645309][  T661] usb 1-1: device descriptor read/all, error -71
[ 1750.736747][  T523] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1750.747588][  T523] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1750.757188][  T523] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1750.795667][  T523] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1750.814222][  T523] usb 3-1: config 0 descriptor??
[ 1750.820238][T21074] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5377'.
[ 1751.433162][  T523] keytouch 0003:0926:3333.0010: fixing up Keytouch IEC report descriptor
[ 1751.447263][  T523] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.0010/input/input96
[ 1751.592570][  T523] keytouch 0003:0926:3333.0010: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0
[ 1751.711569][T18256] usb 3-1: USB disconnect, device number 46
[ 1751.977391][T21099] incfs: Can't find or create .index dir in ./file0
[ 1752.213525][T21099] incfs: mount failed -14
[ 1752.320848][T21102] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5384'.
[ 1755.639907][T21140] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5396'.
[ 1756.614395][T21160] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5399'.
[ 1760.087134][T16737] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[ 1760.295361][T21195] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5409'.
[ 1760.304242][T16737] usb 1-1: Using ep0 maxpacket: 32
[ 1760.311850][T16737] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1760.393581][T16737] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1760.412033][T16737] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1760.421340][T16737] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1760.429859][T16737] usb 1-1: config 0 descriptor??
[ 1760.435114][T16737] usb 1-1: can't set config #0, error -71
[ 1760.474929][T16737] usb 1-1: USB disconnect, device number 49
[ 1761.025609][T16737] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[ 1761.051116][   T28] audit: type=1400 audit(1733933196.155:1938): avc:  denied  { link } for  pid=21200 comm="syz.5.5411" name="#d5" dev="tmpfs" ino=2152 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[ 1761.139198][   T28] audit: type=1400 audit(1733933196.155:1939): avc:  denied  { rename } for  pid=21200 comm="syz.5.5411" name="#d6" dev="tmpfs" ino=2152 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[ 1761.245566][T16737] usb 1-1: Using ep0 maxpacket: 32
[ 1761.251687][T16737] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1761.276321][T16737] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1761.295669][T16737] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1761.325571][T16737] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1761.341506][T16737] usb 1-1: config 0 descriptor??
[ 1762.191601][T21227] SELinux:  policydb version -592982237 does not match my version range 15-33
[ 1762.200403][T21227] SELinux: failed to load policy
[ 1766.618505][T16737] usbhid 1-1:0.0: can't add hid device: -71
[ 1766.625754][T16737] usbhid: probe of 1-1:0.0 failed with error -71
[ 1766.661838][T16737] usb 1-1: USB disconnect, device number 50
[ 1770.109774][T21292] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1771.264815][T21306] netlink: 'syz.1.5436': attribute type 2 has an invalid length.
[ 1771.282579][T21306] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5436'.
[ 1772.443179][T21326] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5444'.
[ 1775.085221][T21344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5451'.
[ 1775.677824][T21355] tipc: Started in network mode
[ 1775.682658][T21355] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[ 1775.692107][T21355] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1776.685567][T21186] tipc: Node number set to 4269801491
[ 1776.705682][   T24] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1776.895551][   T24] usb 3-1: Using ep0 maxpacket: 32
[ 1776.901903][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1776.933037][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1776.952466][   T24] usb 3-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1776.971289][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1776.992113][   T24] usb 3-1: config 0 descriptor??
[ 1778.698024][T21404] incfs: Backing dir is not set, filesystem can't be mounted.
[ 1778.705791][T21404] incfs: mount failed -2
[ 1779.220497][   T24] usbhid 3-1:0.0: can't add hid device: -71
[ 1779.231148][   T24] usbhid: probe of 3-1:0.0 failed with error -71
[ 1779.254977][T21409] syz.2.5469[21409] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1779.255032][T21409] syz.2.5469[21409] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1779.277089][   T24] usb 3-1: USB disconnect, device number 47
[ 1779.626035][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1779.665692][T19828] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1780.975627][   T24] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1782.175544][   T24] usb 4-1: Using ep0 maxpacket: 32
[ 1782.181549][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1782.366494][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1782.467792][   T24] usb 4-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1782.572851][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1782.596423][   T24] usb 4-1: config 0 descriptor??
[ 1783.912102][T21467] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5470'.
[ 1784.082854][T21470] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5484'.
[ 1784.622069][T21474] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5486'.
[ 1784.780877][T21482] incfs: Can't find or create .index dir in ./file0
[ 1784.787968][   T24] usbhid 4-1:0.0: can't add hid device: -71
[ 1784.794118][   T24] usbhid: probe of 4-1:0.0 failed with error -71
[ 1784.803906][T21482] incfs: mount failed -14
[ 1784.906207][   T24] usb 4-1: USB disconnect, device number 41
[ 1785.582357][T21495] overlayfs: statfs failed on './file0'
[ 1786.613890][T21510] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5495'.
[ 1787.064427][T21515] incfs: Can't find or create .index dir in ./file0
[ 1787.111554][T21515] incfs: mount failed -14
[ 1787.297759][T21526] overlayfs: statfs failed on './file0'
[ 1788.099077][   T28] audit: type=1326 audit(1733933223.207:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1788.182067][   T28] audit: type=1326 audit(1733933223.257:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1788.244178][   T28] audit: type=1326 audit(1733933223.257:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1788.265637][T21541] overlayfs: statfs failed on './file0'
[ 1788.275540][   T28] audit: type=1326 audit(1733933223.267:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1788.315551][   T28] audit: type=1326 audit(1733933223.267:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1788.974924][T19828] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1789.035010][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1789.081612][   T28] audit: type=1326 audit(1733933223.267:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1789.173272][   T28] audit: type=1326 audit(1733933223.277:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1789.233722][   T28] audit: type=1326 audit(1733933223.277:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1789.291155][T21555] syz.3.5510[21555] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1789.291760][T21555] syz.3.5510[21555] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1789.321373][T21557] incfs: Can't find or create .index dir in ./file0
[ 1789.359138][   T28] audit: type=1326 audit(1733933223.277:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1789.443678][T21557] incfs: mount failed -14
[ 1789.563818][   T28] audit: type=1326 audit(1733933223.277:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21523 comm="syz.1.5501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f949617ff19 code=0x7ffc0000
[ 1789.864200][T21571] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5513'.
[ 1790.025609][  T390] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1790.207437][T21578] netlink: 'syz.3.5514': attribute type 2 has an invalid length.
[ 1790.215275][T21578] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5514'.
[ 1790.257412][  T390] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1790.288690][  T390] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1790.333546][  T390] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1790.374453][  T390] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1790.447781][  T390] usb 2-1: config 0 descriptor??
[ 1791.547383][  T390] usbhid 2-1:0.0: can't add hid device: -32
[ 1791.553274][  T390] usbhid: probe of 2-1:0.0 failed with error -32
[ 1791.555617][ T2019] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1791.561959][  T390] usb 2-1: USB disconnect, device number 41
[ 1791.571319][T21599] syz.2.5522[21599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1791.572661][T21599] syz.2.5522[21599] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1791.707080][T21606] incfs: Can't find or create .index dir in ./file0
[ 1791.724880][T21606] incfs: mount failed -14
[ 1792.055554][ T2019] usb 4-1: Using ep0 maxpacket: 32
[ 1792.061651][ T2019] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[ 1792.071264][ T2019] usb 4-1: config 0 has no interface number 0
[ 1792.078757][ T2019] usb 4-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1792.087621][ T2019] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1792.095399][ T2019] usb 4-1: Product: syz
[ 1792.099417][ T2019] usb 4-1: Manufacturer: syz
[ 1792.103823][ T2019] usb 4-1: SerialNumber: syz
[ 1792.113719][ T2019] usb 4-1: config 0 descriptor??
[ 1792.124067][ T2019] ums-jumpshot 4-1:0.16: USB Mass Storage device detected
[ 1792.131920][ T2019] ums-jumpshot 4-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1792.140911][ T2019] scsi host1: usb-storage 4-1:0.16
[ 1792.541186][T21625] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5531'.
[ 1793.450790][  T898] scsi 1:0:0:0: Direct-Access     Lexar    Jumpshot USB CF  0001 PQ: 0 ANSI: 0 CCS
[ 1793.470639][   T39] usb 4-1: USB disconnect, device number 42
[ 1793.505308][T12023] sd 1:0:0:0: [sdb] Test Unit Ready failed: Result: hostbyte=0x01 driverbyte=DRIVER_OK
[ 1795.888511][T12023] sd 1:0:0:0: [sdb] Read Capacity(10) failed: Result: hostbyte=0x07 driverbyte=DRIVER_OK
[ 1795.898344][T12023] sd 1:0:0:0: [sdb] Sense not available.
[ 1795.903820][T12023] sd 1:0:0:0: [sdb] 0 512-byte logical blocks: (0 B/0 B)
[ 1795.910804][T12023] sd 1:0:0:0: [sdb] 0-byte physical blocks
[ 1795.916589][T12023] sd 1:0:0:0: [sdb] Write Protect is off
[ 1795.925292][T12023] sd 1:0:0:0: [sdb] Asking for cache data failed
[ 1795.931968][T12023] sd 1:0:0:0: [sdb] Assuming drive cache: write through
[ 1795.955618][T12023] sd 1:0:0:0: [sdb] Attached SCSI removable disk
[ 1795.956856][T21654] incfs: Can't find or create .index dir in ./file0
[ 1795.969298][T21654] incfs: mount failed -14
[ 1796.003510][T21657] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1796.075799][  T390] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[ 1796.265773][T21668] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5540'.
[ 1796.848078][T21675] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5542'.
[ 1798.619725][  T390] usb 2-1: device not accepting address 42, error -71
[ 1798.671785][T21370] udevd[21370]: inotify_add_watch(7, /dev/sdb, 10) failed: No such file or directory
[ 1798.698231][T21370] udevd[21370]: inotify_add_watch(7, /dev/sdb, 10) failed: No such file or directory
[ 1798.961031][T21699] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5546'.
[ 1801.495556][  T390] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[ 1801.612564][T21723] syz.0.5554[21723] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1801.612639][T21723] syz.0.5554[21723] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1801.695536][  T390] usb 2-1: Using ep0 maxpacket: 32
[ 1801.794513][  T390] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1801.865155][  T390] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1802.071957][  T390] usb 2-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1802.080869][  T390] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1802.092024][  T390] usb 2-1: config 0 descriptor??
[ 1803.783580][  T390] usbhid 2-1:0.0: can't add hid device: -71
[ 1803.789879][  T390] usbhid: probe of 2-1:0.0 failed with error -71
[ 1803.806523][  T390] usb 2-1: USB disconnect, device number 43
[ 1803.865450][T21763] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5565'.
[ 1808.155814][T21813] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5578'.
[ 1816.074844][T21885] netlink: 'syz.3.5595': attribute type 2 has an invalid length.
[ 1816.082495][T21885] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5595'.
[ 1817.025645][ T1717] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[ 1817.535519][ T1717] usb 3-1: Using ep0 maxpacket: 32
[ 1817.541557][ T1717] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1818.045327][ T1717] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1818.283833][ T1717] usb 3-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1818.307497][ T1717] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1818.320448][ T1717] usb 3-1: config 0 descriptor??
[ 1818.330806][ T1717] usb 3-1: can't set config #0, error -71
[ 1818.337722][ T1717] usb 3-1: USB disconnect, device number 48
[ 1820.429388][T21924] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5609'.
[ 1820.650674][T19828] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1820.650707][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1822.154246][T21954] block device autoloading is deprecated and will be removed.
[ 1822.182284][T21954] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1822.467554][T21958] loop0: detected capacity change from 0 to 2048
[ 1822.684959][T21958] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1823.355196][T21969] netlink: 'syz.3.5620': attribute type 2 has an invalid length.
[ 1823.362789][T21969] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5620'.
[ 1823.547527][T11557] EXT4-fs (loop0): unmounting filesystem.
[ 1823.632420][T21186] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1823.825576][T21186] usb 3-1: Using ep0 maxpacket: 32
[ 1823.852621][T21186] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1823.916539][T21186] usb 3-1: config 0 has no interface number 0
[ 1824.027654][T21186] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1824.036697][T21186] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1824.044555][T21186] usb 3-1: Product: syz
[ 1824.048906][T21186] usb 3-1: Manufacturer: syz
[ 1824.056184][T21186] usb 3-1: SerialNumber: syz
[ 1824.061405][T21186] usb 3-1: config 0 descriptor??
[ 1824.145962][T21186] ums-jumpshot 3-1:0.16: USB Mass Storage device detected
[ 1824.162001][T21186] ums-jumpshot 3-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1824.169736][T21186] scsi host1: usb-storage 3-1:0.16
[ 1824.383222][T21186] usb 3-1: USB disconnect, device number 49
[ 1824.809228][T21994] netlink: 'syz.0.5626': attribute type 2 has an invalid length.
[ 1824.817066][T21994] netlink: 9 bytes leftover after parsing attributes in process `syz.0.5626'.
[ 1826.255126][T22015] loop0: detected capacity change from 0 to 2048
[ 1826.465439][T22015] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1827.211653][T11557] EXT4-fs (loop0): unmounting filesystem.
[ 1827.541064][T22034] netlink: 'syz.0.5635': attribute type 2 has an invalid length.
[ 1827.548672][T22034] netlink: 9 bytes leftover after parsing attributes in process `syz.0.5635'.
[ 1828.723331][T22055] incfs: Can't find or create .index dir in ./file0
[ 1828.729824][T22055] incfs: mount failed -14
[ 1831.756225][   T28] kauditd_printk_skb: 17 callbacks suppressed
[ 1831.756243][   T28] audit: type=1400 audit(1733933264.007:1967): avc:  denied  { create } for  pid=22046 comm="syz.1.5641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1831.907877][   T28] audit: type=1400 audit(1733933264.447:1968): avc:  denied  { connect } for  pid=22046 comm="syz.1.5641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1831.927415][   T28] audit: type=1400 audit(1733933264.497:1969): avc:  denied  { write } for  pid=22046 comm="syz.1.5641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1833.025097][  T523] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[ 1833.584328][T22091] loop0: detected capacity change from 0 to 512
[ 1833.600958][T22089] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5646'.
[ 1833.718655][T12355] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1833.726151][T22091] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.5654: casefold flag without casefold feature
[ 1833.749134][T22091] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.5654: couldn't read orphan inode 15 (err -117)
[ 1833.775532][T22091] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1833.798089][   T28] audit: type=1400 audit(1733933268.907:1970): avc:  denied  { setattr } for  pid=22090 comm="syz.0.5654" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1833.915585][T12355] usb 3-1: Using ep0 maxpacket: 32
[ 1833.921848][T12355] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1833.930409][T12355] usb 3-1: config 0 has no interface number 0
[ 1833.949907][T12355] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1834.155970][   T28] audit: type=1400 audit(1733933269.177:1971): avc:  denied  { mounton } for  pid=22090 comm="syz.0.5654" path="/535/file0/file0" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1835.832394][   T28] audit: type=1400 audit(1733933269.177:1972): avc:  denied  { write } for  pid=22090 comm="syz.0.5654" name="file0" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1835.949102][   T28] audit: type=1400 audit(1733933269.177:1973): avc:  denied  { add_name } for  pid=22090 comm="syz.0.5654" name="work" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1836.907512][T11557] EXT4-fs (loop0): unmounting filesystem.
[ 1836.926932][   T28] audit: type=1400 audit(1733933269.177:1974): avc:  denied  { setattr } for  pid=22090 comm="syz.0.5654" name="work" dev="loop0" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1836.981595][   T28] audit: type=1400 audit(1733933269.177:1975): avc:  denied  { remove_name } for  pid=22090 comm="syz.0.5654" name="#ed" dev="loop0" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1837.004166][   T28] audit: type=1400 audit(1733933269.177:1976): avc:  denied  { rename } for  pid=22090 comm="syz.0.5654" name="#ed" dev="loop0" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1837.016193][T12355] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1837.027653][   T28] audit: type=1400 audit(1733933269.177:1977): avc:  denied  { unlink } for  pid=22090 comm="syz.0.5654" name="#ed" dev="loop0" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[ 1837.033989][T12355] usb 3-1: Product: syz
[ 1837.056305][   T28] audit: type=1400 audit(1733933269.177:1978): avc:  denied  { unlink } for  pid=22090 comm="syz.0.5654" name="#ee" dev="loop0" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1837.081636][   T28] audit: type=1400 audit(1733933272.007:1979): avc:  denied  { rmdir } for  pid=11557 comm="syz-executor" name="file2" dev="loop0" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1837.134759][T12355] usb 3-1: Manufacturer: syz
[ 1837.139416][T12355] usb 3-1: SerialNumber: syz
[ 1837.145950][T12355] usb 3-1: config 0 descriptor??
[ 1837.162899][T12355] usb 3-1: can't set config #0, error -71
[ 1837.170103][T12355] usb 3-1: USB disconnect, device number 50
[ 1837.209930][T22120] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1837.224074][T22125] loop0: detected capacity change from 0 to 1024
[ 1837.226561][T22118] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1837.261144][T22125] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1837.875667][T18256] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[ 1838.179782][T11557] EXT4-fs (loop0): unmounting filesystem.
[ 1838.205507][T18256] usb 2-1: Using ep0 maxpacket: 32
[ 1838.212952][T18256] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1838.235500][T18256] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1838.245046][T18256] usb 2-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1838.282624][  T523] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1838.291036][  T523] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[ 1838.375489][T18256] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1838.384286][T18256] usb 2-1: config 0 descriptor??
[ 1838.836438][T22160] netlink: 'syz.2.5670': attribute type 2 has an invalid length.
[ 1838.852660][T22160] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5670'.
[ 1838.871189][T22161] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5671'.
[ 1839.173434][T22168] loop0: detected capacity change from 0 to 512
[ 1839.180259][T22168] EXT4-fs: Ignoring removed i_version option
[ 1839.186420][T22168] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1839.192852][T22168] EXT4-fs: dax option not supported
[ 1839.545523][T21186] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 1839.888312][T21186] usb 4-1: Using ep0 maxpacket: 32
[ 1839.895099][T21186] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1839.910956][T21186] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1839.922177][T21186] usb 4-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1840.338937][T18256] usbhid 2-1:0.0: can't add hid device: -71
[ 1840.405051][T21186] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1840.417487][T18256] usbhid: probe of 2-1:0.0 failed with error -71
[ 1840.707450][T18256] usb 2-1: USB disconnect, device number 44
[ 1840.714481][T21186] usb 4-1: config 0 descriptor??
[ 1842.273173][ T2019] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[ 1842.288236][ T2019] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[ 1842.855371][T21186] usbhid 4-1:0.0: can't add hid device: -71
[ 1842.900919][T21186] usbhid: probe of 4-1:0.0 failed with error -71
[ 1842.982229][T21186] usb 4-1: USB disconnect, device number 43
[ 1843.235532][ T2019] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[ 1843.415524][ T2019] usb 2-1: Using ep0 maxpacket: 32
[ 1843.649141][ T2019] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1843.659970][ T2019] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1843.669540][ T2019] usb 2-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1843.678397][ T2019] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1843.689228][ T2019] usb 2-1: config 0 descriptor??
[ 1844.111296][T22245] loop0: detected capacity change from 0 to 2048
[ 1844.343248][T22245] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1845.284145][T11557] EXT4-fs (loop0): unmounting filesystem.
[ 1845.333358][ T2019] usbhid 2-1:0.0: can't add hid device: -71
[ 1845.339551][ T2019] usbhid: probe of 2-1:0.0 failed with error -71
[ 1845.376573][ T2019] usb 2-1: USB disconnect, device number 45
[ 1846.250341][T22280] loop0: detected capacity change from 0 to 512
[ 1846.296672][T22280] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.5705: casefold flag without casefold feature
[ 1846.320712][T22284] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5703'.
[ 1846.329466][T22280] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.5705: couldn't read orphan inode 15 (err -117)
[ 1846.345725][T22280] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1847.641806][T11557] EXT4-fs (loop0): unmounting filesystem.
[ 1847.704906][T22294] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1847.826464][T22300] loop0: detected capacity change from 0 to 128
[ 1847.865559][   T28] audit: type=1326 audit(1733933282.967:1980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.433894][   T28] audit: type=1326 audit(1733933282.967:1981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.457395][   T28] audit: type=1326 audit(1733933282.967:1982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.481512][   T28] audit: type=1326 audit(1733933282.967:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.504950][   T28] audit: type=1326 audit(1733933282.967:1984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.528282][   T28] audit: type=1326 audit(1733933282.967:1985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.551448][   T28] audit: type=1326 audit(1733933282.967:1986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.574901][   T28] audit: type=1326 audit(1733933282.967:1987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.605481][   T28] audit: type=1326 audit(1733933282.967:1988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1851.706648][   T28] audit: type=1326 audit(1733933282.967:1989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1853.705529][   T28] audit: type=1326 audit(1733933282.967:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1853.729060][   T28] audit: type=1326 audit(1733933282.967:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1853.764324][   T28] audit: type=1326 audit(1733933282.967:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1853.827828][T22314] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1853.831338][   T28] audit: type=1326 audit(1733933282.967:1993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1853.897718][   T28] audit: type=1326 audit(1733933282.967:1994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1853.945537][   T28] audit: type=1326 audit(1733933282.967:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1853.982768][   T28] audit: type=1326 audit(1733933282.967:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1854.006236][   T28] audit: type=1326 audit(1733933282.967:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1854.029637][   T28] audit: type=1326 audit(1733933282.967:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1854.086319][   T28] audit: type=1326 audit(1733933282.967:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ef717ff19 code=0x7ffc0000
[ 1855.781657][T22336] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1855.801352][T19829] Bluetooth: hci1: sending frame failed (-49)
[ 1855.807314][   T45] Bluetooth: hci1: Opcode 0x1003 failed: -49
[ 1856.773682][T19828] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1856.815578][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1857.112179][T22346] loop0: detected capacity change from 0 to 128
[ 1861.227182][T22375] incfs: Can't find or create .index dir in ./file0
[ 1861.233715][T22375] incfs: mount failed -14
[ 1861.251991][T22377] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1862.735593][T18256] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[ 1863.005512][T18256] usb 2-1: Using ep0 maxpacket: 32
[ 1863.051619][T18256] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1863.164242][T18256] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1865.761019][T18256] usb 2-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1865.937250][T18256] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1866.013485][T22414] incfs: Can't find or create .index dir in ./file0
[ 1866.020376][T22414] incfs: mount failed -14
[ 1866.088274][T18256] usb 2-1: config 0 descriptor??
[ 1866.708822][T18256] usbhid 2-1:0.0: can't add hid device: -71
[ 1866.833371][T18256] usbhid: probe of 2-1:0.0 failed with error -71
[ 1866.895003][T18256] usb 2-1: USB disconnect, device number 46
[ 1867.265751][T22441] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1867.607547][T22447] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5748'.
[ 1867.842142][  T294] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[ 1868.223699][  T294] usb 3-1: Using ep0 maxpacket: 32
[ 1868.291515][T18256] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[ 1868.299104][  T294] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1868.307256][  T294] usb 3-1: config 0 has no interface number 0
[ 1868.314880][  T294] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1868.323797][  T294] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1868.331677][  T294] usb 3-1: Product: syz
[ 1868.335646][  T294] usb 3-1: Manufacturer: syz
[ 1868.340041][  T294] usb 3-1: SerialNumber: syz
[ 1868.348293][  T294] usb 3-1: config 0 descriptor??
[ 1868.355333][  T294] ums-jumpshot 3-1:0.16: USB Mass Storage device detected
[ 1868.370548][  T294] ums-jumpshot 3-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1868.419310][T22467] netlink: 'syz.3.5753': attribute type 2 has an invalid length.
[ 1868.426989][T22467] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5753'.
[ 1868.485545][T18256] usb 2-1: Using ep0 maxpacket: 32
[ 1868.493116][T18256] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1868.505733][T18256] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1868.533603][T18256] usb 2-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1868.567575][  T294] scsi host1: usb-storage 3-1:0.16
[ 1868.577079][  T294] usb 3-1: USB disconnect, device number 51
[ 1868.582873][T18256] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1868.593108][T18256] usb 2-1: config 0 descriptor??
[ 1869.956240][T22487] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5756'.
[ 1870.531080][T22494] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1870.706152][T18256] usbhid 2-1:0.0: can't add hid device: -71
[ 1870.712062][T18256] usbhid: probe of 2-1:0.0 failed with error -71
[ 1870.719375][T18256] usb 2-1: USB disconnect, device number 47
[ 1871.040309][   T39] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1871.605676][   T39] usb 4-1: Using ep0 maxpacket: 32
[ 1871.630782][   T39] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[ 1871.786109][   T39] usb 4-1: config 0 has no interface number 0
[ 1873.027563][   T39] usb 4-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1873.056119][   T39] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1873.070284][   T39] usb 4-1: Product: syz
[ 1873.148630][   T39] usb 4-1: Manufacturer: syz
[ 1873.153073][   T39] usb 4-1: SerialNumber: syz
[ 1873.179206][   T39] usb 4-1: config 0 descriptor??
[ 1873.488117][T22523] netlink: 'syz.5.5767': attribute type 2 has an invalid length.
[ 1873.495843][T22523] netlink: 9 bytes leftover after parsing attributes in process `syz.5.5767'.
[ 1873.519872][   T39] ums-jumpshot 4-1:0.16: USB Mass Storage device detected
[ 1873.546076][   T39] ums-jumpshot 4-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1873.557712][   T39] scsi host1: usb-storage 4-1:0.16
[ 1873.566301][   T39] usb 4-1: USB disconnect, device number 44
[ 1876.294412][T22559] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5773'.
[ 1877.215573][ T8627] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[ 1877.385527][  T661] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[ 1877.437149][ T8627] usb 1-1: Using ep0 maxpacket: 32
[ 1877.504307][ T8627] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1877.515179][ T8627] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1877.524879][ T8627] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1877.533798][ T8627] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1877.545623][ T8627] usb 1-1: config 0 descriptor??
[ 1877.940553][T22584] netlink: 'syz.1.5781': attribute type 2 has an invalid length.
[ 1877.948185][T22584] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5781'.
[ 1877.972556][ T8627] usbhid 1-1:0.0: can't add hid device: -71
[ 1877.993504][ T8627] usbhid: probe of 1-1:0.0 failed with error -71
[ 1878.051547][ T8627] usb 1-1: USB disconnect, device number 52
[ 1878.159370][  T661] usb 3-1: Using ep0 maxpacket: 32
[ 1878.196915][  T661] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1878.207759][  T661] usb 3-1: config 0 has no interface number 0
[ 1878.712120][T22593] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1879.275504][  T661] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1879.284369][  T661] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1879.295494][  T661] usb 3-1: Product: syz
[ 1879.332218][  T661] usb 3-1: Manufacturer: syz
[ 1879.336785][  T661] usb 3-1: SerialNumber: syz
[ 1879.344062][  T661] usb 3-1: config 0 descriptor??
[ 1879.356061][  T661] ums-jumpshot 3-1:0.16: USB Mass Storage device detected
[ 1879.396859][  T661] ums-jumpshot 3-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1879.420330][  T661] scsi host1: usb-storage 3-1:0.16
[ 1879.553055][ T8627] usb 3-1: USB disconnect, device number 52
[ 1879.581953][T22615] netlink: 'syz.5.5787': attribute type 2 has an invalid length.
[ 1879.589539][T22615] netlink: 9 bytes leftover after parsing attributes in process `syz.5.5787'.
[ 1879.794548][T22621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5790'.
[ 1881.191370][T22634] netlink: 'syz.1.5794': attribute type 2 has an invalid length.
[ 1881.199069][T22634] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5794'.
[ 1882.846251][T22648] loop0: detected capacity change from 0 to 256
[ 1882.863854][T22648] FAT-fs (loop0): Unrecognized mount option "nodos" or missing value
[ 1882.922761][T22648] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1883.903986][T22662] incfs: Backing dir is not set, filesystem can't be mounted.
[ 1883.911405][T22662] incfs: mount failed -2
[ 1884.268505][T22667] loop0: detected capacity change from 0 to 256
[ 1884.274877][T22667] FAT-fs (loop0): Unrecognized mount option "nodos" or missing value
[ 1884.357842][T22642] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1884.478136][T22676] overlayfs: unrecognized mount option "hash" or missing value
[ 1884.487108][T22676] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1885.824429][T22689] netlink: 'syz.1.5809': attribute type 2 has an invalid length.
[ 1885.832047][T22689] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5809'.
[ 1885.832203][T21186] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[ 1886.003124][T22697] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5810'.
[ 1886.125757][T22701] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1886.134830][T21186] usb 1-1: Using ep0 maxpacket: 32
[ 1886.143187][T21186] usb 1-1: config 0 has an invalid interface number: 16 but max is 0
[ 1886.193113][T21186] usb 1-1: config 0 has no interface number 0
[ 1886.245386][T21186] usb 1-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1886.317733][T21186] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1886.353208][T21186] usb 1-1: Product: syz
[ 1886.410335][T21186] usb 1-1: Manufacturer: syz
[ 1886.425457][T21186] usb 1-1: SerialNumber: syz
[ 1886.430374][T21186] usb 1-1: config 0 descriptor??
[ 1886.435924][T21186] ums-jumpshot 1-1:0.16: USB Mass Storage device detected
[ 1886.456006][T21186] ums-jumpshot 1-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1886.464128][T21186] scsi host1: usb-storage 1-1:0.16
[ 1886.486509][T22708] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1886.638896][T21186] usb 1-1: USB disconnect, device number 53
[ 1886.775477][T19828] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1886.812726][T22720] 9pnet_fd: Insufficient options for proto=fd
[ 1888.177191][T22739] netlink: 'syz.0.5823': attribute type 2 has an invalid length.
[ 1888.184772][T22739] netlink: 9 bytes leftover after parsing attributes in process `syz.0.5823'.
[ 1888.394386][T22750] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1888.610493][T19829] Bluetooth: hci1: command 0x1003 tx timeout
[ 1888.616408][   T45] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1888.691794][T21186] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1888.752283][T22758] 9pnet_fd: Insufficient options for proto=fd
[ 1888.884883][T22762] 9pnet_fd: Insufficient options for proto=fd
[ 1890.515347][T22775] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1891.097159][T21186] usb 4-1: Using ep0 maxpacket: 32
[ 1891.104464][T21186] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1891.115807][T21186] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1891.126842][T21186] usb 4-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1891.136107][T21186] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1891.144680][T21186] usb 4-1: config 0 descriptor??
[ 1891.233782][T22783] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1891.259738][T21186] usbhid 4-1:0.0: can't add hid device: -71
[ 1891.267747][T21186] usbhid: probe of 4-1:0.0 failed with error -71
[ 1891.278964][T21186] usb 4-1: USB disconnect, device number 45
[ 1892.001626][T22804] netlink: 'syz.3.5840': attribute type 2 has an invalid length.
[ 1892.009255][T22804] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5840'.
[ 1892.081364][T22807] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1892.088681][T22807] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1892.096119][T22807] device bridge_slave_0 entered promiscuous mode
[ 1892.279001][T22807] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1892.286563][T22807] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1892.293925][T22807] device bridge_slave_1 entered promiscuous mode
[ 1892.376037][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1892.383278][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1893.036885][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1893.049186][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1893.067351][T22421] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1893.074303][T22421] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1893.081956][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1893.090171][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1893.098505][T22421] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1893.105354][T22421] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1893.120239][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1893.129011][T22824] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1893.142401][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1893.157458][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1893.171501][T22807] device veth0_vlan entered promiscuous mode
[ 1893.179456][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1893.188026][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1893.230025][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1893.239093][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1893.253996][T22807] device veth1_macvtap entered promiscuous mode
[ 1893.313975][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1893.322279][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1893.341370][T22421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1897.528905][T19828] Bluetooth: hci0: command 0x1003 tx timeout
[ 1897.565883][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1897.680223][T15794] tipc: Disabling bearer <udp:syz0>
[ 1897.686027][T15794] tipc: Left network mode
[ 1897.963276][T22863] 9pnet_fd: Insufficient options for proto=fd
[ 1899.018202][T22867] netlink: 'syz.5.5856': attribute type 2 has an invalid length.
[ 1899.025819][T22867] netlink: 9 bytes leftover after parsing attributes in process `syz.5.5856'.
[ 1899.407981][T22883] loop0: detected capacity change from 0 to 512
[ 1899.471354][T22883] EXT4-fs: Invalid want_extra_isize 0
[ 1899.504597][T22880] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1900.096905][T22898] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1900.191175][T15794] device bridge_slave_1 left promiscuous mode
[ 1900.197203][T15794] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1901.185975][T15794] device bridge_slave_0 left promiscuous mode
[ 1901.191947][T15794] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1901.200630][T15794] device veth1_macvtap left promiscuous mode
[ 1901.216005][T15794] device veth0_vlan left promiscuous mode
[ 1902.065789][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1903.133158][T22940] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1903.440959][T22946] loop0: detected capacity change from 0 to 512
[ 1903.447455][T22946] EXT4-fs: Invalid want_extra_isize 0
[ 1905.127449][T22978] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5891'.
[ 1906.575387][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1906.785662][T19828] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1906.785700][T19829] Bluetooth: hci1: command 0x1003 tx timeout
[ 1907.986752][T23007] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1908.814010][T23031] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5905'.
[ 1911.442566][T23064] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1912.241819][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[ 1912.241858][T19828] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1912.563450][T23083] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5918'.
[ 1912.615531][T19829] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1912.615575][T22338] Bluetooth: hci1: command 0x1003 tx timeout
[ 1912.769242][T23087] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1912.905461][ T2019] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1913.560923][T23095] incfs: Backing dir is not set, filesystem can't be mounted.
[ 1913.568304][T23095] incfs: mount failed -2
[ 1915.554310][ T2019] usb 3-1: Using ep0 maxpacket: 32
[ 1915.612383][ T2019] usb 3-1: device descriptor read/all, error -71
[ 1915.815431][T23123] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1916.085168][T23122] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1916.094692][T23122] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1916.102286][T23122] device bridge_slave_0 entered promiscuous mode
[ 1916.108808][T23130] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1916.109306][T23122] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1916.122796][T23122] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1916.130607][T23122] device bridge_slave_1 entered promiscuous mode
[ 1916.136916][ T2019] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1916.185330][T23122] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1916.192185][T23122] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1916.199301][T23122] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1916.206062][T23122] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1916.233885][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1916.241412][  T660] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1916.253886][  T660] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1916.254845][   T28] kauditd_printk_skb: 15 callbacks suppressed
[ 1916.254859][   T28] audit: type=1326 audit(1733933351.357:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.293512][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1916.303729][  T660] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1916.308097][   T28] audit: type=1326 audit(1733933351.397:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.310598][  T660] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1916.333903][ T2019] usb 3-1: Using ep0 maxpacket: 32
[ 1916.346074][   T28] audit: type=1326 audit(1733933351.397:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.359428][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1916.369455][   T28] audit: type=1326 audit(1733933351.397:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.377825][  T660] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1916.407187][  T660] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1916.414819][ T2019] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1916.426822][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1916.429887][ T2019] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1916.435088][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1916.454752][   T28] audit: type=1326 audit(1733933351.397:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.465071][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1916.484040][ T2019] usb 3-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1916.510089][T23122] device veth0_vlan entered promiscuous mode
[ 1916.516492][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1916.526441][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1916.529240][ T2019] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1916.543157][   T28] audit: type=1326 audit(1733933351.397:2020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.566942][ T2019] usb 3-1: config 0 descriptor??
[ 1916.573141][   T28] audit: type=1326 audit(1733933351.397:2021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.576727][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1916.603586][   T28] audit: type=1326 audit(1733933351.397:2022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.628096][T22870] tipc: Disabling bearer <udp:syz0>
[ 1916.633288][T22870] tipc: Left network mode
[ 1916.635568][   T28] audit: type=1326 audit(1733933351.397:2023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.639824][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1916.660897][   T28] audit: type=1326 audit(1733933351.397:2024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23131 comm="syz.1.5932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 1916.754503][T23122] device veth1_macvtap entered promiscuous mode
[ 1916.765252][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1916.775608][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1916.778256][ T2019] usbhid 3-1:0.0: can't add hid device: -71
[ 1916.789682][ T2019] usbhid: probe of 3-1:0.0 failed with error -71
[ 1916.821867][ T2019] usb 3-1: USB disconnect, device number 54
[ 1916.980237][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1917.002119][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1917.181568][T23149] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5934'.
[ 1918.756294][T22870] device bridge_slave_1 left promiscuous mode
[ 1918.762244][T22870] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1918.769502][T22870] device bridge_slave_0 left promiscuous mode
[ 1918.775477][T22870] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1918.783040][T22870] device veth1_macvtap left promiscuous mode
[ 1918.789041][T22870] device veth0_vlan left promiscuous mode
[ 1918.893035][T23172] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1918.905666][  T661] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[ 1919.116221][T23182] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 1919.255503][T22338] Bluetooth: hci0: command 0x1003 tx timeout
[ 1919.255533][T19829] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1919.405457][  T661] usb 2-1: Using ep0 maxpacket: 32
[ 1919.411695][  T661] usb 2-1: config 0 has an invalid interface number: 16 but max is 0
[ 1919.424826][  T661] usb 2-1: config 0 has no interface number 0
[ 1919.436578][  T661] usb 2-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1919.451831][  T661] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1919.466926][  T661] usb 2-1: Product: syz
[ 1919.474183][  T661] usb 2-1: Manufacturer: syz
[ 1919.482776][  T661] usb 2-1: SerialNumber: syz
[ 1919.497018][  T661] usb 2-1: config 0 descriptor??
[ 1919.509597][  T661] ums-jumpshot 2-1:0.16: USB Mass Storage device detected
[ 1919.536861][  T661] ums-jumpshot 2-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1919.705554][ T6695] usb 2-1: USB disconnect, device number 48
[ 1921.775854][T23216] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1923.255524][ T2019] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1923.436968][ T2019] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1923.455485][ T2019] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1923.475207][ T2019] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1923.485201][ T2019] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1923.493852][ T2019] usb 4-1: config 0 descriptor??
[ 1924.670621][T22870] tipc: Disabling bearer <udp:syz0>
[ 1924.678299][T22870] tipc: Left network mode
[ 1924.787941][  T661] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[ 1924.861915][T23261] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1924.868955][T23261] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1924.876854][T23261] device bridge_slave_0 entered promiscuous mode
[ 1924.885568][T23261] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1924.892433][T23261] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1924.900002][T23261] device bridge_slave_1 entered promiscuous mode
[ 1924.976108][T23261] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1924.982982][T23261] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1924.990095][T23261] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1924.996882][T23261] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1925.004958][  T661] usb 2-1: Using ep0 maxpacket: 32
[ 1925.012064][  T661] usb 2-1: config 0 has an invalid interface number: 16 but max is 0
[ 1925.020217][ T2019] uclogic 0003:256C:006D.0013: failed retrieving Huion firmware version: -71
[ 1925.036207][  T661] usb 2-1: config 0 has no interface number 0
[ 1925.042223][ T2019] uclogic 0003:256C:006D.0013: failed probing parameters: -71
[ 1925.049815][ T2019] uclogic: probe of 0003:256C:006D.0013 failed with error -71
[ 1925.060917][  T661] usb 2-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1925.062827][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1925.076776][ T2019] usb 4-1: USB disconnect, device number 46
[ 1925.082635][  T661] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1925.082671][  T660] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1925.096457][  T661] usb 2-1: Product: syz
[ 1925.101981][  T660] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1925.170433][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1925.374378][  T660] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1925.375397][  T661] usb 2-1: Manufacturer: syz
[ 1925.381348][  T660] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1925.386250][  T661] usb 2-1: SerialNumber: syz
[ 1925.393056][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1925.405634][  T660] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1925.407844][  T661] usb 2-1: config 0 descriptor??
[ 1925.412467][  T660] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1925.430230][  T661] ums-jumpshot 2-1:0.16: USB Mass Storage device detected
[ 1925.437863][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1925.446007][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1925.446837][  T661] ums-jumpshot 2-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1925.461928][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1925.473367][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1925.482445][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1925.489885][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1925.498253][T23261] device veth0_vlan entered promiscuous mode
[ 1925.512111][T23261] device veth1_macvtap entered promiscuous mode
[ 1925.562218][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1925.571293][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1925.573580][T23278] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1925.579806][  T660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1925.852718][T22870] device bridge_slave_1 left promiscuous mode
[ 1925.862120][T22870] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1925.897450][T21186] usb 2-1: USB disconnect, device number 49
[ 1926.019538][T22870] device bridge_slave_0 left promiscuous mode
[ 1926.073822][T22870] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1926.157627][T22870] device veth1_macvtap left promiscuous mode
[ 1926.208256][T22870] device veth0_vlan left promiscuous mode
[ 1928.481281][T23318] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1928.512746][T23322] loop0: detected capacity change from 0 to 2048
[ 1928.527679][T23322] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1929.522686][T23322] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1930.182226][T23348] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.5980: bg 0: block 234: padding at end of block bitmap is not set
[ 1930.197411][T23348] EXT4-fs (loop0): Remounting filesystem read-only
[ 1932.111054][T23261] EXT4-fs (loop0): unmounting filesystem.
[ 1934.960387][T23384] loop0: detected capacity change from 0 to 256
[ 1934.974629][T23384] FAT-fs (loop0): Unrecognized mount option "nodos" or missing value
[ 1935.048221][T23389] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1935.795639][T23398] incfs: Backing dir is not set, filesystem can't be mounted.
[ 1935.803074][T23398] incfs: mount failed -2
[ 1936.905455][   T39] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 1937.081228][T23413] netlink: 'syz.2.5997': attribute type 2 has an invalid length.
[ 1937.088812][T23413] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5997'.
[ 1937.135492][   T39] usb 4-1: Using ep0 maxpacket: 32
[ 1937.145899][   T39] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[ 1937.304283][   T39] usb 4-1: config 0 has no interface number 0
[ 1937.312004][   T39] usb 4-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1937.335442][   T39] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1937.343270][   T39] usb 4-1: Product: syz
[ 1937.404505][   T39] usb 4-1: Manufacturer: syz
[ 1937.624700][T23421] tipc: Started in network mode
[ 1937.634295][T23421] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[ 1937.645031][T23421] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1937.677874][   T39] usb 4-1: SerialNumber: syz
[ 1937.694200][   T39] usb 4-1: config 0 descriptor??
[ 1937.719838][   T39] ums-jumpshot 4-1:0.16: USB Mass Storage device detected
[ 1937.779540][   T39] ums-jumpshot 4-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1937.919152][  T851] usb 4-1: USB disconnect, device number 47
[ 1938.655574][  T294] tipc: Node number set to 4269801491
[ 1938.869223][T23443] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1939.271733][T23453] incfs: Backing dir is not set, filesystem can't be mounted.
[ 1939.279173][T23453] incfs: mount failed -2
[ 1943.357475][  T851] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1944.476009][  T851] usb 3-1: Using ep0 maxpacket: 32
[ 1944.490128][  T851] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1944.505445][  T851] usb 3-1: config 0 has no interface number 0
[ 1944.512947][  T851] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1944.539771][  T851] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1946.480728][T23516] overlayfs: statfs failed on './file0'
[ 1946.885118][  T851] usb 3-1: Product: syz
[ 1946.932932][  T851] usb 3-1: Manufacturer: syz
[ 1946.939482][  T851] usb 3-1: SerialNumber: syz
[ 1947.519992][  T851] usb 3-1: config 0 descriptor??
[ 1947.538197][  T851] usb 3-1: can't set config #0, error -71
[ 1947.733377][  T851] usb 3-1: USB disconnect, device number 55
[ 1948.149404][T23543] loop0: detected capacity change from 0 to 256
[ 1948.164146][T23543] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1948.286697][   T28] kauditd_printk_skb: 17 callbacks suppressed
[ 1948.286714][   T28] audit: type=1400 audit(1733933383.397:2042): avc:  denied  { mounton } for  pid=23542 comm="syz.0.6033" path="/16/file2/file2" dev="loop0" ino=1048649 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1948.342925][   T28] audit: type=1400 audit(1733933383.427:2043): avc:  denied  { remove_name } for  pid=23542 comm="syz.0.6033" name=".index" dev="loop0" ino=1048651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1948.376864][   T28] audit: type=1400 audit(1733933383.427:2044): avc:  denied  { rmdir } for  pid=23542 comm="syz.0.6033" name=".index" dev="loop0" ino=1048651 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1950.704044][T23572] loop0: detected capacity change from 0 to 2048
[ 1950.763233][T23572] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 1951.708370][T23261] EXT4-fs (loop0): unmounting filesystem.
[ 1954.527684][T23603] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1954.591244][T23601] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1954.598601][T23601] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1954.605931][T23601] device bridge_slave_0 entered promiscuous mode
[ 1954.613805][T23601] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1954.620998][T23601] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1954.628339][T23601] device bridge_slave_1 entered promiscuous mode
[ 1954.724430][T23601] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1954.731307][T23601] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1954.738403][T23601] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1954.745168][T23601] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1954.966680][T23614] incfs: Backing dir is not set, filesystem can't be mounted.
[ 1954.974060][T23614] incfs: mount failed -2
[ 1955.234652][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1955.242240][T15794] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1955.249713][T15794] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1955.275244][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1955.286997][T15794] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1955.293877][T15794] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1955.305094][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1955.313213][T15794] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1955.320089][T15794] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1955.336029][T23622] overlayfs: statfs failed on './file0'
[ 1955.371373][T23601] device veth0_vlan entered promiscuous mode
[ 1955.382694][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1955.391268][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1955.407629][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1955.435566][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1955.442867][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1955.450682][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1955.463940][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1955.478063][T23601] device veth1_macvtap entered promiscuous mode
[ 1955.489001][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1955.501482][T15794] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1955.544811][T23630] 9pnet_fd: Insufficient options for proto=fd
[ 1958.956210][T12023] tipc: Disabling bearer <udp:syz0>
[ 1958.961313][T12023] tipc: Left network mode
[ 1959.001034][T23655] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1959.341103][   T39] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1959.358097][T23663] loop0: detected capacity change from 0 to 256
[ 1959.377549][T23663] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1960.505442][   T39] usb 3-1: Using ep0 maxpacket: 32
[ 1960.512039][   T39] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1960.527909][   T39] usb 3-1: config 0 has no interface number 0
[ 1960.542134][   T39] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1960.551529][   T39] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1960.640293][   T39] usb 3-1: Product: syz
[ 1960.658549][   T39] usb 3-1: Manufacturer: syz
[ 1960.670562][   T39] usb 3-1: SerialNumber: syz
[ 1960.841782][   T28] audit: type=1326 audit(1733933395.947:2045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1961.888269][   T39] usb 3-1: config 0 descriptor??
[ 1961.920271][   T39] ums-jumpshot 3-1:0.16: USB Mass Storage device detected
[ 1961.928647][   T28] audit: type=1326 audit(1733933397.037:2046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1962.040753][   T39] ums-jumpshot 3-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1962.045157][   T28] audit: type=1326 audit(1733933397.147:2047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1962.076341][   T28] audit: type=1326 audit(1733933397.187:2048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1962.080298][   T39] scsi host1: usb-storage 3-1:0.16
[ 1962.099921][   T28] audit: type=1326 audit(1733933397.187:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1962.128264][   T28] audit: type=1326 audit(1733933397.187:2050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1962.156279][   T39] usb 3-1: USB disconnect, device number 56
[ 1962.283859][T12023] device bridge_slave_1 left promiscuous mode
[ 1962.324437][T12023] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1962.525734][T12023] device bridge_slave_0 left promiscuous mode
[ 1962.615116][   T28] audit: type=1326 audit(1733933397.187:2051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1962.653795][T12023] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1962.808319][T12023] device veth1_macvtap left promiscuous mode
[ 1962.871231][T12023] device veth0_vlan left promiscuous mode
[ 1963.008928][   T28] audit: type=1326 audit(1733933397.187:2052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1963.093723][   T28] audit: type=1326 audit(1733933397.187:2053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1963.169518][   T28] audit: type=1326 audit(1733933397.187:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23676 comm="syz.3.6067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f9fd7ff19 code=0x7ffc0000
[ 1963.590093][T23692] loop0: detected capacity change from 0 to 40427
[ 1963.669652][T23692] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1963.679481][T23692] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1963.695150][T23692] F2FS-fs (loop0): invalid crc value
[ 1963.712426][T23692] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1963.756489][T23692] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1963.763463][T23692] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1963.850696][T23261] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1963.850721][T23261] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1963.859339][T23261] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1964.862186][T23261] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1964.869773][T23261] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1964.877153][T23261] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1964.884645][T23261] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1966.635418][ T2019] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[ 1967.281522][   T28] kauditd_printk_skb: 24 callbacks suppressed
[ 1967.281545][   T28] audit: type=1400 audit(1733933402.387:2079): avc:  denied  { write } for  pid=23756 comm="syz.0.6085" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[ 1969.985710][ T2019] usb 2-1: device not accepting address 50, error -71
[ 1970.219656][T23792] tipc: Started in network mode
[ 1970.224832][T23792] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[ 1970.235966][T23792] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1970.315490][ T8627] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[ 1970.515425][ T8627] usb 1-1: Using ep0 maxpacket: 32
[ 1970.521562][ T8627] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1970.532432][ T8627] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1970.542245][ T8627] usb 1-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1970.551167][ T8627] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1970.560729][ T8627] usb 1-1: config 0 descriptor??
[ 1977.532094][  T390] tipc: Node number set to 4269801491
[ 1977.543496][ T8627] usbhid 1-1:0.0: can't add hid device: -71
[ 1977.569838][ T8627] usbhid: probe of 1-1:0.0 failed with error -71
[ 1977.889731][ T8627] usb 1-1: USB disconnect, device number 54
[ 1977.916930][T23833] overlayfs: failed to resolve './file2': -2
[ 1978.220187][T23836] tipc: Started in network mode
[ 1978.225274][T23836] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[ 1978.236186][T23836] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1980.084749][T23843] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1980.307071][ T7334] tipc: Node number set to 4269801491
[ 1980.456386][T23858] loop0: detected capacity change from 0 to 128
[ 1980.828307][   T28] audit: type=1326 audit(1733933415.577:2080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1980.935430][   T28] audit: type=1326 audit(1733933415.577:2081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1980.959785][   T28] audit: type=1326 audit(1733933415.577:2082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.206965][   T28] audit: type=1326 audit(1733933415.587:2083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.245214][   T28] audit: type=1326 audit(1733933415.587:2084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.282826][   T28] audit: type=1326 audit(1733933415.587:2085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.306045][   T28] audit: type=1326 audit(1733933415.587:2086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.329415][   T28] audit: type=1326 audit(1733933415.587:2087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.352718][   T28] audit: type=1326 audit(1733933415.587:2088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.391924][   T28] audit: type=1326 audit(1733933415.587:2089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23854 comm="syz.0.6112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f399e37ff19 code=0x7ffc0000
[ 1984.448629][T23875] loop0: detected capacity change from 0 to 256
[ 1984.477177][T23875] FAT-fs (loop0): Unrecognized mount option "nodos" or missing value
[ 1984.522458][T23885] overlayfs: failed to resolve './file2': -2
[ 1984.553585][T23883] tipc: Started in network mode
[ 1984.558336][T23883] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[ 1984.568356][T23883] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1985.032900][T23895] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6118'.
[ 1985.042742][  T851] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[ 1985.235432][  T851] usb 1-1: Using ep0 maxpacket: 32
[ 1985.242242][  T851] usb 1-1: config 0 has an invalid interface number: 16 but max is 0
[ 1985.250534][  T851] usb 1-1: config 0 has no interface number 0
[ 1985.285599][  T851] usb 1-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1985.297696][  T851] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1985.322583][  T851] usb 1-1: Product: syz
[ 1985.332076][  T851] usb 1-1: Manufacturer: syz
[ 1985.341767][  T851] usb 1-1: SerialNumber: syz
[ 1985.364075][  T851] usb 1-1: config 0 descriptor??
[ 1985.377277][  T851] ums-jumpshot 1-1:0.16: USB Mass Storage device detected
[ 1985.404348][  T851] ums-jumpshot 1-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1985.415544][  T851] scsi host1: usb-storage 1-1:0.16
[ 1985.579064][  T851] usb 1-1: USB disconnect, device number 55
[ 1987.272327][T23930] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1987.281413][ T6695] tipc: Node number set to 4269801491
[ 1987.403688][T23942] overlayfs: failed to resolve './file2': -2
[ 1991.565424][  T851] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 1991.573351][T23978] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1991.695440][T21186] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1991.755429][  T851] usb 4-1: Using ep0 maxpacket: 32
[ 1991.761453][  T851] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[ 1991.784047][  T851] usb 4-1: config 0 has no interface number 0
[ 1991.797914][  T851] usb 4-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1991.836897][  T851] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1991.845085][  T851] usb 4-1: Product: syz
[ 1991.849768][  T851] usb 4-1: Manufacturer: syz
[ 1991.854225][  T851] usb 4-1: SerialNumber: syz
[ 1991.859608][  T851] usb 4-1: config 0 descriptor??
[ 1991.875786][  T851] ums-jumpshot 4-1:0.16: USB Mass Storage device detected
[ 1991.883525][  T851] ums-jumpshot 4-1:0.16: Quirks match for vid 05dc pid 0001: 2
[ 1992.037508][T21186] usb 3-1: Using ep0 maxpacket: 32
[ 1992.048223][T21186] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1992.232064][T21186] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1992.254479][  T851] scsi host1: usb-storage 4-1:0.16
[ 1992.260912][T21186] usb 3-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 1992.267950][  T851] usb 4-1: USB disconnect, device number 48
[ 1992.323731][T21186] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1992.360544][T21186] usb 3-1: config 0 descriptor??
[ 1995.419404][T21186] usbhid 3-1:0.0: can't add hid device: -71
[ 1995.425212][T21186] usbhid: probe of 3-1:0.0 failed with error -71
[ 1995.496392][T21186] usb 3-1: USB disconnect, device number 58
[ 1996.966707][T24017] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 2002.909192][T24089] loop0: detected capacity change from 0 to 2048
[ 2003.083727][T24089] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2004.880656][T23261] EXT4-fs (loop0): unmounting filesystem.
[ 2005.148065][T24106] loop0: detected capacity change from 0 to 2048
[ 2005.159563][T24106] EXT4-fs: Ignoring removed mblk_io_submit option
[ 2005.209692][T24106] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2008.227441][T23261] EXT4-fs (loop0): unmounting filesystem.
[ 2008.447483][T24128] overlayfs: unrecognized mount option "hash" or missing value
[ 2008.613195][T24130] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 2008.621939][T24133] 9pnet_fd: Insufficient options for proto=fd
[ 2021.898470][   T28] kauditd_printk_skb: 25 callbacks suppressed
[ 2021.915595][   T28] audit: type=1326 audit(1733933456.997:2115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.149432][   T28] audit: type=1326 audit(1733933456.997:2116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.188189][   T28] audit: type=1326 audit(1733933456.997:2117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.211713][   T28] audit: type=1326 audit(1733933456.997:2118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.249585][   T28] audit: type=1326 audit(1733933456.997:2119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.280589][   T28] audit: type=1326 audit(1733933456.997:2120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.391690][   T28] audit: type=1326 audit(1733933456.997:2121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.432735][T24211] loop0: detected capacity change from 0 to 40427
[ 2022.440232][   T28] audit: type=1326 audit(1733933456.997:2122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.463716][T24211] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[ 2022.799913][T24211] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 2022.809746][   T28] audit: type=1326 audit(1733933456.997:2123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.833306][T24211] F2FS-fs (loop0): invalid crc value
[ 2022.838632][   T28] audit: type=1326 audit(1733933456.997:2124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24212 comm="syz.1.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b5e97ff19 code=0x7ffc0000
[ 2022.884503][T24211] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 2023.039561][T24211] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 2023.048589][T24211] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 2023.111877][T24239] device wireguard0 entered promiscuous mode
[ 2023.115828][T23261] syz-executor: attempt to access beyond end of device
[ 2023.115828][T23261] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2025.721732][T24283] loop0: detected capacity change from 0 to 2048
[ 2025.742176][T24283] EXT4-fs: Ignoring removed mblk_io_submit option
[ 2025.815834][T24283] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2027.956968][T24297] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.6225: bg 0: block 234: padding at end of block bitmap is not set
[ 2027.971706][T24297] EXT4-fs (loop0): Remounting filesystem read-only
[ 2028.019260][T24298] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6223'.
[ 2029.362136][T22338] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 2029.368396][T19829] Bluetooth: hci0: command 0x1003 tx timeout
[ 2029.446995][T23261] EXT4-fs (loop0): unmounting filesystem.
[ 2032.057685][T24348] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6237'.
[ 2032.440854][T24360] incfs: Backing dir is not set, filesystem can't be mounted.
[ 2032.448759][T24360] incfs: mount failed -2
[ 2033.973383][T24365] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6242'.
[ 2034.043547][T24366] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 2035.667738][T19829] Bluetooth: hci0: sending frame failed (-49)
[ 2035.674070][T22338] Bluetooth: hci0: Opcode 0x1003 failed: -49
[ 2048.862466][T24542] overlayfs: unrecognized mount option "hash" or missing value
[ 2048.876585][T24542] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 2048.915432][ T2019] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[ 2049.106424][ T2019] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2049.133827][ T2019] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2049.159896][ T2019] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 2049.182243][ T2019] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2049.205605][ T2019] usb 4-1: config 0 descriptor??
[ 2050.228213][T24563] loop0: detected capacity change from 0 to 2048
[ 2050.345634][ T2019] uclogic 0003:256C:006D.0014: failed retrieving Huion firmware version: -71
[ 2050.382173][ T2019] uclogic 0003:256C:006D.0014: failed probing parameters: -71
[ 2050.389335][T24563] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2050.859017][ T2019] uclogic: probe of 0003:256C:006D.0014 failed with error -71
[ 2051.269117][ T2019] usb 4-1: USB disconnect, device number 49
[ 2051.375335][T23261] EXT4-fs (loop0): unmounting filesystem.
[ 2053.206456][   T28] kauditd_printk_skb: 88 callbacks suppressed
[ 2053.206573][   T28] audit: type=1326 audit(1733933488.307:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2053.236768][   T28] audit: type=1326 audit(1733933488.307:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2053.296373][   T28] audit: type=1326 audit(1733933488.307:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2053.320010][   T28] audit: type=1326 audit(1733933488.307:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2053.433135][T24595] incfs: Backing dir is not set, filesystem can't be mounted.
[ 2053.440813][T24595] incfs: mount failed -2
[ 2053.514131][   T28] audit: type=1326 audit(1733933488.307:2217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2053.692679][   T28] audit: type=1326 audit(1733933488.307:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2053.720141][   T28] audit: type=1326 audit(1733933488.307:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2053.761995][   T28] audit: type=1326 audit(1733933488.307:2220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2054.097704][   T28] audit: type=1326 audit(1733933488.307:2221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2054.154551][   T28] audit: type=1326 audit(1733933488.307:2222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24581 comm="syz.2.6307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb382d7ff19 code=0x7ffc0000
[ 2054.182471][   T24] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[ 2054.212085][T24607] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 2054.395350][   T24] usb 4-1: Using ep0 maxpacket: 32
[ 2054.401406][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2054.421949][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2054.445551][   T24] usb 4-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00
[ 2054.461929][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2054.478014][   T24] usb 4-1: config 0 descriptor??
[ 2056.618935][   T24] usbhid 4-1:0.0: can't add hid device: -71
[ 2056.624800][   T24] usbhid: probe of 4-1:0.0 failed with error -71
[ 2056.656545][   T24] usb 4-1: USB disconnect, device number 50
[ 2057.319494][T24644] loop0: detected capacity change from 0 to 8192
[ 2057.960621][T24646] ------------[ cut here ]------------
[ 2057.965949][T24646] kernel BUG at fs/buffer.c:622!
[ 2057.974741][T24659] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[ 2057.983270][T24646] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 2057.989165][T24646] CPU: 1 PID: 24646 Comm: syz.0.6320 Not tainted 6.1.115-syzkaller-00011-g904ebc320c2c #0
[ 2057.998883][T24646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 2058.008781][T24646] RIP: 0010:mark_buffer_dirty_inode+0x305/0x310
[ 2058.014856][T24646] Code: ef e8 df 1e e7 ff 48 8b 45 b8 49 89 45 00 48 89 df e8 0f d7 4b 03 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 2b af 9f ff <0f> 0b 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41
[ 2058.034301][T24646] RSP: 0018:ffffc9000258f300 EFLAGS: 00010246
[ 2058.040197][T24646] RAX: ffffffff81d5d785 RBX: 1ffff1102720464d RCX: 0000000000080000
[ 2058.048010][T24646] RDX: ffffc9001464a000 RSI: 000000000007ffff RDI: 0000000000080000
[ 2058.055823][T24646] RBP: ffffc9000258f350 R08: ffffffff81ab3ed3 R09: fffff940009db6d9
[ 2058.063632][T24646] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[ 2058.071442][T24646] R13: ffff888139023180 R14: ffff888119ecde70 R15: ffff888139023268
[ 2058.079253][T24646] FS:  00007f399f1516c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2058.088023][T24646] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2058.094441][T24646] CR2: 0000000020391000 CR3: 00000001229e8000 CR4: 00000000003506a0
[ 2058.102255][T24646] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2058.110064][T24646] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2058.117880][T24646] Call Trace:
[ 2058.121003][T24646]  <TASK>
[ 2058.123781][T24646]  ? __die_body+0x62/0xb0
[ 2058.127946][T24646]  ? die+0x88/0xb0
[ 2058.131505][T24646]  ? do_trap+0x103/0x330
[ 2058.135586][T24646]  ? mark_buffer_dirty_inode+0x305/0x310
[ 2058.141080][T24646]  ? handle_invalid_op+0x95/0xc0
[ 2058.145826][T24646]  ? mark_buffer_dirty_inode+0x305/0x310
[ 2058.151292][T24646]  ? exc_invalid_op+0x32/0x50
[ 2058.155805][T24646]  ? asm_exc_invalid_op+0x1b/0x20
[ 2058.160682][T24646]  ? folio_mapping+0x113/0x190
[ 2058.165263][T24646]  ? mark_buffer_dirty_inode+0x305/0x310
[ 2058.170733][T24646]  ? mark_buffer_dirty_inode+0x305/0x310
[ 2058.176206][T24646]  fat_mirror_bhs+0x335/0x470
[ 2058.180721][T24646]  fat_ent_write+0x12c/0x170
[ 2058.185140][T24646]  fat_chain_add+0x24d/0xa30
[ 2058.189569][T24646]  ? fat_clusters_flush+0x420/0x420
[ 2058.194604][T24646]  ? fat_bmap+0x4a3/0x5c0
[ 2058.198769][T24646]  fat_get_block+0x8b2/0xcf0
[ 2058.203199][T24646]  ? fat_block_truncate_page+0x50/0x50
[ 2058.208485][T24646]  ? create_empty_buffers+0x4af/0x4f0
[ 2058.213697][T24646]  ? __kasan_check_read+0x11/0x20
[ 2058.218554][T24646]  __block_write_begin_int+0x49c/0x1440
[ 2058.223941][T24646]  ? fat_block_truncate_page+0x50/0x50
[ 2058.229230][T24646]  ? page_zero_new_buffers+0x3e0/0x3e0
[ 2058.234532][T24646]  ? __kasan_check_read+0x11/0x20
[ 2058.239386][T24646]  cont_write_begin+0x68e/0x950
[ 2058.244070][T24646]  ? asm_exc_page_fault+0x27/0x30
[ 2058.248931][T24646]  ? fault_in_iov_iter_readable+0x49/0x290
[ 2058.254574][T24646]  ? generic_cont_expand_simple+0x2a0/0x2a0
[ 2058.260301][T24646]  ? fault_in_readable+0x1bd/0x2d0
[ 2058.265256][T24646]  ? fault_in_safe_writeable+0x240/0x240
[ 2058.270720][T24646]  fat_write_begin+0xa1/0x170
[ 2058.275227][T24646]  ? fat_block_truncate_page+0x50/0x50
[ 2058.280522][T24646]  generic_perform_write+0x2f9/0x5c0
[ 2058.285645][T24646]  ? generic_file_direct_write+0x6b0/0x6b0
[ 2058.291292][T24646]  ? __file_remove_privs+0x640/0x640
[ 2058.296409][T24646]  ? generic_write_checks+0x138/0x1c0
[ 2058.301615][T24646]  __generic_file_write_iter+0x174/0x3a0
[ 2058.307088][T24646]  generic_file_write_iter+0xb1/0x310
[ 2058.312290][T24646]  vfs_write+0xaf6/0xed0
[ 2058.316369][T24646]  ? file_end_write+0x1c0/0x1c0
[ 2058.321059][T24646]  ? mutex_lock+0xb1/0x1e0
[ 2058.325306][T24646]  ? bit_wait_io_timeout+0x120/0x120
[ 2058.330428][T24646]  ? __fdget_pos+0x2e2/0x390
[ 2058.334853][T24646]  ? ksys_write+0x77/0x2c0
[ 2058.339126][T24646]  ksys_write+0x199/0x2c0
[ 2058.343275][T24646]  ? __this_cpu_preempt_check+0x13/0x20
[ 2058.348656][T24646]  ? xfd_validate_state+0x6f/0x170
[ 2058.353605][T24646]  ? __ia32_sys_read+0x90/0x90
[ 2058.358219][T24646]  ? fpregs_restore_userregs+0x130/0x290
[ 2058.363674][T24646]  __x64_sys_write+0x7b/0x90
[ 2058.368095][T24646]  x64_sys_call+0x2f/0x9a0
[ 2058.372354][T24646]  do_syscall_64+0x3b/0xb0
[ 2058.376604][T24646]  ? clear_bhb_loop+0x55/0xb0
[ 2058.381115][T24646]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 2058.386844][T24646] RIP: 0033:0x7f399e37ff19
[ 2058.391096][T24646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2058.410535][T24646] RSP: 002b:00007f399f151058 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2058.418780][T24646] RAX: ffffffffffffffda RBX: 00007f399e546080 RCX: 00007f399e37ff19
[ 2058.426596][T24646] RDX: 00000000ffffff6a RSI: 0000000020000000 RDI: 0000000000000009
[ 2058.434404][T24646] RBP: 00007f399e3f3cc8 R08: 0000000000000000 R09: 0000000000000000
[ 2058.442222][T24646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2058.450031][T24646] R13: 0000000000000000 R14: 00007f399e546080 R15: 00007fffb0e66ae8
[ 2058.457844][T24646]  </TASK>
[ 2058.460708][T24646] Modules linked in:
[ 2058.492526][T24646] ---[ end trace 0000000000000000 ]---
[ 2058.517329][T24646] RIP: 0010:mark_buffer_dirty_inode+0x305/0x310
[ 2058.657485][T24646] Code: ef e8 df 1e e7 ff 48 8b 45 b8 49 89 45 00 48 89 df e8 0f d7 4b 03 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 2b af 9f ff <0f> 0b 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41
[ 2058.721117][T24646] RSP: 0018:ffffc9000258f300 EFLAGS: 00010246
[ 2058.743627][T24646] RAX: ffffffff81d5d785 RBX: 1ffff1102720464d RCX: 0000000000080000
[ 2058.765127][T24646] RDX: ffffc9001464a000 RSI: 000000000007ffff RDI: 0000000000080000
[ 2058.779311][T24646] RBP: ffffc9000258f350 R08: ffffffff81ab3ed3 R09: fffff940009db6d9
[ 2058.796521][T24646] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[ 2058.809545][T24646] R13: ffff888139023180 R14: ffff888119ecde70 R15: ffff888139023268
[ 2058.821958][T24646] FS:  00007f399f1516c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 2058.830776][T24646] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2058.837659][T24646] CR2: 00007fb383b7cfb8 CR3: 00000001229e8000 CR4: 00000000003506a0
[ 2058.845533][T24646] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2058.853298][T24646] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2058.861170][T24646] Kernel panic - not syncing: Fatal exception
[ 2058.867275][T24646] Kernel Offset: disabled
[ 2058.871409][T24646] Rebooting in 86400 seconds..