last executing test programs:

5m37.767237215s ago: executing program 4 (id=203):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
setpgid(0x0, 0x0)

5m37.699350866s ago: executing program 4 (id=204):
r0 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r1, 0xa, 0x12)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000008000000000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000300)='mm_page_alloc\x00', r4}, 0x18)
poll(&(0x7f0000b2c000)=[{r2}], 0x2c, 0xffffffffffbffff8)
dup2(r1, r2)
fcntl$setown(r1, 0x8, r0)
tkill(r0, 0x13)

5m37.570532708s ago: executing program 4 (id=205):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x8, 0x8, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
select(0xff00, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x100}, 0x0, &(0x7f0000000040))

5m37.405297101s ago: executing program 4 (id=207):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x18)
setpgid(0x0, 0x0)

5m37.378645931s ago: executing program 4 (id=209):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xa, {"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", 0x1000}}, 0x1006)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="0300000055bc69741f2b73de40afe10100000010", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800500190000000000050018"], 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000004000000000000008100d00850000007b000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x8400, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r4 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r5, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/40, 0x54}], 0x1)

5m36.429358995s ago: executing program 4 (id=213):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup(r1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYRES64=r0], &(0x7f0000000240)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1b, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x240, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000240), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x4)

5m20.340842098s ago: executing program 32 (id=213):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup(r1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYRES64=r0], &(0x7f0000000240)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1b, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x240, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2$9p(&(0x7f0000000240), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x4)

6.933162635s ago: executing program 0 (id=1542):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = getpid()
fcntl$lock(r1, 0x24, &(0x7f0000000000)={0x1, 0x2, 0x3, 0x10000, r2})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000100)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000180)=ANY=[], 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0xfffffffffffffffd)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000002c0), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000040000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r5}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='fscache_resize\x00', r6, 0x0, 0x4}, 0x18)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000002600000007"], 0x48)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000580), 0x202, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000200)="2e260f01ee0f99b6dbf736640f225a6766c7442400000000006766c744240200c0db786766c744240600000000670f011424640f2324baf80c66b8aa3be78866efbafc0cedf2a70f01c8b89f008ec0baf80c66b8261de98f66efbafc0ced", 0x5e}], 0x1, 0x48, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r9}, 0x10)
socket$key(0xf, 0x3, 0x2)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001040)=ANY=[@ANYBLOB="38010000100013070000080000000000ffffffff000000000002000000000000fe8000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000200040000000000000048000200656362286369706865725f6e756c6c29"], 0x138}, 0x1, 0xe}, 0x0)
socket$pptp(0x18, 0x1, 0x2)
syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)

6.882730726s ago: executing program 0 (id=1543):
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x15)
r0 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r0, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x40}}, 0x18)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x7, 0x0, &(0x7f00000002c0)="b9ff0307600300", 0x0, 0x5da0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

6.676721939s ago: executing program 5 (id=1546):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000d16db2c7430cc45ff31610e07ce73aa8acda5ed78c9f3baa5751569940386bd1ab72add375b11474db3f967132aec82fa2de33425cbe45d86322359cbe30fc8a1da1ee8f7ee8ac0de46e32c0525729ee6b594455b8579a8db2c52c1b64c0392a8b9c31661518e2a8", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
rename(&(0x7f0000000340)='./file0/file0\x00', &(0x7f0000000380)='./file1\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
prctl$PR_SET_SECUREBITS(0x1c, 0x7)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000140)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@dioread_nolock}, {@bsdgroups}]}, 0x6, 0x4cd, &(0x7f0000000c80)="$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")
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x13, 0xa01, 0x0, 0x0, {0x7}}, 0x14}}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r3, &(0x7f00000001c0)='2', 0x1, 0xfecd)
setfsuid(0xee00)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32, @ANYBLOB="00000000000000001700"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000680)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r6}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='percpu_free_percpu\x00'}, 0x18)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0xffffffffffffff9c, 0x0, 0x2)

5.465403688s ago: executing program 1 (id=1550):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$F2FS_IOC_SEC_TRIM_FILE(r1, 0x4018f514, &(0x7f00000000c0)={0x0, 0x6, 0x3})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xa, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$chown(0x4, r6, 0xee01, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000940)={{0x0, 0x2001, 0x257f, 0x5}, 'syz0\x00', 0x38})
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x3)

5.226884911s ago: executing program 5 (id=1552):
pipe2$9p(&(0x7f0000000240), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r3}, 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

5.152076212s ago: executing program 0 (id=1553):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x1, 0x7fe2, 0x1, 0x12}, 0x48)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_GET_MP_STATE(r3, 0x8004ae98, &(0x7f0000000280))
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000002680)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000005b7080000001000007b8af8ff00000000bf8200000000000007022000f8ffffffb703000008000000b7040000000000008500000003000000950000000000000038cb02d3bb78746bf36a21b129c604273025c7b266c29293a0e6b2f442964de19b7f3889b94fb079ee882d6843b60b272c3bcbbca7e8048a5c0798019bdeef90a4d50c7deb70b1d6b81de7ac24a456bd64f2f64521f9f793fef76b50ed07a0cbcbe822d82dba851c882f51b5f18611d5162da1b41e272521d77684b6cd1f5a88bb"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r7}, 0x10)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x2810000, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x25, 0x334, &(0x7f0000000c00)="$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")
getegid()
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, 0x0, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r11, {0x9, 0x9}, {}, {0xc, 0xe}}, [@filter_kind_options=@f_u32={{0x8}, {0x18, 0x2, [@TCA_U32_SEL={0x14, 0x5, {0x0, 0xf7, 0x5, 0x0, 0x0, 0x0, 0x200, 0xc}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x20000880)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5.053109934s ago: executing program 3 (id=1554):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffe00}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r4, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x3, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], <r5=>0x0, 0x6e, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000200), &(0x7f0000000280), 0x8, 0x77, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xd0, 0xd0, 0x9, [@ptr={0xc, 0x0, 0x0, 0x2, 0x2}, @func={0x2, 0x0, 0x0, 0xc, 0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x2, 0x8001}}, @restrict={0x5, 0x0, 0x0, 0xb, 0x2}, @union={0xb, 0x4, 0x0, 0x5, 0x0, 0x6, [{0xe, 0x0, 0x2}, {0x3, 0x1, 0x6}, {0xa, 0x4, 0x7f}, {0x2, 0x2, 0x200}]}, @var={0xc, 0x0, 0x0, 0xe, 0x4}, @struct={0x2, 0x1, 0x0, 0x4, 0x1, 0x800, [{0xba71, 0x5, 0x9}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2, 0xbd}}, @restrict={0xe, 0x0, 0x0, 0xb, 0x5}, @float={0x7, 0x0, 0x0, 0x10, 0x8}]}, {0x0, [0x30, 0x2e, 0x30, 0x30, 0x61, 0x2e, 0x2e]}}, &(0x7f00000007c0)=""/249, 0xf1, 0xf9, 0x0, 0x1}, 0x28)
r7 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
mkdirat(r7, &(0x7f0000000100)='./control\x00', 0x0)
unlinkat(r7, &(0x7f0000000140)='./control\x00', 0x200)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
r9 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE2(r9, &(0x7f0000000a40)={0xb, {'syz0\x00', 'syz0\x00', 'syz1\x00', 0x1, 0x1, 0x597, 0x4, 0x401, 0x20, "ef"}}, 0x119)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
execve(0x0, 0x0, 0x0)

4.936318385s ago: executing program 3 (id=1555):
ioprio_get$uid(0x0, 0xee00)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)="83982baf8675faf435b6c6b217e6c01ddd3307eb47886bd37e6f684038f430c64d4f21aa4027bb4c9fa21ff071d09682243af1a7914283ce53c9ec0e99825d6b85cf9cdead13271cc8171d26dea60606151874385e4b9ee9520f7ad14098c8dc0f2d24f654cb877053b9df74bb590866d9dbe121f98027e0789bc5251179c39810c650914793731ef4a0f480", 0x8c, 0x4)
r0 = socket$inet6(0xa, 0x800, 0x6)
sendto$inet6(r0, &(0x7f00000000c0)="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", 0x1000, 0x0, &(0x7f00000010c0)={0xa, 0x4e22, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xd}, 0x1c)
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000015c0)={0x0, &(0x7f0000001100)=[@cpuid={0x2, 0x18, {0x4, 0xfffffe01}}, @uexit={0x0, 0x18, 0x8e06}, @cpuid={0x2, 0x18, {0x800, 0x8001}}, @code={0x1, 0x5b, {"400f01cf2e0f236666b89a000f00d866b88c008ee0f266450f08f044318200e02a02f3460f1be26546d8e048b800000000000000800f23d00f21f835300000070f23f8f3660f017c78d1"}}, @cpuid={0x2, 0x18, {0x0, 0x6}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x7}, @uexit={0x0, 0x18, 0x9}, @cpuid={0x2, 0x18, {0x6e43, 0x9}}, @cpuid={0x2, 0x18, {0x2, 0x3}}, @uexit={0x0, 0x18, 0x3}, @code={0x1, 0x51, {"66b892000f00d8410f01c2470f2084c4036d6dd15fc4437578c00047d9eeb9800000c00f3235000800000f3067212a0f20e035080000000f22e0c4a2792a5708"}}, @code={0x1, 0x57, {"4373778fe848ecd72ac4810973def43e2e0f6243c00f3066baa00066ed0f32c7442400c35c0000c7442402cd120000c7442406000000000f011c2466ba4200ec364b0fc76e0c"}}, @uexit={0x0, 0x18, 0x8000000000000000}, @code={0x1, 0x66, {"0f32c4814a5f613c0f20c035020000000f22c00f20c035100000000f22c0b9800000c00f3235000400000f30c422d1dda2d12b0000460f01f866baf80cb87ed34b87ef66bafc0c66ed66bad004ec66450f3a211edd"}}, @code={0x1, 0x69, {"46dbe3b9660b00000f32c4e2fd35f326150d000000c744240000800000c74424028a850000c7442406000000000f011424366743f4420faef1f20fd6f248b8db000000000000000f23c80f21f8350000b0000f23f80f01c5"}}, @cpuid={0x2, 0x18, {0xb95, 0x8}}, @cpuid={0x2, 0x18, {0x10000, 0x3}}, @cpuid={0x2, 0x18, {0x5, 0x800}}, @code={0x1, 0x66, {"400fc7aa997b0000410fa0f3f3f04610a414e294000066baf80cb8f434dc8def66bafc0c66b80c0066ef66b8f2008ec8c4217c2e6d0136360f01c5c403d96fdac60f20e035040000000f22e0264a0fc79a51000000"}}, @cpuid={0x2, 0x18, {0x7, 0x9}}, @uexit={0x0, 0x18, 0x1}, @cpuid={0x2, 0x18, {0x4, 0x1}}, @cpuid={0x2, 0x18, {0xffffff8a, 0xb7ed}}, @code={0x1, 0x66, {"66b86c008ed80f20c035040000000f22c00f20e035010000000f22e066baa000b858000000ef36f30fc7368fe97c81f266baf80cb81e4b5887ef66bafc0c66ed450f00ecb805000000b9cc0000000f01d9450f01df"}}, @code={0x1, 0x6b, {"b8010000000f01d9470f0966ba210066b8000066ef480fc759093e0f01c80f01c2f30fc7b7c7470000c74424003ac80000c744240200700000c7442406000000000f011c2466baf80cb8aa85d885ef66bafc0cecc402c9911c08"}}], 0x4b9}) (async)
r1 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000015c0)={0x0, &(0x7f0000001100)=[@cpuid={0x2, 0x18, {0x4, 0xfffffe01}}, @uexit={0x0, 0x18, 0x8e06}, @cpuid={0x2, 0x18, {0x800, 0x8001}}, @code={0x1, 0x5b, {"400f01cf2e0f236666b89a000f00d866b88c008ee0f266450f08f044318200e02a02f3460f1be26546d8e048b800000000000000800f23d00f21f835300000070f23f8f3660f017c78d1"}}, @cpuid={0x2, 0x18, {0x0, 0x6}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x7}, @uexit={0x0, 0x18, 0x9}, @cpuid={0x2, 0x18, {0x6e43, 0x9}}, @cpuid={0x2, 0x18, {0x2, 0x3}}, @uexit={0x0, 0x18, 0x3}, @code={0x1, 0x51, {"66b892000f00d8410f01c2470f2084c4036d6dd15fc4437578c00047d9eeb9800000c00f3235000800000f3067212a0f20e035080000000f22e0c4a2792a5708"}}, @code={0x1, 0x57, {"4373778fe848ecd72ac4810973def43e2e0f6243c00f3066baa00066ed0f32c7442400c35c0000c7442402cd120000c7442406000000000f011c2466ba4200ec364b0fc76e0c"}}, @uexit={0x0, 0x18, 0x8000000000000000}, @code={0x1, 0x66, {"0f32c4814a5f613c0f20c035020000000f22c00f20c035100000000f22c0b9800000c00f3235000400000f30c422d1dda2d12b0000460f01f866baf80cb87ed34b87ef66bafc0c66ed66bad004ec66450f3a211edd"}}, @code={0x1, 0x69, {"46dbe3b9660b00000f32c4e2fd35f326150d000000c744240000800000c74424028a850000c7442406000000000f011424366743f4420faef1f20fd6f248b8db000000000000000f23c80f21f8350000b0000f23f80f01c5"}}, @cpuid={0x2, 0x18, {0xb95, 0x8}}, @cpuid={0x2, 0x18, {0x10000, 0x3}}, @cpuid={0x2, 0x18, {0x5, 0x800}}, @code={0x1, 0x66, {"400fc7aa997b0000410fa0f3f3f04610a414e294000066baf80cb8f434dc8def66bafc0c66b80c0066ef66b8f2008ec8c4217c2e6d0136360f01c5c403d96fdac60f20e035040000000f22e0264a0fc79a51000000"}}, @cpuid={0x2, 0x18, {0x7, 0x9}}, @uexit={0x0, 0x18, 0x1}, @cpuid={0x2, 0x18, {0x4, 0x1}}, @cpuid={0x2, 0x18, {0xffffff8a, 0xb7ed}}, @code={0x1, 0x66, {"66b86c008ed80f20c035040000000f22c00f20e035010000000f22e066baa000b858000000ef36f30fc7368fe97c81f266baf80cb81e4b5887ef66bafc0c66ed450f00ecb805000000b9cc0000000f01d9450f01df"}}, @code={0x1, 0x6b, {"b8010000000f01d9470f0966ba210066b8000066ef480fc759093e0f01c80f01c2f30fc7b7c7470000c74424003ac80000c744240200700000c7442406000000000f011c2466baf80cb8aa85d885ef66bafc0cecc402c9911c08"}}], 0x4b9})
bpf$TOKEN_CREATE(0x24, &(0x7f0000001600)={0x0, r1}, 0x8) (async)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f0000001600)={0x0, r1}, 0x8)
r3 = openat(0xffffffffffffff9c, &(0x7f0000001640)='./file0\x00', 0x480000, 0x146)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000001680)={{{@in6=@initdev, @in6=@mcast1}}, {{@in=@local}, 0x0, @in=@empty}}, &(0x7f0000001780)=0xe8) (async)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000001680)={{{@in6=@initdev, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@local}, 0x0, @in=@empty}}, &(0x7f0000001780)=0xe8)
fstat(r2, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000001840)={{{@in6=@private2, @in6=@ipv4={""/10, ""/2, @multicast2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0, <r7=>0x0}}, {{@in=@multicast2}, 0x0, @in=@local}}, &(0x7f0000001940)=0xe8)
setresuid(r4, r5, r7)
r8 = getpid()
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f00000019c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000001a00)={'wpan1\x00', <r11=>0x0})
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r9, &(0x7f0000001ac0)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001a80)={&(0x7f0000001a40)={0x30, r10, 0x420, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040004}, 0x20000000) (async)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r9, &(0x7f0000001ac0)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001a80)={&(0x7f0000001a40)={0x30, r10, 0x420, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040004}, 0x20000000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001c80)={&(0x7f0000001b00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x64, 0x64, 0x5, [@union={0x4, 0x4, 0x0, 0x5, 0x1, 0x4, [{0xd, 0x2, 0x2}, {0x4, 0x3, 0x8001}, {0x4, 0x4, 0x9345c792}, {0x8, 0x0, 0xffff}]}, @var={0xd, 0x0, 0x0, 0xe, 0x2, 0x1}, @union={0xc, 0x1, 0x0, 0x5, 0x0, 0x8, [{0x8, 0x4, 0x6}]}]}, {0x0, [0x2e, 0x61, 0x2e]}}, &(0x7f0000001bc0)=""/164, 0x81, 0xa4, 0x0, 0x400, 0x10000, @value=r3}, 0x28) (async)
r12 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001c80)={&(0x7f0000001b00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x64, 0x64, 0x5, [@union={0x4, 0x4, 0x0, 0x5, 0x1, 0x4, [{0xd, 0x2, 0x2}, {0x4, 0x3, 0x8001}, {0x4, 0x4, 0x9345c792}, {0x8, 0x0, 0xffff}]}, @var={0xd, 0x0, 0x0, 0xe, 0x2, 0x1}, @union={0xc, 0x1, 0x0, 0x5, 0x0, 0x8, [{0x8, 0x4, 0x6}]}]}, {0x0, [0x2e, 0x61, 0x2e]}}, &(0x7f0000001bc0)=""/164, 0x81, 0xa4, 0x0, 0x400, 0x10000, @value=r3}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000001cc0)=@bloom_filter={0x1e, 0xad, 0x9, 0x1000, 0x800, r3, 0x9, '\x00', r6, r12, 0x5, 0x3, 0x1, 0x5}, 0x50)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001d40)='./cgroup/syz1\x00', 0x200002, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000002000/0x3000)=nil)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r3, 0x0, 0x48b, &(0x7f0000001d80)={0x1, 'lo\x00', 0x4}, 0x18)
timer_create(0x0, &(0x7f0000001fc0)={0x0, 0x29, 0x4, @thr={&(0x7f0000001dc0)="dd1a7ae3f70d95cdbd10892cf0bf1fcb121907ea08da5af0fa3b5799c3d5830a31b481dc791e45ef970514a40e9b43a6a4a9aff879201bb47d1bb4d2442c7885b1d9f8444ba5886fb263cb73a58a89996dd8503c1070c74be0ab244c37eb7fb50e4df2f955da7786413520edc9e2cac364e82fe6826f49fb4cf43b89d40086036c7ff14796a1a9e559cacc243a5d2b0e22712fdf4be98b95ab7d69d4e431be3ec64a1055be8a9b5b09e1e7543cebb00e70fdb9464eab4c2d8ce0de10d3e713f3118315f8c2ceb24464d0bff7e7", &(0x7f0000001ec0)="09319deb8aacaca4aea3cac4298079e531afd94c5b3baadc81b903d77af8e37fdc5c0c5c4aa054f4d75b9c867899ec3003ac7e7858cde32386be38afa67aa9a005d9ae3b64959d3cb5a36d619e397454d764d83bbe80330992032b09ec5531b8127fa017e2901d96a6de88371fd2132c11d7dca604c1864dcc38e828ec01966d89c3b01ae1a67e3fcd925b9d7cbcec2c816b683f62d9863b1173f31956014ebf3b12434213712974ff568b31a0ea84e390f7813ea052a526fa8b41efbbd5b9c3cffcc90bde5c1d7dde62fc0bfd37a71b564df10b9c2c2fdf115079e036"}}, &(0x7f0000002000)=<r13=>0x0)
timer_delete(r13) (async)
timer_delete(r13)
ptrace$ARCH_GET_GS(0x1e, r8, &(0x7f0000002040), 0x1004) (async)
ptrace$ARCH_GET_GS(0x1e, r8, &(0x7f0000002040), 0x1004)
prlimit64(r8, 0x7, 0x0, &(0x7f0000002080))
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000020c0), 0x2, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002100), 0x2, 0x0)
pipe2(&(0x7f0000002140), 0x80800) (async)
pipe2(&(0x7f0000002140)={<r14=>0xffffffffffffffff, <r15=>0xffffffffffffffff}, 0x80800)
sendmsg$nl_route_sched(r15, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)=@newtfilter={0x4c, 0x2c, 0x10, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x4, 0xffe0}, {0x5, 0x9}, {0xfff2, 0xf}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffff0}, @TCA_CHAIN={0x8, 0xb, 0x1}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x8, 0x4}}, @TCA_RATE={0x6, 0x5, {0x3, 0x1}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48044}, 0x8010) (async)
sendmsg$nl_route_sched(r15, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)=@newtfilter={0x4c, 0x2c, 0x10, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x4, 0xffe0}, {0x5, 0x9}, {0xfff2, 0xf}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffff0}, @TCA_CHAIN={0x8, 0xb, 0x1}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x8, 0x4}}, @TCA_RATE={0x6, 0x5, {0x3, 0x1}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48044}, 0x8010)
ioctl$VHOST_VDPA_GET_DEVICE_ID(r14, 0x8004af70, &(0x7f00000022c0)) (async)
ioctl$VHOST_VDPA_GET_DEVICE_ID(r14, 0x8004af70, &(0x7f00000022c0))

4.924920885s ago: executing program 3 (id=1556):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xa, {"a2e3ad08ed6b52f99cfbf4c087f71e9b3d0963ff7fc6e5539b9b3b0a8b9b441b4552101b080d294b8f0e1ac6e7049b3468959b189a242a9b4bf3988f7ef319520700ffe8d178708c523c921b1b23380a169b63d336cd3b78130daa61d8e81aea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f309f4cff7738596ecae8707ce065cd5b91cd0ae193973735b36d5b1b63e91c00305d3f46635eb016d5b1dda98e2d749be7bd1d020000000000000075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801000000005b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b412435111c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269caf12c31357c8219793e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a687974e7b4ab01b7f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f190bae979babc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da3710ac000000001a527777a5371f87d0d4aa202fd28f28381aab144a5d429a04a689b83c7068ae949ef06e288e810bac9c76600025e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1388dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f103000000416d59fdee5325928974d12dad99dac44c3f0008047096a44060bebc2420aed92fa9b6578b4779415d97b9a6d601005c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac292d9e53803ed000000009737d214060005ea6f1783e287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b09114edb8e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca4051c2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4e15a7b6eb65ca8104e1b4da1fbb67ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe529003d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeebb4483f070077d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85e654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b405177548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd84e935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba30b4279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463181f4b87c10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227edff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fad6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b30f0b932a4d02da711b757fe43c06d21e759595e4e98b27faea8aa12bc8040000000000000033eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d0000010000000000fcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d080e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed704887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6ff7ffb1d62458d0741a12830052fcc460db043afe525629b40d7cee65802cb5e930ed624806c43a006dc9336d07c2b8081c188d26558f48261f7897084c2a1a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c0ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264c7b34252600c9654e502dcea39cb0800eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc640df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c6000064b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ff1aa7082ead01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058093fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000004000000000000008100d00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x8400, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r4 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r5, &(0x7f00000000c0)=[{0x0}], 0x1)

4.843488607s ago: executing program 3 (id=1557):
r0 = epoll_create1(0x80000)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000540)={@cgroup, 0x24, 0x1, 0x10000, 0x0, 0xfffffffffffffc3b, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xd})
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pivot_root(&(0x7f0000002140)='./file0\x00', &(0x7f00000021c0)='./file0/file0\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000001a00000a8500000007000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
umount2(&(0x7f00000000c0)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r7, &(0x7f00000005c0)={0x9, {"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", 0x1000}}, 0x1006)

4.725473218s ago: executing program 1 (id=1558):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
timerfd_create(0x9, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x1400, 0xffffffffffffffff, 0x87, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
mount$incfs(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='./bus\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./bus\x00', 0x0, 0x1010821, &(0x7f0000000240)={[], [{@defcontext={'defcontext', 0x3d, 'system_u'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000840)={[{@bh}, {@nolazytime}, {@noblock_validity}, {@barrier}, {@grpjquota}, {@noquota}, {@auto_da_alloc}, {@noload}, {@nodiscard}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
socket$key(0xf, 0x3, 0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x408, 0xcd, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r7}, 0x10)

1.99835176s ago: executing program 5 (id=1559):
r0 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000380))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = io_uring_setup(0x4d3f, &(0x7f0000000240)={0x0, 0xca6a, 0x40, 0x1, 0x6})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f0000000480), 0x0)

1.99632489s ago: executing program 3 (id=1560):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb79"], 0xfdef)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000280)={0x30, 0x5, 0x0, {0x0, 0x1, 0x3}}, 0x30)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0xb, 0x8, 0x2}, 0x50)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="000000ccfd8de55f219da1ffffffffffffff0000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000440)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getrlimit(0x7, &(0x7f0000000780))
r5 = memfd_create(&(0x7f0000001840)='\b\x9d\x85\xf0\xce\x95\xe2\n\xa1c\xdc\xdc\xf2>c\rG\xfcO\x8c=\xc1\x00\x8aSpA\xd4\x91\x9a\x02n(\xa0<\x01\x16\x98\x85D\x89>N\x8ar\x17O\x05KR\xe2{mn\xcc\xbfS\xc0\xa7\v\xb5$\xee\x02\x00\x00\x00\xa9\x1cn,B\xd5?\xe5\x04\x00+P\x00\x00\x10\x00\x00]\xdeL\xdb\x95\x80\x00\x00\x00\x00\x00\x00\x1d\xe7m\x04A\xdb\x8d\x01\x00\x00\x00\x00\x00\x00\x00\x00\xdd\x06\x00\xcfF\x032+\x9b\x7f\x19\xc6\xa2w\xb0\x87\xf8\xc1\xd8\xc2\x92\xb6\x19\"\x9a\xe8\xdf\x95Bh~\xec\xefD%Xl\xe6/\xf2\xc4\xeb]\x84\x8b o\xbb]\xac\"%\xe7\a\x7f\xc3\xae\xe5\xd4\x91\x05\x13\x110\xbb\az\xd4\x1e\x1b/\xfc\x1d\xb0\x8b\x0eQs\x81I`I\xe97\xe3B\xa9\xe7\x19Wy\xa0[,\xe8\xe9\xa9\x8dn\xe4%6\xe0\xe0\xe2W\x11}bq\xebS\x1b\xe1\xcb\x90~F1\xd5\xc3\xc52m\x15\x96y\xa9/-\x04\xb1\xe2\xa50\x90\xcb\x1f\xd8\x03\xb7\xc06\x1db\xd6\xcc\xf5\t\x00\xdd\xe9H5\xf4h\x8e\x8c1\xadx\xa4\xb4\xe1+\x1d $2wu\xfe\x87\x19\x9a\xe1F}+\xf3\xccg\"\xb3~%!\x99\x8b+\xa8\xb1\x99\x9ev\x1f(\xd6i|V\r\xf4\x19\xd2[b\xf4\x17S~n\t(\xb4k\xdf\x8d\x1fH\xa6!V\x1b\x18\x81\x14G\x10\x9b>#\x18]\xa3\x06@\xf5\x0f\x03\x15\x13\xb7\xeb\x18pU\xbe\xf4\x81S\x00\x98\xa8\xdaT\xcb\x06\xa7\xc7\xd8G]\xc4\x81E\xd3\xee\xc3\xfa\x8a\x91\xb3u\x18nM\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\xa9\xa0:\xde\xf3F4\xed1\x05\x91Q\xa0\xf3\xea\xd9\xe2I\x1a=\x9d\xc6\x96T\xaa\xa46\xbc~\xef\x89\x1f0G\x95\xe1bH\xcck\xa0/`\x1a\x96@\x9ep4\xe4N\x015S\xd1\xf6', 0x0)
pipe2(&(0x7f0000000000)={<r6=>0xffffffffffffffff}, 0x0)
splice(r6, 0x0, r5, &(0x7f0000000140)=0x7fffffffffffffff, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000340)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setsockopt$inet_tcp_TCP_REPAIR(r8, 0x6, 0x13, &(0x7f0000000100), 0x4)
getdents64(r8, &(0x7f0000000240)=""/72, 0x48)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f00000004c0)={0x2, {{0x2, 0x4e22, @loopback}}, {{0x2, 0x0, @rand_addr=0x64010100}}}, 0x108)

1.96246941s ago: executing program 1 (id=1561):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000200)={[{@nolazytime}, {@acl}, {@oldalloc}, {@errors_remount}, {@noauto_da_alloc}, {@test_dummy_encryption}, {@noblock_validity}]}, 0xde, 0x561, &(0x7f0000000e40)="$eJzs3c1vHGcZAPBn1ruu07jYpRygUj9Eg5IKso5r2loc2iIQt0qgcg+WvbGsrLORd93GVkUd8QcgIQSVOHHigsSNCxLKn4CQKpE7ggqEIIUDB2DQzM669nY22Sj74dq/nzS777yz8z7Pu/HOvvORnQDOrOcj4o2ImImIFyNioaivFFMcdKfsdR/de3c9m7Lqt/6eRFLUReTFQ+eL1ea6T6Xae/vX15rNxk4xv9TZvrnU3tu/vLW9ttnYbNxYWVl+ZfXV1ZdXr4ykn1m/Xvvmhz/54S++9dpvv/LOH6/+9dL3s6S/USzv9Wuw2YeMmL97cTd/rGXvxaFqROw8ZGsn1UzRn9q0EwEAYCjZKPWzEfHFfPy/EDP5aC7XP6Sbm3x2AAAAwCikr8/Hf5KIdCi1GPaVAAAAwMnxekTMR1KpF9cCzEelUq93r+H9XDxeabbanS9fa+3e2MiWRSxGrXJtq9m4UlxTuxi1JJtfzssfz7/UN78SEU9GxI8XzuXz9fVWc2PaBz8AAADgjDjft///r4Xu/v+h9L0pZgcAAACMzOK0EwAAAADGbtD+fzLhPAAAAIDxcf4fAAAATrVvv/lmNqW9+19vvL23e7319uWNRvt6fXt3vb7e2rlZ32y1NvPf7Nu+X1u1iGi2Wje/GrF7a6nTaHeW2nv7V7dbuzc6V7fcPxAAAACm5cnn7txNIuLga+fyKTObPcwMWMG1AnBqVAbUl37M/zzeXIDJGvQ1P4TZUeYBTF512gkA03Mw7QSAaTv2Ux8lg4KjF+8cO2bwu/HlBAAAjNbFL9y5+17J+f9qcT0/cHoNOv8PnH6PcP4/k44qD2DySs//G/jDmVCLmXRh6FffHmsuwHQ86FYfA3+8o+z8f+mVwWn6wLYAAICxms+n5yr14lzgfFQq9XrEE/n/Aa4l17aajSsR8ZmI+MNC7bFsfjlfM3F7QAAAAAAAAAAAAAAAAAAAAAAAAAAYUpomkQIAAACnWkTlL0lx/6+LCxfm+48PzCb/zm8POBsR7/zsrZ/eWut0dpaz+n8c1nfeL+pfmsYRDAAAADiLqvdd2ttP7+3HAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAofXTv3fXeNMm4f/t6RCyWxa/GXP48F7WIePyfSVSPrJdExMwI4h/cjojPl8VPsrRisciiP34lIs5NJv4zaZqWxj8/gvhwlt3Jtj9vlH3+KvF8/lz++a8W06M6tv2b/fWRJZXD7d/MgO3fE0PGePqDXy0NjH874ulq+fanFz8ZEP+FsgZL3pTvfXd//xOV3cYj/XnExdLvn+RYrKXO9s2l9t7+5a3ttc3GZuPGysryK6uvrr68emXp2lazUTyWhYgfPfOb//VF/2/alfc/uvGjbPt7v/5fyAq1I5Vpf5gi2Ae37j3VLdb6msjjX3qhrP+17GthYPzsb+JLxfdAtvxir3zQLR/17C9//2xpYkX8jQHv/4P+/S8NarTPi9/5wZ+GfCkAMAG9UdZOe2//+lqz2Rhb4f00TcccorHT7o1Rhl0rKsO2nA8XH6LlT1uhOu6/hLlPLjp3Qvo+1sKFB7zmw6lneFh4rCiM4sgWAABw0nw8+j9e/9S0EgIAAAAAAAAAAAAAAAAAAIAzqL0XlXH/rlh/zIPpdBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4L7+HwAA//+OG9Ha")
fspick(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0)
syz_open_procfs(0x0, &(0x7f0000000300)='sessionid\x00')
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r2, 0x2007ffb)
sendfile(r2, r2, 0x0, 0x739ec272)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e24, 0xfe, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x32}}}, 0x1c)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0), 0x4)
sendfile(r6, 0xffffffffffffffff, &(0x7f0000000100), 0x8001)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4c00000010004b0422000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c00028008000400000000000800150000000000050016"], 0x4c}, 0x1, 0x0, 0x0, 0x200400a0}, 0x0)
sendfile(r4, r3, 0x0, 0x7ffff000)
pread64(r6, &(0x7f0000000180)=""/116, 0x74, 0x3)

1.95189384s ago: executing program 0 (id=1563):
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x15)
r0 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r0, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x40}}, 0x18)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x7, 0x0, &(0x7f00000002c0)="b9ff0307600300", 0x0, 0x5da0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1.902331651s ago: executing program 5 (id=1564):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000540)=[{0x6, 0xe, 0x8}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0502103, &(0x7f0000000180)={0x0, 0xfff, 0x100fe})
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000071e99f8e"])
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f00000005c0)=ANY=[@ANYRESOCT=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000340)=@generic={&(0x7f0000000080)='./file0\x00', 0x0, 0x10}, 0x18)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0b002000070000000100010049000000018a90610fdadd93c82abf3a95eca445c7bc347eaaba3d031fad17b5b0155a2933ecb424649b776531f59836593f52ae62999a636c98d0f93bf45cbab947489cecc90f8a90df1d1a0bf2835bf6c077194896d17aac00cb3574ca31a22583578ad71dc9c34151aaf561fc0ae98ae5d96a4169185c9e951a8cfa07188add0403e2a2b3e104f45ee9f85165434ad8003010a44aa7e2bd954ab470ed246434ec172091c65ced8de25cec6b7fbd959e9b58a50d4513f47bc0494e1f4b7261fe7c097e0835539cd1956eac18a4b5775e7ab0128a6001e9a27cb6"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000680)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000500)={&(0x7f0000000600)={0x68, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4010000}, 0x4800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
flock(r5, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000002100)='ext4_load_inode\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000100), 0x1, 0x7ad, &(0x7f00000007c0)="$eJzs3c9rG1ceAPDvyD/jZNdeWNjNngwLu4YQeZ31JruwsFn2sBQaCLTnJEZWTGrZCpYcYmNIQin00kNLD4XmknPTprdc++PaXvo39FAS0tYJTemhuIw0SmRbcpzEklL8+cBY782M9N533sybZ82gCWDfGk//5CIORwykydFsfhLZjOiPOFlf7+H6WiGdktjYeOW7pLbOg/W1QjS9J3Uwy/wxIj57I+JIbnu5lZXV+ZlSqbiU5SerCxcnKyurRy8szMwV54qLx6emp4+d+MeJ43sX6w9frh66+/b///rRyZ9e/8Ottz5P4mQcypY1x7FXxmM82yYD6Sbc5H97XViPJb2uAM8kPTT76kd5HI7R6NuhJf/T1ZoBAJ1yJSI2AIB9JnH+B4B9pvE9wIP1tUJjivr1nKs9/WKiS+79NyKG6/E3rm/Wl/TXr9l9NVy7DjryIKldI2lIImJsD8ofj4jrt8/cTKfo0HVIgFauXouIc2PjW/v/tIfbes/C0/rbLtYZ35LX/0H3fJKOf/65ffwXkcuO/+Ha363jn6EWx+6zePLxn7uzKTuwB4U2Scd//266t+1hU/yZsb4s95vamG8gOX+hVEz7tt9GxEQMDKX5qR3KmLj/8/12y5rHf9+/89oHafnp6+M1cnf6hza/Z3amOvM8MTe7dy3iT/2t4k8etX/SZvx7epdlvPSvN99vtyyNP423MW2Pv7M2bkT8pWX7P74PKtnx/sTJ2u4w2dgpWvj46/dG2pXf3P7Xb6clrRUa/wt0Q9r+IzvHP5Y0369Zefoyvrgx+mm7ZZvjP3MzLX9z/K33/8Hk1Vp6MJt3eaZaXZqKGExe3j7/2OP3NvKN9dP4J/7c+vjfaf9Pu6FzWXrjCTc/9t/99sNnj7+z0vhn0/ZPsiCe2P5Pn7j1cL6vXfm7a//pWmoim7O9/+vf9rm7reBzbTwAAAAAAAAAAAAAAAAAAAAAAAAA2KVcRByKJJd/lM7l8vn6M7x/HyO5UrlSPXK+vLw4G7VnZY/FQK7xU5ejTb+HOpX9Hn4jf2xL/u8R8buIeHfoQC2fL5RLs70OHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAyB9s8/z/1zVCvawcAdMxwrysAAHSd8z8A7D9tzv+DrWcf6GhdAIDuqJ3/k/5eVwMA6CLf/wPA/uP8DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQIedPnUqnTZ+XF8rpPnZSyvL8+VLR2eLlfn8wnIhXygvXczPlctzpWK+UF5o+0FX6y+lcvnidCwuX56sFivVycrK6tmF8vJi9eyFhZm54tniQNciAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDdq6yszs+USsUliZ0TV16IalzLmq3XW0PihUgMRUSnimjuJQ70pnMCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+BX4JQAA//9qsh/Y")

1.719105694s ago: executing program 2 (id=1566):
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0, <r1=>0x0}, &(0x7f00000000c0)=0xc)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000100)={{{@in6=@private2, @in=@rand_addr=0x64010100, 0x4e20, 0x6, 0x4e21, 0x0, 0xa, 0x80, 0x20, 0x33, 0x0, r1}, {0x8000000000000001, 0x9, 0xd, 0xffffffffffffffca, 0xffffffffffffffff, 0x2, 0x7fff, 0xffffffffffffffff}, {0x66df, 0x6, 0x30000, 0x3}, 0x1, 0x6e6bb9, 0x1, 0xff3302ef91073e0c, 0x0, 0x28828c50ea8a6aad}, {{@in=@rand_addr=0x64010101, 0x4d2}, 0xa, @in=@private=0xa010100, 0x3507, 0x1, 0x3, 0x4, 0xe, 0x0, 0xffffff7f}}, 0xe8) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) (async)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) (async)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) (async)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x5, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x26, &(0x7f00000003c0)=[{}, {}, {}], 0x18, 0x0, 0x0, &(0x7f0000000440), 0x8, 0x6d, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/18, @ANYRES32=0x0], 0x50) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r5}, 0x10) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000100)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}, {@mblk_io_submit}, {@bh}, {@auto_da_alloc}, {@barrier}, {@quota}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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") (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000040), 0x208e24b) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0) (async)
fdatasync(r6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r6, 0x81ff) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10) (async)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)

1.637142825s ago: executing program 2 (id=1567):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xa, {"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", 0x1000}}, 0x1006)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000004000000000000008100d00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x8400, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r4 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r5, &(0x7f00000000c0)=[{0x0}], 0x1)

1.545377027s ago: executing program 2 (id=1568):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
getsockopt$inet_int(r0, 0x0, 0x34, 0x0, &(0x7f00000001c0)=0x2)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2, &(0x7f0000000000)=@raw=[@call={0x85, 0x0, 0x0, 0x1}, @alu={0x7, 0x1, 0xb, 0x7, 0xb, 0xffffffffffffffc0}], &(0x7f0000000200)='syzkaller\x00', 0x10, 0xec, &(0x7f0000000240)=""/236, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000340)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000380)=[{0x4, 0x5, 0x10, 0xb}], 0x10, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x40}, 0xffffffffffffff66)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
close(r1)

1.505025247s ago: executing program 2 (id=1569):
write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)=r3}, 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.230975371s ago: executing program 1 (id=1570):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001c80)=ANY=[@ANYBLOB="bf16000000000000b70700001f0000005070000000000000200000000000c00095000000000000002ba728041598d6fbd30cb599e83d24a3aa81d36bb3010100bd2321afb56fa54f26fb0b71afe6adfefcf1d8f7faf75e0f226bd99eea7960717142fa9ea4318123741c4a0e168c1886d0d4d94f2f4e345c652fbc16ee988e6e0dc8cedf3ce99fbfbf9b0a49ef23d410f6296b32a834388107200759cda9036b4e369a9e152ddcc7b1b85f3c4744aeac698890c864d59887a59905f1e07f40b1cd3641f8c192c368590f894cd4e1110bec4e9027a0c8055bbfc3a96d2e8910c2c3b35967dec6e802f5ab3eea57b09a2ed4048d3b867ddd58211d6ececb0cd2b6d357b85a0218ce740068f4025c0bf1aad90738725837079e468ee207d2f73902fbcfcf49822775985bf31b715f5888b24efa000000000000ffffff010100000000000000000000000000020000000000000000000000000000b27cf3d1848a54d7132be1ffb0adf9736bdeab29ea3323aa9fdfb52faf449c3bfd09000000b91ab219efdebb7b3de8f67581cfe36bc120e3b39a6e5a796a1d4223b9ff7ffcad3f6c962b9f292324b7ab7f7da31cf41ab11e0a494034127dd1c6592df1a6c64d8f20a67745409e011f1264d43e153b3d34899f40159e800ea2474b544035a30b23bcee46762c2093bcc9eae5ee3e980026c96f80ee1a74e04bde74fa4ffa4d9aaa705989b8e6731e2401b6a560e3296e52d337c56abf112874ec309bae5fa4c81e5c9f42d9383e41d277b10392a96286744f839c3f128f8f92ef992239eafce5c1b3f97a297c9e49a0c3300ef7b7fb5f09e0c8a868a353409e34d3e82279637598f37ad380a447483cac394c7b06000e3b1c39b2e00916de48a4e70f03cc4146a77af02c1d4cef5379da860aed8477dfa8ceefb405005c6977c78cdbf37704ec737555393c61a008280b064bda144910fe050038ec9e47de89298b7bf4d769ccc18eede00e8ca5457870eb30d211e23ccc8e06cd58b61799257ab55ff413c86ba9affb12ec757c7234c270246c87a901160e6c07bf6cf03b5ed04465746ff8809c3a0d46ff7f000000000000ad1e1f493354b2822b9837421134c0167d78e6c24ed0a2768e827172ea3b774a1467c89fa0f82e8440105051e5510a33dc5a5e143fbfff161c12ca389cbe4c51b3fa00055cc1b66c5fd9c26a54d43fa050645bd6109b113be7664e08add7115c61afcb718cf3c4680b2f6c7a84a4e378a9b15bc20f49e298727340e97cdefb40e56e9cfad973347d0de7ba4754ff231a1b033d8f841ba3442b2c7c503f3d0e7ab0e958adb862822e40009995ae166deb9856291a43a6f7eb2e32cefbf46306f2ef79e184f5e93ba5c8c2a4c0443fb652b8d4c2ff030000000000000007b82e6044f643068cd47ae636a5dbe9864a117d27326850a7c3b570863f532c218b10af13d7be94987005088a83880ccab9c99220002af8c5e13d52c83ac3fa7c3a3ee6c08384865b66d2b4dcb5dd9cba16b64ebbbf8702ae12c77e6e34991a225c120a3c950942fe0bc9f2a1a7506d35e5b439edeb5288aeda890cf8a4a6f31ba6d9b8cb098f935bdcbb29fd0f1a342c9eed00000000ab6640a9dea0b6c91996d65da6c24a8f2a86c814459f3cdaaf99000000000000000000bf2130d1b32c826563c508d0ad23bc83ba3f3757210afcf2a64783057e177615c068bd7d74233da1a3b56d4e04a7ec4792b1c4cffddbbdcfdd13ab52f5aaab812201d1aba3d70471fcd9b466569f3ef72f39d87fcccab514fc02b70be8629c9b73ce7bc4be7f8be71cb7b2d0a4acff8f6abe7dbad64d7cfa6396a6ab8487c383e24d4a8051f80e1811e387723a25dda119f64b35e71c5400000000000000000000000000000034c751ebdf3f20a95b817ea3df3d6c0002a41783499d4411ccbbeed215b745058e56c70afe8016b3dd359e785b36e609f173cc6b893ecd138289709839af6c95fbed6c33e401ec747820d6a6283b3452c57a5d44cacd363589845637071320921d22c1663964ed0700000062f3d90f0eb634ae331385d502fc7cc33158bc306d8c3bdae8108a2380000000000000008832ec0906aaec43659c79c8adfdeb1fd291c6fc6737b0f961f3beaa3e02f7762c5dd633d13b5e487e996597b2ab42c81eb7dd8390e13b395aacce4683e55bcfe8c17615257364365fd48bd77da79e52ce9edfe6dca9c43907f3a85cf655ccd9d624e8c6f7932c4d719347f39ef006c2df747e27a2d16304fa000008ffffffffffffff003049ca923d059c0ab5d886a491adacb7e4b43b1b57776e5fe25cf105fa57f000756755b7230e2c0c1fed5487271c4f2981cf8f4351ef5d08641dacaed0000800b805fbd1b474c9ed0dc19ad6e99b66ee0f8c9d697655ebdf5ef30d1b92bd283df88c1096d4bd3686e18ab07f9b580afbd4bd4d8979686422849b04024f609a7b76e902d35343793d99fe395ae73166187c64a501c1f4bb736fcf1dfde7da6bea1945a14f1c578093e6cfb4702a95fb4f653064244950ae227f2a22678e2ff4699bfcba3b7d5656d9be441d07cc3ba51f5b9e825fbec6aee7f9e1b04cdabf99bd760036f74dec91d341c885e785c8517cc50138be2447fa04b77acd2fd078f1da244051e44b5a881197733ba420c9d6b02fd01fa9369f8d3310be2ff1ad5952e025ce59c2dc8327d26fc4facd5915007d22dfccf67dfb53ae2f72a0812ad121fc7de5aba071b83ebf271a5140c6a0b115bd05d7fff46fe144d9fac4ee0a7a2f7242737fd622dc74ca2d79585d4c821d2294b779eebbaac7d81cdaa5ac506ab269be6ff4f7dd9d5ce2e0b1eef2"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x7, 0xe, 0x0, &(0x7f0000000040)="24c2afc3a2e05271070000541650", 0x0, 0xffb0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x54, 0x10, 0x0, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0x1, 0x10}, {0xd}, {0xe, 0x10}}, [@TCA_RATE={0x6, 0x5, {0x0, 0xfe}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xfffffffd, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x400c800}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399eb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r2, 0x28, 0x2, &(0x7f0000000040)=0x10000, 0x8)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x200000000c, 0x8b}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))

1.134725033s ago: executing program 1 (id=1571):
r0 = epoll_create1(0x80000)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000540)={@cgroup, 0x24, 0x1, 0x10000, 0x0, 0xfffffffffffffc3b, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0xd})
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pivot_root(&(0x7f0000002140)='./file0\x00', &(0x7f00000021c0)='./file0/file0\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000001a00000a8500000007000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
umount2(&(0x7f00000000c0)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r7, &(0x7f00000005c0)={0x9, {"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", 0x1000}}, 0x1006)

845.829997ms ago: executing program 3 (id=1572):
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x2042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket(0x10, 0x80002, 0x4)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='sched_switch\x00', r4}, 0x18)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="2400000020000109000000000010000002180000ff00000600000000080001"], 0x24}}, 0x0)

820.541147ms ago: executing program 0 (id=1573):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x24}, {0x6, 0x0, 0x0, 0x7ffffdbd}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x87}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_open_dev$loop(0x0, 0x5, 0x80000)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_open_dev$vcsn(&(0x7f0000000040), 0x100000000, 0x0)
r1 = getpid()
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r3=>0x0})
r4 = open(&(0x7f0000000100)='./bus\x00', 0x66842, 0x19)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r2)
sendmsg$NL80211_CMD_NEW_KEY(r4, 0x0, 0x20008817)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7000000000003b000000080003004bf1f30c04ceb5368f97b3e3db0ea9ce4fe66e3bd93e3d1976c86b983673b1643a639c8a4ef4822b3d10703a265db44aa49e6713a331947a6ca7201058316e868d62e68ad0f68c1f0656f1959e990c63ae4ffa677d86c4c9e5360c03b2185761d0399075e7d9e79b650d23905327557d27c79812219ba91e5397857d05135c2a4ea54588d963", @ANYRES32=r3, @ANYBLOB="34003300c0901000ffffffffffff0802110000005050505050505300fcf080c131008c10f90a14078d51157f5d369d41d8e65fd4"], 0x50}, 0x1, 0x0, 0x0, 0xc0}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFBR(r6, 0x8941, &(0x7f0000000140)=@generic={0x0, 0x7fffffffffffffff, 0x1})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000017000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000200)=ANY=[], 0x0}, 0x94)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_pidfd_open(r1, 0x0)
r8 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x21609000)

681.205439ms ago: executing program 5 (id=1574):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000"], 0x48)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000380)='./file0\x00', 0x804, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x3, 0x276, &(0x7f0000000640)="$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")
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x2, [@var, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{}, {}, {}, {}, {}, {}]}, @fwd, @volatile, @volatile, @volatile={0x0, 0x0, 0x0, 0x9, 0x2}]}}, 0x0, 0x96}, 0x20)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x70000000, 0x0, 0x0, 0x0, 0x0, 0xd80, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newlink={0x60, 0x10, 0x401, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x8000, 0xc574450d1af3b5bc}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x14, 0x5, 0x0, 0x1, [@IFLA_BRPORT_STATE={0x5}, @IFLA_BRPORT_MULTICAST_ROUTER={0x5, 0x19, 0x2}]}}}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x7, &(0x7f0000000180)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @map_val, @exit]}, &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x4000000)
r3 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000040)={0x8, 0xffffffffffffffff, 0x1})
ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f0000000340)=ANY=[])
readahead(r3, 0x3, 0xf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r2}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="b7020000b0ffffffbfa30000000000000703000000feffff7a0af0ff2300000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010404000011000000b7030000000000006a0a00fe000000008500000032000000b700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000cb450063dedba767ade51f7f1f66acd19100002000000000000000ff7f0000b52f17cee19d0001000000000000000000cb04fcbb4e4d0b9bafe3ba431351a58a885ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e85cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b83b994fc4051ade12f41deff6df6a936b4ec3827c739bb39aad16cc75fe369258673b5df11cc2afb53611cc32a790bc0b80e80eae8f5e64be2c9d2d29db3d36dd0cf8f79a015c7bd3f15aa6aadbeab2a01685108e61aa00000000000000000000000000c67c6c6a06e828e5216f601b19db1af1b5d356d0f062137d866d11be4ba3f0151fdbbd4e97d62ecc645e143a60f10800000000000000826151e3b42bcae95239ef5ca2a730a00c87c493db0300e63fda97a296820000000001000000eecc952a3fd2c46f3c1cde71a19d1a2982492a210e00d2bfea3b8d188df2eff8d56aaae7d32a2e180022537395019f02ec4b85f6aad7faca088de9b26797a8446b16c28d85f225992dbdd5bb01ba51508951c7a7d6ca0916c3a12912715649c2b1c7192a4251b59d378d3f00000000000000665c8b7e89eddfc3783f6c9129a7c5f8ee5f50579e2f638f7eb12f63be72a3d81ab324d6e417b1c2cbfdcada0a16e31790e26cf19588a7e0496ee2782224cf30f810da86cf1a3204f4c9404f5d7321a4fefc4d1c9139ca4b65b99909950000006b42077ca60fdecb2717e21f8f187b1866108b6e8c71e2603217606637ece1fa89917e131f4034a8383e99c3568fd04201b37cd92ca6ebf94a2d8310f7032775cfd75652f87b039d5430b3c6643e9146d2478ce31344b554aca7670000000000000010c65608fda6ed5d08e7a796042aa127d874105787d0347aa37801faff5b9050803a19ff6205aa5c263e407a2f7de56f7a0000e094fa4e3f05528caab5a430c08dd810bc97204b767dd969721a26aa740000000000bc433fe2d0a6ef2a8a91cd3cb305aa80dadef8b0caca780000000000000000863e21db415a222bb1a7ab94bfe4a74157d794f9d0430c2c0eb563350559829865a3dd08fb31bd0801e09aa3ee45e61a56fc83076451cff7632e49a41eadb5044a0d5f73d6932161ae5e9ce218a35cd8e7b747887b1a74798982d0b492c3f0ff53189d80733eb04f8124877b648ff438f7d66c7efcc09a8f3330b6c22d14e80db8e5608bdeab9388b758a15f4ce70390c214bc6838798f5b9b0b500d4e8b5174f329b8501c6feb7a6982bcea74a0f2ced7fa2059234a8d10b7f0597151d5c9067d57d85f4ae933eaf5174ba122f3f702ef8695578d3c08562c9fc185f0f65d11b4c58ae52500cbe99cde3758a5cbe6093dd328ac820e2de309d25a324647aadffcecf0f3bbaeda7af4436d9ffbce1b240a2f5e346eba8812e6329e01b087bde7da4a6448f478102e90c8134f531de08d4cf4f6f35b15a202544c0ced0c1715fd3a90099f785a13a2412bedba2981dd22bd9d736c00000000000000000000000000000000eb6fec8d7d2f77f4d470a9caa5b1bfc00cd1d40830ac35f229f8ffe1c02a63d3c2d9"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r5, 0x702, 0xe40, 0x0, &(0x7f0000000580)="e460334470d8d400eb00c15286dd", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

596.256231ms ago: executing program 2 (id=1575):
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x16c}}, 0x24)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000f0400000000005f"], 0x0, 0x28}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000700)={r0, 0x38, 0xfffffffffffffffe}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="11000000040000000400000005"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000157b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r2, 0xffffffffffffffff, 0x500}, 0x57)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x20, 0x52, 0x1, 0x0, 0x4, {0xa}, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x1699}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
getsockopt$inet6_mreq(r3, 0x29, 0x0, &(0x7f0000000680)={@mcast2, <r4=>0x0}, &(0x7f0000000880)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)=@ipv6_newaddrlabel={0x24, 0x48, 0x20, 0x70bd27, 0x25dfdbfd, {0xa, 0x0, 0x20, 0x0, r4}, [@IFAL_LABEL={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40811}, 0x24000054)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000280)={0xffffffff}, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000001200010a00000000000000000a000001"], 0x26}}, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x1, 0x0, 0x0)
mount$incfs(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)='./file0\x00', &(0x7f0000000280), 0x0, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x2, 0x0)
r6 = openat$incfs(r5, &(0x7f0000000180)='.pending_reads\x00', 0x10b441, 0x0)
r7 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$int_in(r7, 0x5452, &(0x7f0000000040)=0x8001)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000001040)={'wlan1\x00', <r10=>0x0})
r11 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r11, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000005c0)=<r12=>0x0)
mount$9p_fd(0x0, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580), 0x80, &(0x7f0000000740)=ANY=[@ANYBLOB="7472616e733d66642c72410b67223dbe88a6c0b72c0000000000003ca5971de38730a2e248936b80725129f2432dfb7779441e45efb5260716b95d9b37556801e0d868eb8746b1af3f9781b03873b3bdba18439fd081e0cd7f52597a97a179854da378", @ANYRESHEX=r11, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',nodevmap,nodevmap,ignoreqv,noextend,cache=none,fsmagic=0x0000000000000101,smackfshat=^!,fowner=', @ANYRESDEC=r12, @ANYBLOB=',\x00'])
sendmsg$NL80211_CMD_SET_TID_CONFIG(r9, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010025bdf8ffffffffffffff000008000300", @ANYRES32=r10, @ANYBLOB="18001d801400008006000500f400000005000700df000000"], 0x34}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000380)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_GET_SURVEY(r5, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="280070b3a55d80c03d566430c77a130000", @ANYRES32=r9, @ANYBLOB="00022abd7000fddbdf253200000008000300", @ANYRES32=r13, @ANYBLOB="0c00990096ffffffb9eff442e0682c8098a9f7a163000000"], 0x28}, 0x1, 0x0, 0x0, 0x20048004}, 0x4040010)
ioctl$INCFS_IOC_CREATE_FILE(r6, 0x40306727, &(0x7f00000009c0)={{}, {0x9}, 0xf, 0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

549.720381ms ago: executing program 2 (id=1576):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x89}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000280)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x20000000000001d2, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000001000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x30, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff52, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
fcntl$setstatus(r5, 0x4, 0x42000)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
ioctl$FS_IOC_GETFLAGS(r6, 0x5437, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r3, 0x58, &(0x7f0000000180)}, 0x10)
socket$can_raw(0x1d, 0x3, 0x1) (fail_nth: 7)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)

268.490636ms ago: executing program 1 (id=1577):
pipe(&(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
vmsplice(r1, &(0x7f0000000200)=[{&(0x7f0000000540)="1a62", 0x2}], 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000800)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2040d0, &(0x7f0000000c40)={[{@jqfmt_vfsv0}, {@nojournal_checksum}, {@barrier}, {@barrier}, {@test_dummy_encryption}, {@nomblk_io_submit}]}, 0xff, 0x4ab, &(0x7f0000000080)="$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")
socketpair$unix(0x1, 0x3, 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r7}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
socket$key(0xf, 0x3, 0x2)
fdatasync(r3)
pipe2(&(0x7f0000001040), 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f1, &(0x7f0000000340)={'sit0\x00', &(0x7f00000001c0)=@ethtool_cmd={0x39, 0x5, 0x0, 0x0, 0x7, 0x0, 0x3, 0xfc, 0xd, 0x1, 0x0, 0x0, 0x0, 0xff, 0x0, 0x45}})

165.316627ms ago: executing program 5 (id=1578):
r0 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000380))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r1 = io_uring_setup(0x4d3f, &(0x7f0000000240)={0x0, 0xca6a, 0x40, 0x1, 0x6})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f0000000480), 0x0)

0s ago: executing program 0 (id=1579):
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000680)={'\x00', 0x2, 0xf5, 0x80000000, 0x4, 0xd4, <r0=>0x0})
ptrace$setregs(0xf, r0, 0x6, &(0x7f0000000700)="2a0c62761fc8857a5e55abedeb8d791efc9ba3458bc0a9552716d52d97c8b1af7fd53fcadadc19538230d5ab41ac2e9c27d417f9c17667087fb3fff015c861a0e6ca07a69418bddf2439aa892e60a28b4f486586ea634205")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000400000004"], 0x48)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x60, 0x60, 0x4, [@enum64={0xd, 0x7, 0x0, 0x13, 0x1, 0x3, [{0x3, 0x7, 0x9}, {0xe, 0x6, 0x3}, {0xd, 0x0, 0x40}, {0xc, 0x7c3, 0x80000000}, {0xe, 0xf, 0x1}, {0x6, 0x8, 0x1}, {0x7, 0x3, 0x3}]}]}, {0x0, [0x1e, 0x0]}}, &(0x7f0000000580)=""/159, 0x7c, 0x9f, 0x0, 0x1, 0x10000}, 0x28)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x2, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x81, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r6)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f00000002c0)={'wg2\x00', <r8=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="e0100000", @ANYRES16=r7, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB="240003"], 0x10e0}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r9], 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)={{0x12, 0x1, 0x0, 0x83, 0xe9, 0x51, 0x40, 0x5ac, 0x8501, 0x1664, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xe, 0x1, 0x0, 0x0, [], [{{0x9, 0x5, 0xd}}]}}]}}]}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r10}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
alarm(0x9)
pivot_root(&(0x7f0000000280)='.\x00', &(0x7f00000004c0)='./file1\x00')

kernel console output (not intermixed with test programs):

ce_t tclass=chr_file permissive=1
[  317.980637][ T4201] overlayfs: overlapping lowerdir path
[  318.214833][ T4216] loop2: detected capacity change from 0 to 16
[  318.268722][ T4216] erofs: (device loop2): mounted with root inode @ nid 36.
[  318.278928][   T49] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  318.300894][ T4216] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  318.322357][ T4216] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  318.343684][ T4216] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  318.364854][ T4216] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  318.415539][ T4212] loop3: detected capacity change from 0 to 16
[  318.449038][ T4212] erofs: (device loop3): mounted with root inode @ nid 36.
[  318.483909][   T48] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  318.681761][   T30] audit: type=1400 audit(1751778807.903:2826): avc:  denied  { write } for  pid=4222 comm="syz.3.1145" name="fib_trie" dev="proc" ino=4026532385 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  320.336153][ T4248] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1152'.
[  320.533057][ T4250] overlayfs: overlapping lowerdir path
[  322.867867][ T4278] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  322.877527][ T4278] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  324.000760][ T4288] overlayfs: overlapping lowerdir path
[  324.051891][ T4292] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1166'.
[  324.130651][ T4293] loop2: detected capacity change from 0 to 16
[  324.188351][ T4293] erofs: (device loop2): mounted with root inode @ nid 36.
[  324.263475][ T4291] erofs: (device loop2): find_target_block_classic: corrupted dir block 0 @ nid 36
[  324.297248][   T30] audit: type=1400 audit(1751778813.513:2827): avc:  denied  { mount } for  pid=4301 comm="syz.1.1170" name="/" dev="ramfs" ino=27467 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  324.669991][   T30] audit: type=1326 audit(1751778813.543:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  324.694024][   T30] audit: type=1326 audit(1751778813.543:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  324.718459][   T30] audit: type=1326 audit(1751778813.553:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  324.742266][   T30] audit: type=1326 audit(1751778813.553:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  324.777139][   T30] audit: type=1326 audit(1751778813.553:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  324.828027][   T30] audit: type=1326 audit(1751778813.563:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  324.881507][   T30] audit: type=1326 audit(1751778813.893:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  324.931428][   T30] audit: type=1326 audit(1751778813.893:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  325.261901][   T30] audit: type=1326 audit(1751778813.913:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4301 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  325.378623][ T4305] FAULT_INJECTION: forcing a failure.
[  325.378623][ T4305] name failslab, interval 1, probability 0, space 0, times 0
[  325.392178][ T4305] CPU: 0 PID: 4305 Comm: syz.2.1171 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  325.402117][ T4305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  325.412190][ T4305] Call Trace:
[  325.415493][ T4305]  <TASK>
[  325.418434][ T4305]  __dump_stack+0x21/0x30
[  325.422794][ T4305]  dump_stack_lvl+0xee/0x150
[  325.427399][ T4305]  ? show_regs_print_info+0x20/0x20
[  325.432635][ T4305]  ? __kasan_slab_alloc+0xcf/0xf0
[  325.437683][ T4305]  ? slab_post_alloc_hook+0x4f/0x2b0
[  325.442988][ T4305]  ? kmem_cache_alloc+0xf7/0x260
[  325.447936][ T4305]  ? xfrm_state_alloc+0x24/0x2c0
[  325.452878][ T4305]  ? xfrm_state_find+0x1e4e/0x2a70
[  325.457998][ T4305]  dump_stack+0x15/0x20
[  325.462182][ T4305]  should_fail+0x3c1/0x510
[  325.466608][ T4305]  __should_failslab+0xa4/0xe0
[  325.471991][ T4305]  should_failslab+0x9/0x20
[  325.476505][ T4305]  slab_pre_alloc_hook+0x3b/0xe0
[  325.481446][ T4305]  ? __alloc_skb+0xe0/0x740
[  325.485964][ T4305]  kmem_cache_alloc+0x44/0x260
[  325.490735][ T4305]  __alloc_skb+0xe0/0x740
[  325.495066][ T4305]  xfrm_send_acquire+0x14c/0x1030
[  325.500094][ T4305]  ? xfrm_send_state_notify+0x1e10/0x1e10
[  325.505837][ T4305]  ? memcpy+0x56/0x70
[  325.509829][ T4305]  km_query+0x6c/0xd0
[  325.513845][ T4305]  xfrm_state_find+0x1f31/0x2a70
[  325.518794][ T4305]  ? is_bpf_text_address+0x177/0x190
[  325.524087][ T4305]  ? xfrm_sad_getinfo+0x170/0x170
[  325.529211][ T4305]  ? stack_trace_save+0x98/0xe0
[  325.534093][ T4305]  xfrm_resolve_and_create_bundle+0x626/0x28d0
[  325.540274][ T4305]  ? xfrm_sk_policy_lookup+0x470/0x470
[  325.545751][ T4305]  ? xfrm_sk_policy_lookup+0x423/0x470
[  325.551221][ T4305]  ? __kasan_check_write+0x14/0x20
[  325.556342][ T4305]  xfrm_lookup_with_ifid+0xa3e/0x2120
[  325.561719][ T4305]  ? __xfrm_sk_clone_policy+0x680/0x680
[  325.567268][ T4305]  ? ip_route_output_key_hash_rcu+0x14b8/0x2060
[  325.573515][ T4305]  xfrm_lookup_route+0x3c/0x170
[  325.578370][ T4305]  ip_route_output_flow+0x1d2/0x2d0
[  325.583570][ T4305]  ? proc_pident_instantiate+0x69/0x2b0
[  325.589117][ T4305]  ? proc_pident_lookup+0x1c0/0x270
[  325.594325][ T4305]  ? ipv4_sk_update_pmtu+0x1320/0x1320
[  325.599788][ T4305]  ? x64_sys_call+0x219/0x9a0
[  325.604476][ T4305]  ? memcpy+0x56/0x70
[  325.608474][ T4305]  udp_sendmsg+0x1241/0x20b0
[  325.613073][ T4305]  ? avc_denied+0x1b0/0x1b0
[  325.617598][ T4305]  ? ip_skb_dst_mtu+0x630/0x630
[  325.622459][ T4305]  ? udp_cmsg_send+0x330/0x330
[  325.627232][ T4305]  ? avc_has_perm+0x158/0x240
[  325.631915][ T4305]  ? avc_has_perm_noaudit+0x460/0x460
[  325.637299][ T4305]  ? is_bpf_text_address+0x177/0x190
[  325.642595][ T4305]  ? unwind_get_return_address+0x4d/0x90
[  325.648235][ T4305]  ? stack_trace_save+0xe0/0xe0
[  325.653095][ T4305]  ? inet_send_prepare+0x60/0x4c0
[  325.658127][ T4305]  inet_sendmsg+0xa5/0xc0
[  325.662469][ T4305]  ? inet_send_prepare+0x4c0/0x4c0
[  325.667583][ T4305]  ____sys_sendmsg+0x5a2/0x8c0
[  325.672353][ T4305]  ? __sys_sendmsg_sock+0x40/0x40
[  325.677386][ T4305]  ? import_iovec+0x7c/0xb0
[  325.681894][ T4305]  ___sys_sendmsg+0x1f0/0x260
[  325.686576][ T4305]  ? _kstrtoull+0x3c0/0x4d0
[  325.691085][ T4305]  ? __sys_sendmsg+0x250/0x250
[  325.695860][ T4305]  ? __fdget+0x1a1/0x230
[  325.700114][ T4305]  __sys_sendmmsg+0x278/0x480
[  325.704797][ T4305]  ? __ia32_sys_sendmsg+0x2a0/0x2a0
[  325.710011][ T4305]  ? __ia32_sys_read+0x90/0x90
[  325.714779][ T4305]  __x64_sys_sendmmsg+0xa0/0xb0
[  325.719635][ T4305]  x64_sys_call+0x6c6/0x9a0
[  325.724145][ T4305]  do_syscall_64+0x4c/0xa0
[  325.728570][ T4305]  ? clear_bhb_loop+0x50/0xa0
[  325.733267][ T4305]  ? clear_bhb_loop+0x50/0xa0
[  325.737963][ T4305]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  325.743862][ T4305] RIP: 0033:0x7ff47d36e929
[  325.748278][ T4305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.767887][ T4305] RSP: 002b:00007ff47b9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  325.776313][ T4305] RAX: ffffffffffffffda RBX: 00007ff47d595fa0 RCX: 00007ff47d36e929
[  325.784291][ T4305] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000009
[  325.792265][ T4305] RBP: 00007ff47b9d7090 R08: 0000000000000000 R09: 0000000000000000
[  325.800239][ T4305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.808221][ T4305] R13: 0000000000000000 R14: 00007ff47d595fa0 R15: 00007ffd3d76b4e8
[  325.816205][ T4305]  </TASK>
[  326.178304][ T4329] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  326.188047][ T4329] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  326.671733][ T4331] overlayfs: overlapping lowerdir path
[  326.684830][ T4335] syz.3.1177[4335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  326.685117][ T4335] syz.3.1177[4335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  326.829313][ T4336] FAULT_INJECTION: forcing a failure.
[  326.829313][ T4336] name failslab, interval 1, probability 0, space 0, times 0
[  327.258010][ T4336] CPU: 0 PID: 4336 Comm: syz.3.1177 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  327.268055][ T4336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  327.278216][ T4336] Call Trace:
[  327.281512][ T4336]  <TASK>
[  327.284455][ T4336]  __dump_stack+0x21/0x30
[  327.288809][ T4336]  dump_stack_lvl+0xee/0x150
[  327.293416][ T4336]  ? show_regs_print_info+0x20/0x20
[  327.298633][ T4336]  ? _raw_spin_unlock+0x4d/0x70
[  327.303501][ T4336]  dump_stack+0x15/0x20
[  327.307670][ T4336]  should_fail+0x3c1/0x510
[  327.312105][ T4336]  __should_failslab+0xa4/0xe0
[  327.316890][ T4336]  should_failslab+0x9/0x20
[  327.321411][ T4336]  slab_pre_alloc_hook+0x3b/0xe0
[  327.326371][ T4336]  ? __alloc_skb+0xe0/0x740
[  327.330892][ T4336]  kmem_cache_alloc+0x44/0x260
[  327.335677][ T4336]  ? __kasan_check_write+0x14/0x20
[  327.340814][ T4336]  __alloc_skb+0xe0/0x740
[  327.345186][ T4336]  netlink_dump+0x226/0xd40
[  327.349711][ T4336]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  327.355540][ T4336]  ? irqentry_exit_cond_resched+0x29/0x30
[  327.361282][ T4336]  ? irqentry_exit+0x37/0x40
[  327.365899][ T4336]  ? refcount_inc+0x80/0x80
[  327.370427][ T4336]  ? __netlink_dump_start+0x597/0x810
[  327.375824][ T4336]  __netlink_dump_start+0x5ea/0x810
[  327.381053][ T4336]  rtnetlink_rcv_msg+0x7a6/0xb90
[  327.386006][ T4336]  ? rtnl_fdb_get+0xc80/0xc80
[  327.390707][ T4336]  ? rtnetlink_bind+0x80/0x80
[  327.395402][ T4336]  ? __kasan_check_write+0x14/0x20
[  327.400537][ T4336]  ? __switch_to+0x51d/0xe20
[  327.405157][ T4336]  ? compat_start_thread+0x20/0x20
[  327.410292][ T4336]  ? _raw_spin_unlock+0x4d/0x70
[  327.415182][ T4336]  ? finish_task_switch+0x16b/0x780
[  327.420417][ T4336]  ? __switch_to_asm+0x3a/0x60
[  327.425201][ T4336]  ? __schedule+0xb76/0x14c0
[  327.429807][ T4336]  ? __kasan_check_write+0x14/0x20
[  327.434937][ T4336]  ? _raw_spin_lock+0x8e/0xe0
[  327.439631][ T4336]  ? _raw_spin_trylock_bh+0x130/0x130
[  327.445021][ T4336]  ? release_firmware_map_entry+0x190/0x190
[  327.450933][ T4336]  ? rtnl_fdb_get+0xc80/0xc80
[  327.455631][ T4336]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  327.461454][ T4336]  netlink_rcv_skb+0x1e0/0x430
[  327.466241][ T4336]  ? rtnetlink_bind+0x80/0x80
[  327.470936][ T4336]  ? netlink_ack+0xb60/0xb60
[  327.475546][ T4336]  ? rcu_read_unlock_special+0xab/0x460
[  327.481116][ T4336]  ? __rcu_read_unlock+0xa0/0xa0
[  327.486080][ T4336]  rtnetlink_rcv+0x1c/0x20
[  327.490516][ T4336]  netlink_unicast+0x87c/0xa40
[  327.495306][ T4336]  netlink_sendmsg+0x86a/0xb70
[  327.500095][ T4336]  ? netlink_getsockopt+0x530/0x530
[  327.505312][ T4336]  ? security_socket_sendmsg+0x82/0xa0
[  327.510877][ T4336]  ? netlink_getsockopt+0x530/0x530
[  327.516087][ T4336]  ____sys_sendmsg+0x5a2/0x8c0
[  327.520861][ T4336]  ? __sys_sendmsg_sock+0x40/0x40
[  327.525891][ T4336]  ? import_iovec+0x7c/0xb0
[  327.530405][ T4336]  ___sys_sendmsg+0x1f0/0x260
[  327.535097][ T4336]  ? __sys_sendmsg+0x250/0x250
[  327.539870][ T4336]  ? __fdget+0x1a1/0x230
[  327.544124][ T4336]  __x64_sys_sendmsg+0x1e2/0x2a0
[  327.549070][ T4336]  ? ___sys_sendmsg+0x260/0x260
[  327.553939][ T4336]  ? ksys_write+0x1eb/0x240
[  327.558455][ T4336]  ? __kasan_check_write+0x14/0x20
[  327.563600][ T4336]  ? switch_fpu_return+0x15d/0x2c0
[  327.568723][ T4336]  x64_sys_call+0x4b/0x9a0
[  327.573149][ T4336]  do_syscall_64+0x4c/0xa0
[  327.577569][ T4336]  ? clear_bhb_loop+0x50/0xa0
[  327.582251][ T4336]  ? clear_bhb_loop+0x50/0xa0
[  327.586941][ T4336]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  327.592837][ T4336] RIP: 0033:0x7f7b1eb2d929
[  327.597259][ T4336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.616993][ T4336] RSP: 002b:00007f7b1d154038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  327.625570][ T4336] RAX: ffffffffffffffda RBX: 00007f7b1ed55160 RCX: 00007f7b1eb2d929
[  327.633563][ T4336] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000008
[  327.641549][ T4336] RBP: 00007f7b1d154090 R08: 0000000000000000 R09: 0000000000000000
[  327.649525][ T4336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.657499][ T4336] R13: 0000000000000000 R14: 00007f7b1ed55160 R15: 00007ffd59ca2218
[  327.665488][ T4336]  </TASK>
[  328.100089][ T4348] loop3: detected capacity change from 0 to 128
[  328.266531][ T4345] xt_CT: You must specify a L4 protocol and not use inversions on it
[  328.432149][ T4348] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fff0101)
[  328.643801][ T4348] FAT-fs (loop3): Filesystem has been set read-only
[  332.726283][ T4371] overlayfs: overlapping lowerdir path
[  332.939602][ T4369] loop5: detected capacity change from 0 to 16
[  332.963290][ T4386] syz.2.1193[4386] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  332.963374][ T4386] syz.2.1193[4386] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  332.977649][ T4386] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1193'.
[  332.999717][ T4369] erofs: (device loop5): mounted with root inode @ nid 36.
[  333.024092][   T48] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  333.043430][ T4369] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  333.065333][ T4369] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  333.099509][ T4369] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  333.121114][ T4369] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  335.841585][ T4406] overlayfs: overlapping lowerdir path
[  335.881671][ T4420] loop3: detected capacity change from 0 to 256
[  335.983191][ T4420] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  340.617062][ T4442] loop3: detected capacity change from 0 to 256
[  340.967987][ T4442] FAT-fs (loop3): Directory bread(block 64) failed
[  340.976889][ T4442] FAT-fs (loop3): Directory bread(block 65) failed
[  340.983794][ T4442] FAT-fs (loop3): Directory bread(block 66) failed
[  340.990759][ T4442] FAT-fs (loop3): Directory bread(block 67) failed
[  340.997426][ T4442] FAT-fs (loop3): Directory bread(block 68) failed
[  341.004417][ T4442] FAT-fs (loop3): Directory bread(block 69) failed
[  341.011365][ T4442] FAT-fs (loop3): Directory bread(block 70) failed
[  341.018631][ T4442] FAT-fs (loop3): Directory bread(block 71) failed
[  341.025255][ T4442] FAT-fs (loop3): Directory bread(block 72) failed
[  341.032294][ T4442] FAT-fs (loop3): Directory bread(block 73) failed
[  341.614361][  T335] attempt to access beyond end of device
[  341.614361][  T335] loop3: rw=1, want=1256, limit=256
[  341.626357][  T335] attempt to access beyond end of device
[  341.626357][  T335] loop3: rw=1, want=1356, limit=256
[  342.026795][   T20] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  342.058187][ T4461] overlayfs: overlapping lowerdir path
[  342.437069][ T4477] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  342.447378][ T4477] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  348.807975][   T20] usb 3-1: Using ep0 maxpacket: 16
[  348.828465][ T4483] 9pnet: Insufficient options for proto=fd
[  348.835767][ T4481] fuse: Unknown parameter '0x000000000000000600000000000000000000'
[  348.868070][   T20] usb 3-1: device descriptor read/all, error -71
[  348.923349][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  348.923366][   T30] audit: type=1326 audit(1751778838.133:2849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  348.967658][   T30] audit: type=1326 audit(1751778838.133:2850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.007445][   T30] audit: type=1326 audit(1751778838.133:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.069090][   T30] audit: type=1326 audit(1751778838.133:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.100574][   T30] audit: type=1326 audit(1751778838.133:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.138995][   T30] audit: type=1326 audit(1751778838.133:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.163593][   T30] audit: type=1326 audit(1751778838.133:2855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.187303][   T30] audit: type=1326 audit(1751778838.133:2856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.211635][   T30] audit: type=1326 audit(1751778838.133:2857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.236925][   T30] audit: type=1326 audit(1751778838.133:2858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  349.323292][ T4501] device ip6erspan0 entered promiscuous mode
[  350.706040][ T4531] loop5: detected capacity change from 0 to 256
[  350.712491][   T39] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  350.744966][ T4531] FAT-fs (loop5): Directory bread(block 64) failed
[  350.755885][ T4531] FAT-fs (loop5): Directory bread(block 65) failed
[  350.762825][ T4531] FAT-fs (loop5): Directory bread(block 66) failed
[  350.770691][ T4531] FAT-fs (loop5): Directory bread(block 67) failed
[  350.784562][ T4531] FAT-fs (loop5): Directory bread(block 68) failed
[  350.801187][ T4531] FAT-fs (loop5): Directory bread(block 69) failed
[  350.808097][ T4531] FAT-fs (loop5): Directory bread(block 70) failed
[  350.815122][ T4531] FAT-fs (loop5): Directory bread(block 71) failed
[  350.821929][ T4531] FAT-fs (loop5): Directory bread(block 72) failed
[  350.828895][ T4531] FAT-fs (loop5): Directory bread(block 73) failed
[  351.277840][   T39] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice=c6.98
[  351.299968][   T39] usb 1-1: New USB device strings: Mfr=0, Product=210, SerialNumber=57
[  351.322909][ T4540] fuse: Unknown parameter '0x000000000000000600000000000000000000'
[  351.327543][   T39] usb 1-1: Product: syz
[  351.345691][   T39] usb 1-1: SerialNumber: syz
[  351.369628][   T39] usb 1-1: config 0 descriptor??
[  351.419551][   T39] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  351.430019][   T39] usb 1-1: Detected FT-X
[  351.751590][ T4546] loop3: detected capacity change from 0 to 256
[  351.856228][ T4546] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  353.507875][ T3341] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  353.777832][ T3341] usb 6-1: Using ep0 maxpacket: 16
[  353.938194][ T3341] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  353.949700][ T3341] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  353.960349][ T3341] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  353.974079][ T3341] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  353.993281][ T3341] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.022284][ T3341] usb 6-1: config 0 descriptor??
[  354.171443][   T39] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  354.180842][   T30] kauditd_printk_skb: 81 callbacks suppressed
[  354.180859][   T30] audit: type=1326 audit(1751778843.403:2940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  354.212574][   T39] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  354.350888][   T30] audit: type=1326 audit(1751778843.403:2941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  354.374919][   T30] audit: type=1326 audit(1751778843.403:2942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  354.375022][   T39] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[  355.911063][   T30] audit: type=1326 audit(1751778843.403:2943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  355.911944][ T3341] microsoft 0003:045E:07DA.0006: ignoring exceeding usage max
[  355.935754][   T30] audit: type=1326 audit(1751778843.403:2944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  355.943057][   T39] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  355.966975][   T30] audit: type=1326 audit(1751778843.433:2945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  355.976316][ T3341] microsoft 0003:045E:07DA.0006: item fetching failed at offset 16/34
[  355.998493][   T30] audit: type=1326 audit(1751778843.433:2946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  356.008660][   T39] usb 1-1: USB disconnect, device number 18
[  356.038402][ T3341] microsoft 0003:045E:07DA.0006: parse failed
[  356.050080][   T39] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  356.053491][   T30] audit: type=1326 audit(1751778843.433:2947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  356.060273][ T3341] microsoft: probe of 0003:045E:07DA.0006 failed with error -22
[  356.084210][   T30] audit: type=1326 audit(1751778843.433:2948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  356.092121][   T39] ftdi_sio 1-1:0.0: device disconnected
[  356.116557][   T30] audit: type=1326 audit(1751778843.443:2949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4581 comm="syz.0.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  356.530638][ T4593] loop3: detected capacity change from 0 to 256
[  356.571863][ T4598] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1266'.
[  356.605671][ T4593] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  356.717477][ T4609] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1268'.
[  357.104888][ T4609] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1268'.
[  357.539903][   T58] usb 6-1: USB disconnect, device number 10
[  358.540402][ T4634] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  358.550104][ T4634] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  359.208821][   T30] kauditd_printk_skb: 35 callbacks suppressed
[  359.208839][   T30] audit: type=1326 audit(1751778848.343:2985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4626 comm="syz.5.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  359.313232][   T30] audit: type=1326 audit(1751778848.343:2986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4626 comm="syz.5.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  359.657066][   T30] audit: type=1326 audit(1751778848.873:2987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  359.744386][   T30] audit: type=1326 audit(1751778848.873:2988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  359.806897][   T30] audit: type=1326 audit(1751778848.873:2989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  360.145903][   T30] audit: type=1326 audit(1751778848.903:2990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  360.174785][   T30] audit: type=1326 audit(1751778848.903:2991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  360.198716][   T30] audit: type=1326 audit(1751778848.903:2992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  360.222568][   T30] audit: type=1326 audit(1751778848.903:2993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  360.246360][   T30] audit: type=1326 audit(1751778848.903:2994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4651 comm="syz.0.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b19107929 code=0x7ffc0000
[  360.547180][   T39] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  360.648448][ T4667] loop5: detected capacity change from 0 to 256
[  360.688495][ T4669] fuse: Unknown parameter 'fd0x000000000000000600000000000000000000'
[  360.714496][ T4667] FAT-fs (loop5): Directory bread(block 64) failed
[  360.722322][ T4667] FAT-fs (loop5): Directory bread(block 65) failed
[  360.729266][ T4667] FAT-fs (loop5): Directory bread(block 66) failed
[  360.736005][ T4667] FAT-fs (loop5): Directory bread(block 67) failed
[  360.743170][ T4667] FAT-fs (loop5): Directory bread(block 68) failed
[  360.750220][ T4667] FAT-fs (loop5): Directory bread(block 69) failed
[  360.756928][ T4667] FAT-fs (loop5): Directory bread(block 70) failed
[  360.763832][ T4667] FAT-fs (loop5): Directory bread(block 71) failed
[  360.770738][ T4667] FAT-fs (loop5): Directory bread(block 72) failed
[  360.777379][ T4667] FAT-fs (loop5): Directory bread(block 73) failed
[  360.904522][ T4671] overlayfs: overlapping lowerdir path
[  361.037776][   T39] usb 2-1: Using ep0 maxpacket: 16
[  361.503004][   T39] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  361.513257][   T39] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  361.542748][ T4689] FAULT_INJECTION: forcing a failure.
[  361.542748][ T4689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.555983][ T4689] CPU: 0 PID: 4689 Comm: syz.0.1295 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  361.565908][ T4689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  361.575998][ T4689] Call Trace:
[  361.579304][ T4689]  <TASK>
[  361.582252][ T4689]  __dump_stack+0x21/0x30
[  361.586603][ T4689]  dump_stack_lvl+0xee/0x150
[  361.591210][ T4689]  ? show_regs_print_info+0x20/0x20
[  361.596428][ T4689]  dump_stack+0x15/0x20
[  361.600597][ T4689]  should_fail+0x3c1/0x510
[  361.605034][ T4689]  should_fail_usercopy+0x1a/0x20
[  361.610076][ T4689]  strncpy_from_user+0x24/0x2e0
[  361.614952][ T4689]  ? kmem_cache_alloc+0xf7/0x260
[  361.620000][ T4689]  getname_flags+0xf4/0x500
[  361.624522][ T4689]  __x64_sys_link+0x6e/0x90
[  361.629045][ T4689]  x64_sys_call+0x34d/0x9a0
[  361.633569][ T4689]  do_syscall_64+0x4c/0xa0
[  361.637997][ T4689]  ? clear_bhb_loop+0x50/0xa0
[  361.642692][ T4689]  ? clear_bhb_loop+0x50/0xa0
[  361.647384][ T4689]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  361.653644][ T4689] RIP: 0033:0x7f3b19107929
[  361.658076][ T4689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.677697][ T4689] RSP: 002b:00007f3b17770038 EFLAGS: 00000246 ORIG_RAX: 0000000000000056
[  361.686134][ T4689] RAX: ffffffffffffffda RBX: 00007f3b1932efa0 RCX: 00007f3b19107929
[  361.694132][ T4689] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 00002000000001c0
[  361.702143][ T4689] RBP: 00007f3b17770090 R08: 0000000000000000 R09: 0000000000000000
[  361.710140][ T4689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.718142][ T4689] R13: 0000000000000000 R14: 00007f3b1932efa0 R15: 00007fff6c30c3b8
[  361.726150][ T4689]  </TASK>
[  361.730798][ T4690] loop3: detected capacity change from 0 to 16
[  361.731184][ T4688] overlayfs: overlapping lowerdir path
[  361.770573][ T4690] erofs: (device loop3): mounted with root inode @ nid 36.
[  361.795798][ T4694] FAULT_INJECTION: forcing a failure.
[  361.795798][ T4694] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.812323][   T48] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  361.827818][   T26] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  361.836636][ T4694] CPU: 1 PID: 4694 Comm: syz.5.1297 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  361.846545][ T4694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  361.846559][ T4694] Call Trace:
[  361.846565][ T4694]  <TASK>
[  361.846572][ T4694]  __dump_stack+0x21/0x30
[  361.846597][ T4694]  dump_stack_lvl+0xee/0x150
[  361.859941][ T4694]  ? show_regs_print_info+0x20/0x20
[  361.867209][ T4694]  dump_stack+0x15/0x20
[  361.876982][ T4694]  should_fail+0x3c1/0x510
[  361.885560][ T4694]  should_fail_usercopy+0x1a/0x20
[  361.890593][ T4694]  _copy_from_user+0x20/0xd0
[  361.895197][ T4694]  __se_sys_mount+0x176/0x380
[  361.899882][ T4694]  ? __x64_sys_mount+0xd0/0xd0
[  361.904658][ T4694]  ? __ia32_sys_read+0x90/0x90
[  361.904682][ T4694]  __x64_sys_mount+0xbf/0xd0
[  361.914017][ T4694]  x64_sys_call+0x6bf/0x9a0
[  361.918531][ T4694]  do_syscall_64+0x4c/0xa0
[  361.922953][ T4694]  ? clear_bhb_loop+0x50/0xa0
[  361.927641][ T4694]  ? clear_bhb_loop+0x50/0xa0
[  361.932328][ T4694]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  361.938230][ T4694] RIP: 0033:0x7f54a6c17929
[  361.938252][ T4694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.938269][ T4694] RSP: 002b:00007f54a5280038 EFLAGS: 00000246
[  361.962288][ T4694]  ORIG_RAX: 00000000000000a5
[  361.962301][ T4694] RAX: ffffffffffffffda RBX: 00007f54a6e3efa0 RCX: 00007f54a6c17929
[  361.962317][ T4694] RDX: 0000200000000100 RSI: 0000200000000500 RDI: 0000000000000000
[  361.973055][ T4694] RBP: 00007f54a5280090 R08: 0000200000000a40 R09: 0000000000000000
[  361.988993][ T4694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.989010][ T4694] R13: 0000000000000000 R14: 00007f54a6e3efa0 R15: 00007ffe646e4e68
[  361.989030][ T4694]  </TASK>
[  362.021553][ T4690] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  362.064114][ T4690] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  362.085966][   T39] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  362.095259][   T39] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.104136][   T39] usb 2-1: Product: syz
[  362.108936][ T4690] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  362.130726][   T39] usb 2-1: Manufacturer: syz
[  362.135463][   T39] usb 2-1: SerialNumber: syz
[  362.137989][ T4690] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  362.228228][   T26] usb 3-1: Using ep0 maxpacket: 8
[  362.263463][ T4699] fuse: Bad value for 'fd'
[  362.477869][   T39] usb 2-1: 0:2 : does not exist
[  362.492800][   T39] usb 2-1: USB disconnect, device number 14
[  362.507971][   T26] usb 3-1: New USB device found, idVendor=04b8, idProduct=0202, bcdDevice=58.4c
[  362.555033][   T26] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.566494][   T26] usb 3-1: Product: syz
[  362.570861][   T26] usb 3-1: Manufacturer: syz
[  362.579397][   T26] usb 3-1: SerialNumber: syz
[  363.719526][   T26] usb 3-1: config 0 descriptor??
[  364.046950][   T39] usb 3-1: USB disconnect, device number 13
[  364.098631][ T4710] FAULT_INJECTION: forcing a failure.
[  364.098631][ T4710] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  364.112170][ T4710] CPU: 0 PID: 4710 Comm: syz.1.1302 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  364.122101][ T4710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  364.132384][ T4710] Call Trace:
[  364.135695][ T4710]  <TASK>
[  364.138640][ T4710]  __dump_stack+0x21/0x30
[  364.142982][ T4710]  dump_stack_lvl+0xee/0x150
[  364.147582][ T4710]  ? show_regs_print_info+0x20/0x20
[  364.152785][ T4710]  dump_stack+0x15/0x20
[  364.156942][ T4710]  should_fail+0x3c1/0x510
[  364.161366][ T4710]  should_fail_usercopy+0x1a/0x20
[  364.166398][ T4710]  _copy_from_user+0x20/0xd0
[  364.170996][ T4710]  __se_sys_mount+0x176/0x380
[  364.175768][ T4710]  ? __x64_sys_mount+0xd0/0xd0
[  364.180531][ T4710]  ? __ia32_sys_read+0x90/0x90
[  364.185301][ T4710]  __x64_sys_mount+0xbf/0xd0
[  364.189900][ T4710]  x64_sys_call+0x6bf/0x9a0
[  364.194408][ T4710]  do_syscall_64+0x4c/0xa0
[  364.198825][ T4710]  ? clear_bhb_loop+0x50/0xa0
[  364.203509][ T4710]  ? clear_bhb_loop+0x50/0xa0
[  364.208190][ T4710]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  364.214094][ T4710] RIP: 0033:0x7f355dce0929
[  364.218517][ T4710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.238126][ T4710] RSP: 002b:00007f355c349038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  364.246544][ T4710] RAX: ffffffffffffffda RBX: 00007f355df07fa0 RCX: 00007f355dce0929
[  364.254522][ T4710] RDX: 0000200000000100 RSI: 0000200000000500 RDI: 0000000000000000
[  364.262509][ T4710] RBP: 00007f355c349090 R08: 0000200000000a40 R09: 0000000000000000
[  364.270494][ T4710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.278556][ T4710] R13: 0000000000000000 R14: 00007f355df07fa0 R15: 00007ffc47d0c108
[  364.286539][ T4710]  </TASK>
[  364.297663][   T30] kauditd_printk_skb: 132 callbacks suppressed
[  364.304500][   T30] audit: type=1326 audit(1751778853.513:3127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.327973][   T30] audit: type=1326 audit(1751778853.513:3128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.351535][   T30] audit: type=1326 audit(1751778853.513:3129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.378175][   T30] audit: type=1326 audit(1751778853.523:3130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.403052][   T30] audit: type=1326 audit(1751778853.523:3131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.439808][   T30] audit: type=1326 audit(1751778853.523:3132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.491606][   T30] audit: type=1326 audit(1751778853.523:3133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.627502][ T4726] loop5: detected capacity change from 0 to 1024
[  364.659282][ T4726] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  364.677790][   T58] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  364.761832][   T30] audit: type=1326 audit(1751778853.973:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.796075][   T30] audit: type=1326 audit(1751778853.973:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4714 comm="syz.3.1304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  364.905725][ T4740] loop5: detected capacity change from 0 to 16
[  364.931125][ T4741] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  364.941018][ T4741] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  364.990262][   T58] usb 1-1: Using ep0 maxpacket: 16
[  365.087229][ T4740] erofs: (device loop5): mounted with root inode @ nid 36.
[  365.181823][   T48] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  365.247653][ T4740] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  365.318056][   T58] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  365.356724][   T58] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.438515][   T58] usb 1-1: Product: syz
[  365.481519][   T58] usb 1-1: Manufacturer: syz
[  365.499192][ T4740] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  365.552151][   T58] usb 1-1: SerialNumber: syz
[  365.666033][ T4738] loop3: detected capacity change from 0 to 16
[  365.722899][   T39] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  365.732231][ T4740] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  365.798626][ T4738] erofs: (device loop3): mounted with root inode @ nid 36.
[  365.873468][   T49] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  365.896980][ T4738] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  365.916211][   T58] usb 1-1: config 0 descriptor??
[  365.962751][   T58] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  365.974461][   T58] usb 1-1: Detected FT232H
[  365.977839][   T39] usb 2-1: Using ep0 maxpacket: 16
[  365.988269][ T4738] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  366.046709][ T4738] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  366.109382][ T4738] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  366.167839][   T58] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  366.207634][ T4746] overlayfs: overlapping lowerdir path
[  368.121558][ T4758] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  368.131925][ T4758] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  368.220301][ T4758] loop3: detected capacity change from 0 to 512
[  368.309944][ T4758] EXT4-fs (loop3): Ignoring removed bh option
[  368.396292][ T4758] EXT4-fs (loop3): orphan cleanup on readonly fs
[  368.405843][ T4758] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1315: bg 0: block 248: padding at end of block bitmap is not set
[  368.422137][ T4758] Quota error (device loop3): write_blk: dquota write failed
[  368.429785][ T4758] EXT4-fs error (device loop3): ext4_acquire_dquot:6195: comm syz.3.1315: Failed to acquire dquot type 1
[  368.443530][ T4758] EXT4-fs (loop3): 1 truncate cleaned up
[  368.450192][ T4758] EXT4-fs (loop3): mounted filesystem without journal. Opts: bh,nolazytime,noblock_validity,barrier,grpjquota=,noquota,auto_da_alloc,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  368.997855][   T58] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[  369.007287][   T58] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  369.016699][   T58] usb 1-1: USB disconnect, device number 19
[  369.023681][   T58] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  369.044931][ T4762] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1317'.
[  369.097830][   T39] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  369.106933][   T39] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  369.118687][   T39] usb 2-1: Product: syz
[  369.122887][   T39] usb 2-1: Manufacturer: syz
[  369.235302][   T39] usb 2-1: config 0 descriptor??
[  369.306079][   T58] ftdi_sio 1-1:0.0: device disconnected
[  369.320499][ T4773] bridge: RTM_NEWNEIGH with invalid ether address
[  369.337892][   T39] usb 2-1: can't set config #0, error -71
[  369.355370][   T39] usb 2-1: USB disconnect, device number 15
[  369.515857][ T4780] loop3: detected capacity change from 0 to 512
[  369.528415][ T4780] EXT4-fs (loop3): Ignoring removed nobh option
[  369.537824][ T4780] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  369.581307][ T4780] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1323: invalid indirect mapped block 256 (level 2)
[  369.598146][ T4780] EXT4-fs (loop3): 2 truncates cleaned up
[  369.604161][ T4780] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,nojournal_checksum,dioread_nolock,bsdgroups,,errors=continue. Quota mode: writeback.
[  369.697643][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  369.697668][   T30] audit: type=1400 audit(1751779114.911:3137): avc:  denied  { getopt } for  pid=4779 comm="syz.1.1322" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  369.798793][ T4780] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1323: bg 0: block 5: invalid block bitmap
[  369.811692][ T4780] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  369.825107][ T4780] EXT4-fs (loop3): This should not happen!! Data will be lost
[  369.825107][ T4780] 
[  369.835335][ T4780] EXT4-fs (loop3): Total free blocks count 0
[  369.841736][ T4780] EXT4-fs (loop3): Free/Dirty block details
[  369.847881][ T4780] EXT4-fs (loop3): free_blocks=0
[  369.853312][ T4780] EXT4-fs (loop3): dirty_blocks=2
[  369.858582][ T4780] EXT4-fs (loop3): Block reservation details
[  369.865011][ T4780] EXT4-fs (loop3): i_reserved_data_blocks=2
[  370.027998][  T335] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  370.043593][  T335] EXT4-fs (loop3): This should not happen!! Data will be lost
[  370.043593][  T335] 
[  370.062646][   T30] audit: type=1326 audit(1751779115.281:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.148765][   T30] audit: type=1326 audit(1751779115.281:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.217788][   T30] audit: type=1326 audit(1751779115.281:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.537776][   T30] audit: type=1326 audit(1751779115.301:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.586308][   T30] audit: type=1326 audit(1751779115.301:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.626316][   T30] audit: type=1326 audit(1751779115.311:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.690191][   T30] audit: type=1326 audit(1751779115.311:3144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.727941][   T30] audit: type=1326 audit(1751779115.311:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.765641][ T4810] loop3: detected capacity change from 0 to 512
[  370.760654][   T30] audit: type=1326 audit(1751779115.311:3146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4796 comm="syz.5.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  370.923997][ T4810] EXT4-fs (loop3): Ignoring removed nobh option
[  370.953647][ T4810] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  371.014817][ T4810] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1332: invalid indirect mapped block 256 (level 2)
[  371.028868][ T4810] EXT4-fs (loop3): 2 truncates cleaned up
[  371.034628][ T4810] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,nojournal_checksum,dioread_nolock,bsdgroups,,errors=continue. Quota mode: writeback.
[  371.062687][ T4810] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1332: bg 0: block 5: invalid block bitmap
[  371.107585][ T4810] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  371.129907][ T4813] loop5: detected capacity change from 0 to 16
[  371.146620][ T4810] EXT4-fs (loop3): This should not happen!! Data will be lost
[  371.146620][ T4810] 
[  371.178708][ T4810] EXT4-fs (loop3): Total free blocks count 0
[  371.200954][ T4810] EXT4-fs (loop3): Free/Dirty block details
[  371.202630][ T4813] erofs: (device loop5): mounted with root inode @ nid 36.
[  371.217788][ T4810] EXT4-fs (loop3): free_blocks=0
[  371.222886][ T4810] EXT4-fs (loop3): dirty_blocks=2
[  371.240209][ T4810] EXT4-fs (loop3): Block reservation details
[  371.247805][   T49] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  371.269494][  T422] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  371.269875][ T4813] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  371.287363][ T4810] EXT4-fs (loop3): i_reserved_data_blocks=2
[  371.333918][ T4813] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  371.356325][  T335] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  371.369193][ T4813] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  371.387939][  T335] EXT4-fs (loop3): This should not happen!! Data will be lost
[  371.387939][  T335] 
[  371.435175][ T4813] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  371.494020][ T4821] loop3: detected capacity change from 0 to 256
[  371.537014][ T4821] FAT-fs (loop3): Directory bread(block 64) failed
[  371.555071][ T4821] FAT-fs (loop3): Directory bread(block 65) failed
[  371.574069][ T4821] FAT-fs (loop3): Directory bread(block 66) failed
[  371.584130][ T4821] FAT-fs (loop3): Directory bread(block 67) failed
[  371.604348][ T4821] FAT-fs (loop3): Directory bread(block 68) failed
[  371.614426][ T4821] FAT-fs (loop3): Directory bread(block 69) failed
[  371.627808][ T4821] FAT-fs (loop3): Directory bread(block 70) failed
[  371.634461][ T4821] FAT-fs (loop3): Directory bread(block 71) failed
[  371.637890][  T422] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  371.657801][ T4821] FAT-fs (loop3): Directory bread(block 72) failed
[  371.674551][ T4821] FAT-fs (loop3): Directory bread(block 73) failed
[  371.861313][  T422] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  371.877782][  T422] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.885891][  T422] usb 2-1: Product: syz
[  371.890298][  T422] usb 2-1: Manufacturer: syz
[  371.894911][  T422] usb 2-1: SerialNumber: syz
[  372.102245][ T4833] FAULT_INJECTION: forcing a failure.
[  372.102245][ T4833] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.118856][ T4835] FAULT_INJECTION: forcing a failure.
[  372.118856][ T4835] name failslab, interval 1, probability 0, space 0, times 0
[  372.131696][ T4835] CPU: 1 PID: 4835 Comm: syz.2.1340 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  372.141615][ T4835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  372.151693][ T4835] Call Trace:
[  372.154988][ T4835]  <TASK>
[  372.157932][ T4835]  __dump_stack+0x21/0x30
[  372.162283][ T4835]  dump_stack_lvl+0xee/0x150
[  372.166892][ T4835]  ? show_regs_print_info+0x20/0x20
[  372.172105][ T4835]  ? user_path_at_empty+0x161/0x1c0
[  372.177327][ T4835]  ? bpf_trace_run3+0xd1/0x1e0
[  372.182115][ T4835]  dump_stack+0x15/0x20
[  372.186291][ T4835]  should_fail+0x3c1/0x510
[  372.190729][ T4835]  __should_failslab+0xa4/0xe0
[  372.195507][ T4835]  should_failslab+0x9/0x20
[  372.200019][ T4835]  slab_pre_alloc_hook+0x3b/0xe0
[  372.204976][ T4835]  ? getname_flags+0xb9/0x500
[  372.209667][ T4835]  kmem_cache_alloc+0x44/0x260
[  372.214451][ T4835]  getname_flags+0xb9/0x500
[  372.218963][ T4835]  user_path_at_empty+0x30/0x1c0
[  372.223914][ T4835]  ? __se_sys_pivot_root+0x18b/0xc40
[  372.229210][ T4835]  __se_sys_pivot_root+0x1dc/0xc40
[  372.234331][ T4835]  ? __kasan_check_write+0x14/0x20
[  372.239455][ T4835]  ? fput_many+0x15a/0x1a0
[  372.243892][ T4835]  ? __x64_sys_pivot_root+0x70/0x70
[  372.249104][ T4835]  ? ksys_write+0x1eb/0x240
[  372.253615][ T4835]  ? __ia32_sys_read+0x90/0x90
[  372.258393][ T4835]  ? debug_smp_processor_id+0x17/0x20
[  372.263776][ T4835]  __x64_sys_pivot_root+0x5b/0x70
[  372.268820][ T4835]  x64_sys_call+0x6e2/0x9a0
[  372.273338][ T4835]  do_syscall_64+0x4c/0xa0
[  372.277769][ T4835]  ? clear_bhb_loop+0x50/0xa0
[  372.282455][ T4835]  ? clear_bhb_loop+0x50/0xa0
[  372.287139][ T4835]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  372.293051][ T4835] RIP: 0033:0x7ff47d36e929
[  372.297485][ T4835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.317104][ T4835] RSP: 002b:00007ff47b9d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[  372.325534][ T4835] RAX: ffffffffffffffda RBX: 00007ff47d595fa0 RCX: 00007ff47d36e929
[  372.333526][ T4835] RDX: 0000000000000000 RSI: 00002000000021c0 RDI: 0000200000002140
[  372.341521][ T4835] RBP: 00007ff47b9d7090 R08: 0000000000000000 R09: 0000000000000000
[  372.349508][ T4835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.357493][ T4835] R13: 0000000000000000 R14: 00007ff47d595fa0 R15: 00007ffd3d76b4e8
[  372.365488][ T4835]  </TASK>
[  372.368516][ T4833] CPU: 0 PID: 4833 Comm: syz.0.1339 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  372.378439][ T4833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  372.388500][ T4833] Call Trace:
[  372.391783][ T4833]  <TASK>
[  372.394718][ T4833]  __dump_stack+0x21/0x30
[  372.399054][ T4833]  dump_stack_lvl+0xee/0x150
[  372.403647][ T4833]  ? show_regs_print_info+0x20/0x20
[  372.408852][ T4833]  dump_stack+0x15/0x20
[  372.413012][ T4833]  should_fail+0x3c1/0x510
[  372.417441][ T4833]  should_fail_usercopy+0x1a/0x20
[  372.422466][ T4833]  _copy_to_user+0x20/0x90
[  372.426896][ T4833]  simple_read_from_buffer+0xe9/0x160
[  372.432274][ T4833]  proc_fail_nth_read+0x19a/0x210
[  372.437305][ T4833]  ? proc_fault_inject_write+0x2f0/0x2f0
[  372.442943][ T4833]  ? security_file_permission+0x83/0xa0
[  372.448499][ T4833]  ? proc_fault_inject_write+0x2f0/0x2f0
[  372.454167][ T4833]  vfs_read+0x282/0xbe0
[  372.458331][ T4833]  ? kmem_cache_free+0x2f8/0x320
[  372.463276][ T4833]  ? kernel_read+0x1f0/0x1f0
[  372.467870][ T4833]  ? __kasan_check_write+0x14/0x20
[  372.472988][ T4833]  ? mutex_lock+0x95/0x1a0
[  372.477418][ T4833]  ? wait_for_completion_killable_timeout+0x10/0x10
[  372.484011][ T4833]  ? __fget_files+0x2c4/0x320
[  372.488700][ T4833]  ? __fdget_pos+0x2d2/0x380
[  372.493295][ T4833]  ? ksys_read+0x71/0x240
[  372.497630][ T4833]  ksys_read+0x140/0x240
[  372.501878][ T4833]  ? vfs_write+0xf70/0xf70
[  372.506295][ T4833]  ? debug_smp_processor_id+0x17/0x20
[  372.511669][ T4833]  __x64_sys_read+0x7b/0x90
[  372.516179][ T4833]  x64_sys_call+0x96d/0x9a0
[  372.520687][ T4833]  do_syscall_64+0x4c/0xa0
[  372.525108][ T4833]  ? clear_bhb_loop+0x50/0xa0
[  372.529826][ T4833]  ? clear_bhb_loop+0x50/0xa0
[  372.534528][ T4833]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  372.540430][ T4833] RIP: 0033:0x7f3b1910633c
[  372.544850][ T4833] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  372.564669][ T4833] RSP: 002b:00007f3b17770030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  372.573087][ T4833] RAX: ffffffffffffffda RBX: 00007f3b1932efa0 RCX: 00007f3b1910633c
[  372.581067][ T4833] RDX: 000000000000000f RSI: 00007f3b177700a0 RDI: 0000000000000006
[  372.589045][ T4833] RBP: 00007f3b17770090 R08: 0000000000000000 R09: 0000000000000000
[  372.597023][ T4833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.604995][ T4833] R13: 0000000000000000 R14: 00007f3b1932efa0 R15: 00007fff6c30c3b8
[  372.612981][ T4833]  </TASK>
[  372.754070][ T4841] loop3: detected capacity change from 0 to 1024
[  372.955669][ T4841] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  373.123800][ T4841] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,abort,resuid=0x0000000000000000,user_xattr,discard,max_dir_size_kb=0x00000000000007b1,nolazytime,noinit_itable,nomblk_io_submit,nodelalloc,inode_readahead_blks=0x0000000000040000,,errors=continue. Quota mode: none.
[  373.267784][   T39] usb 3-1: new full-speed USB device number 14 using dummy_hcd
[  373.747891][  T422] cdc_ncm 2-1:1.0: MAC-Address: 42:42:42:42:42:42
[  373.755829][  T422] cdc_ncm 2-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  373.789743][  T422] cdc_ncm 2-1:1.0: setting rx_max = 2048
[  373.877852][   T39] usb 3-1: not running at top speed; connect to a high speed hub
[  373.987846][  T422] cdc_ncm 2-1:1.0: setting tx_max = 184
[  373.999468][  T422] cdc_ncm 2-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.1-1, CDC NCM, 42:42:42:42:42:42
[  374.027843][   T39] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  374.066710][   T39] usb 3-1: config 1 interface 0 altsetting 3 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  374.081494][   T39] usb 3-1: config 1 interface 0 has no altsetting 0
[  374.369006][  T422] usb 2-1: USB disconnect, device number 16
[  374.376620][  T422] cdc_ncm 2-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.1-1, CDC NCM
[  374.527846][   T39] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  374.547853][   T39] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.566098][   T39] usb 3-1: Product: syz
[  374.570561][   T39] usb 3-1: Manufacturer: syz
[  374.575196][   T39] usb 3-1: SerialNumber: syz
[  374.602019][ T4876] loop3: detected capacity change from 0 to 16
[  374.607897][ T4849] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  374.626567][ T4876] erofs: (device loop3): mounted with root inode @ nid 36.
[  374.653464][   T49] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  374.676023][ T4876] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  374.717917][ T4876] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  374.800207][ T4876] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  374.847057][ T4876] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  374.859260][   T30] kauditd_printk_skb: 65 callbacks suppressed
[  374.859273][   T30] audit: type=1400 audit(1751779120.081:3212): avc:  denied  { create } for  pid=4848 comm="syz.2.1346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  374.860606][   T30] audit: type=1400 audit(1751779120.081:3213): avc:  denied  { ioctl } for  pid=4848 comm="syz.2.1346" path="socket:[29485]" dev="sockfs" ino=29485 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  374.997859][   T39] cdc_ether: probe of 3-1:1.0 failed with error -71
[  375.017905][   T39] usb 3-1: USB disconnect, device number 14
[  375.250055][ T4913] loop3: detected capacity change from 0 to 2048
[  375.321121][ T4913] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  377.680380][ T4954] loop3: detected capacity change from 0 to 256
[  378.834076][ T4964] loop3: detected capacity change from 0 to 2048
[  378.867615][ T4964] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  378.977579][ T4975] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  378.987299][ T4975] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  379.216653][   T30] audit: type=1400 audit(1751779124.431:3214): avc:  denied  { shutdown } for  pid=4976 comm="syz.0.1374" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  380.152875][  T336] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  380.462160][   T30] audit: type=1326 audit(1751779125.611:3215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  380.506042][   T30] audit: type=1326 audit(1751779125.611:3216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  380.812424][   T30] audit: type=1326 audit(1751779125.611:3217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  380.836231][   T30] audit: type=1326 audit(1751779125.611:3218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  380.863947][   T30] audit: type=1326 audit(1751779125.611:3219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  380.899878][   T30] audit: type=1326 audit(1751779125.611:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  380.959192][   T30] audit: type=1326 audit(1751779125.611:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  381.007461][   T30] audit: type=1326 audit(1751779125.611:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  381.055898][   T30] audit: type=1326 audit(1751779125.611:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  381.105303][   T30] audit: type=1326 audit(1751779125.611:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4986 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  381.167739][  T336] usb 6-1: Using ep0 maxpacket: 16
[  381.717853][  T336] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  381.727091][  T336] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.735155][  T336] usb 6-1: Product: syz
[  381.739863][  T336] usb 6-1: Manufacturer: syz
[  381.744493][  T336] usb 6-1: SerialNumber: syz
[  381.757852][  T336] usb 6-1: config 0 descriptor??
[  381.798956][  T336] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[  381.807421][  T336] usb 6-1: Detected FT232H
[  382.167813][  T336] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  382.190704][ T5011] device syzkaller0 entered promiscuous mode
[  382.199329][ T5011] FAULT_INJECTION: forcing a failure.
[  382.199329][ T5011] name failslab, interval 1, probability 0, space 0, times 0
[  382.212397][ T5011] CPU: 0 PID: 5011 Comm: syz.0.1384 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  382.222315][ T5011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  382.232378][ T5011] Call Trace:
[  382.235664][ T5011]  <TASK>
[  382.238600][ T5011]  __dump_stack+0x21/0x30
[  382.242938][ T5011]  dump_stack_lvl+0xee/0x150
[  382.247529][ T5011]  ? show_regs_print_info+0x20/0x20
[  382.252736][ T5011]  dump_stack+0x15/0x20
[  382.256895][ T5011]  should_fail+0x3c1/0x510
[  382.261317][ T5011]  __should_failslab+0xa4/0xe0
[  382.266085][ T5011]  should_failslab+0x9/0x20
[  382.270593][ T5011]  slab_pre_alloc_hook+0x3b/0xe0
[  382.275538][ T5011]  __kmalloc+0x6d/0x2c0
[  382.279792][ T5011]  ? tun_device_event+0x4e7/0xf20
[  382.284827][ T5011]  tun_device_event+0x4e7/0xf20
[  382.289683][ T5011]  ? __kasan_check_read+0x11/0x20
[  382.294801][ T5011]  ? macsec_notify+0xff/0x490
[  382.299486][ T5011]  ? macsec_common_dellink+0x520/0x520
[  382.304953][ T5011]  raw_notifier_call_chain+0x90/0x100
[  382.310334][ T5011]  dev_change_tx_queue_len+0x1af/0x330
[  382.315804][ T5011]  ? dev_set_mtu+0xc0/0xc0
[  382.320234][ T5011]  dev_ifsioc+0x25c/0xe70
[  382.324590][ T5011]  ? dev_ioctl+0xd10/0xd10
[  382.329016][ T5011]  ? __kasan_check_write+0x14/0x20
[  382.334132][ T5011]  ? mutex_lock+0x95/0x1a0
[  382.338560][ T5011]  ? wait_for_completion_killable_timeout+0x10/0x10
[  382.345158][ T5011]  ? dev_get_by_name_rcu+0xc8/0xf0
[  382.350279][ T5011]  dev_ioctl+0x560/0xd10
[  382.354528][ T5011]  sock_do_ioctl+0x22e/0x300
[  382.359127][ T5011]  ? sock_show_fdinfo+0xa0/0xa0
[  382.363987][ T5011]  ? selinux_file_ioctl+0x377/0x480
[  382.369196][ T5011]  sock_ioctl+0x4bc/0x6b0
[  382.373560][ T5011]  ? sock_poll+0x3d0/0x3d0
[  382.377982][ T5011]  ? __fget_files+0x2c4/0x320
[  382.382672][ T5011]  ? security_file_ioctl+0x84/0xa0
[  382.387788][ T5011]  ? sock_poll+0x3d0/0x3d0
[  382.392207][ T5011]  __se_sys_ioctl+0x121/0x1a0
[  382.396893][ T5011]  __x64_sys_ioctl+0x7b/0x90
[  382.401494][ T5011]  x64_sys_call+0x2f/0x9a0
[  382.405925][ T5011]  do_syscall_64+0x4c/0xa0
[  382.410433][ T5011]  ? clear_bhb_loop+0x50/0xa0
[  382.415152][ T5011]  ? clear_bhb_loop+0x50/0xa0
[  382.419846][ T5011]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  382.425749][ T5011] RIP: 0033:0x7f3b19107929
[  382.430176][ T5011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.449788][ T5011] RSP: 002b:00007f3b17770038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  382.458216][ T5011] RAX: ffffffffffffffda RBX: 00007f3b1932efa0 RCX: 00007f3b19107929
[  382.466284][ T5011] RDX: 0000200000002280 RSI: 0000000000008943 RDI: 0000000000000006
[  382.474264][ T5011] RBP: 00007f3b17770090 R08: 0000000000000000 R09: 0000000000000000
[  382.482238][ T5011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  382.490218][ T5011] R13: 0000000000000000 R14: 00007f3b1932efa0 R15: 00007fff6c30c3b8
[  382.498227][ T5011]  </TASK>
[  382.505273][ T5011] syzkaller0: refused to change device tx_queue_len
[  382.739391][  T336] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  382.965942][ T4981] futex_wake_op: syz.5.1375 tries to shift op by -1; fix this program
[  382.986876][  T336] usb 6-1: USB disconnect, device number 11
[  383.004075][  T336] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  383.031341][  T336] ftdi_sio 6-1:0.0: device disconnected
[  383.858576][ T5042] loop3: detected capacity change from 0 to 16
[  383.967769][ T5042] erofs: (device loop3): mounted with root inode @ nid 36.
[  383.978087][   T48] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  384.000032][ T5042] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  384.022150][ T5042] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  384.044234][ T5042] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  384.065674][ T5042] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  385.447798][ T2743] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  385.697787][ T2743] usb 4-1: Using ep0 maxpacket: 16
[  385.727945][ T3341] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  385.977844][ T2743] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  385.997221][ T2743] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.007776][ T3341] usb 3-1: Using ep0 maxpacket: 16
[  386.023727][ T2743] usb 4-1: Product: syz
[  386.035112][ T2743] usb 4-1: Manufacturer: syz
[  386.045230][ T2743] usb 4-1: SerialNumber: syz
[  386.059616][ T2743] usb 4-1: config 0 descriptor??
[  386.098693][ T2743] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  386.117224][ T2743] usb 4-1: Detected FT232H
[  386.259265][   T30] kauditd_printk_skb: 74 callbacks suppressed
[  386.259283][   T30] audit: type=1400 audit(1751779131.481:3299): avc:  denied  { ioctl } for  pid=5087 comm="syz.5.1407" path="socket:[31974]" dev="sockfs" ino=31974 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  386.308028][ T2743] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  386.340029][   T30] audit: type=1400 audit(1751779131.511:3300): avc:  denied  { setopt } for  pid=5087 comm="syz.5.1407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  386.360639][   T30] audit: type=1400 audit(1751779131.561:3301): avc:  denied  { map } for  pid=5089 comm="syz.5.1408" path="/dev/ashmem" dev="devtmpfs" ino=265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  386.779449][ T2743] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  386.977726][ T1083] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  386.988136][ T5055] futex_wake_op: syz.3.1398 tries to shift op by -1; fix this program
[  386.998167][ T2743] usb 4-1: USB disconnect, device number 10
[  387.010958][ T2743] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  387.022534][ T2743] ftdi_sio 4-1:0.0: device disconnected
[  387.237737][ T1083] usb 2-1: Using ep0 maxpacket: 16
[  387.349931][ T5094] loop5: detected capacity change from 0 to 512
[  387.357979][ T1083] usb 2-1: New USB device found, idVendor=0582, idProduct=007d, bcdDevice=a3.85
[  387.367558][ T1083] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.376626][ T1083] usb 2-1: config 0 descriptor??
[  387.548760][ T5096] FAULT_INJECTION: forcing a failure.
[  387.548760][ T5096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  387.569176][ T5096] CPU: 0 PID: 5096 Comm: syz.3.1410 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  387.579133][ T5096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  387.589215][ T5096] Call Trace:
[  387.592507][ T5096]  <TASK>
[  387.595450][ T5096]  __dump_stack+0x21/0x30
[  387.599819][ T5096]  dump_stack_lvl+0xee/0x150
[  387.604435][ T5096]  ? show_regs_print_info+0x20/0x20
[  387.609658][ T5096]  dump_stack+0x15/0x20
[  387.613847][ T5096]  should_fail+0x3c1/0x510
[  387.618280][ T5096]  should_fail_usercopy+0x1a/0x20
[  387.623320][ T5096]  _copy_to_user+0x20/0x90
[  387.627767][ T5096]  simple_read_from_buffer+0xe9/0x160
[  387.633159][ T5096]  proc_fail_nth_read+0x19a/0x210
[  387.638205][ T5096]  ? proc_fault_inject_write+0x2f0/0x2f0
[  387.643863][ T5096]  ? security_file_permission+0x83/0xa0
[  387.649428][ T5096]  ? proc_fault_inject_write+0x2f0/0x2f0
[  387.655080][ T5096]  vfs_read+0x282/0xbe0
[  387.659252][ T5096]  ? kernel_read+0x1f0/0x1f0
[  387.663999][ T5096]  ? __kasan_check_write+0x14/0x20
[  387.669150][ T5096]  ? mutex_lock+0x95/0x1a0
[  387.673715][ T5096]  ? wait_for_completion_killable_timeout+0x10/0x10
[  387.680483][ T5096]  ? __fget_files+0x2c4/0x320
[  387.685460][ T5096]  ? __fdget_pos+0x2d2/0x380
[  387.690075][ T5096]  ? ksys_read+0x71/0x240
[  387.694428][ T5096]  ksys_read+0x140/0x240
[  387.698687][ T5096]  ? vfs_write+0xf70/0xf70
[  387.703128][ T5096]  ? __bpf_trace_sys_enter+0x62/0x70
[  387.708443][ T5096]  __x64_sys_read+0x7b/0x90
[  387.712967][ T5096]  x64_sys_call+0x96d/0x9a0
[  387.717486][ T5096]  do_syscall_64+0x4c/0xa0
[  387.721916][ T5096]  ? clear_bhb_loop+0x50/0xa0
[  387.726617][ T5096]  ? clear_bhb_loop+0x50/0xa0
[  387.731312][ T5096]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  387.737226][ T5096] RIP: 0033:0x7f7b1eb2c33c
[  387.741655][ T5096] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  387.761278][ T5096] RSP: 002b:00007f7b1d196030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  387.769716][ T5096] RAX: ffffffffffffffda RBX: 00007f7b1ed54fa0 RCX: 00007f7b1eb2c33c
[  387.777705][ T5096] RDX: 000000000000000f RSI: 00007f7b1d1960a0 RDI: 0000000000000003
[  387.785691][ T5096] RBP: 00007f7b1d196090 R08: 0000000000000000 R09: 0000000000000000
[  387.793721][ T5096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.801714][ T5096] R13: 0000000000000001 R14: 00007f7b1ed54fa0 R15: 00007ffd59ca2218
[  387.809724][ T5096]  </TASK>
[  387.817811][ T2743] usb 2-1: USB disconnect, device number 17
[  387.864298][ T5099] loop3: detected capacity change from 0 to 512
[  387.988790][ T5099] loop3: detected capacity change from 0 to 512
[  388.049939][ T5099] loop3: detected capacity change from 0 to 512
[  388.184098][ T5099] loop3: detected capacity change from 0 to 512
[  388.267081][ T5099] loop3: detected capacity change from 0 to 512
[  388.438103][ T5099] loop3: detected capacity change from 0 to 512
[  388.582254][ T5099] loop3: detected capacity change from 0 to 512
[  388.850213][ T5111] xt_hashlimit: max too large, truncated to 1048576
[  388.942827][ T5102] overlayfs: overlapping lowerdir path
[  388.960405][ T3341] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  388.970337][ T3341] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  388.973209][ T5117] FAULT_INJECTION: forcing a failure.
[  388.973209][ T5117] name failslab, interval 1, probability 0, space 0, times 0
[  388.979269][ T3341] usb 3-1: Product: syz
[  388.995555][ T3341] usb 3-1: Manufacturer: syz
[  389.001487][ T5094] EXT4-fs (loop5): 1 orphan inode deleted
[  389.007250][ T5094] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  389.014117][ T5117] CPU: 0 PID: 5117 Comm: syz.1.1416 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  389.019585][ T5094] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  389.028098][ T5117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  389.028115][ T5117] Call Trace:
[  389.028122][ T5117]  <TASK>
[  389.028130][ T5117]  __dump_stack+0x21/0x30
[  389.028155][ T5117]  dump_stack_lvl+0xee/0x150
[  389.028172][ T5117]  ? show_regs_print_info+0x20/0x20
[  389.028192][ T5117]  dump_stack+0x15/0x20
[  389.028207][ T5117]  should_fail+0x3c1/0x510
[  389.028226][ T5117]  ? __ip_append_data+0x1ff7/0x3190
[  389.028248][ T5117]  __should_failslab+0xa4/0xe0
[  389.028269][ T5117]  should_failslab+0x9/0x20
[  389.028287][ T5117]  slab_pre_alloc_hook+0x3b/0xe0
[  389.096926][ T5117]  ? __ip_append_data+0x1ff7/0x3190
[  389.102134][ T5117]  ? __ip_append_data+0x1ff7/0x3190
[  389.107338][ T5117]  __kmalloc_track_caller+0x6c/0x2c0
[  389.112625][ T5117]  ? __ip_append_data+0x1ff7/0x3190
[  389.117831][ T5117]  ? __ip_append_data+0x1ff7/0x3190
[  389.123031][ T5117]  __alloc_skb+0x21a/0x740
[  389.127448][ T5117]  __ip_append_data+0x1ff7/0x3190
[  389.132479][ T5117]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  389.138295][ T5117]  ? rcu_read_unlock_special+0xab/0x460
[  389.143846][ T5117]  ? __kasan_check_write+0x14/0x20
[  389.148964][ T5117]  ? _raw_spin_lock_bh+0x8e/0xe0
[  389.153903][ T5117]  ? raw_send_hdrinc+0x1110/0x1110
[  389.159024][ T5117]  ? ip_setup_cork+0x860/0x860
[  389.163793][ T5117]  ? __kasan_check_read+0x11/0x20
[  389.168825][ T5117]  ? ip_setup_cork+0x561/0x860
[  389.173594][ T5117]  ip_append_data+0x125/0x1a0
[  389.178279][ T5117]  ? raw_send_hdrinc+0x1110/0x1110
[  389.183397][ T5117]  raw_sendmsg+0xd24/0x1290
[  389.187914][ T5117]  ? compat_raw_ioctl+0x10/0x10
[  389.192773][ T5117]  ? selinux_socket_sendmsg+0x208/0x2e0
[  389.198329][ T5117]  ? inet_send_prepare+0x60/0x4c0
[  389.203535][ T5117]  inet_sendmsg+0xa5/0xc0
[  389.207888][ T5117]  ? inet_send_prepare+0x4c0/0x4c0
[  389.213007][ T5117]  ____sys_sendmsg+0x5a2/0x8c0
[  389.217775][ T5117]  ? __sys_sendmsg_sock+0x40/0x40
[  389.222803][ T5117]  ? import_iovec+0x7c/0xb0
[  389.227487][ T5117]  ___sys_sendmsg+0x1f0/0x260
[  389.232255][ T5117]  ? _kstrtoull+0x3c0/0x4d0
[  389.236763][ T5117]  ? __sys_sendmsg+0x250/0x250
[  389.241539][ T5117]  ? __fdget+0x1a1/0x230
[  389.245788][ T5117]  __sys_sendmmsg+0x278/0x480
[  389.250554][ T5117]  ? __ia32_sys_sendmsg+0x2a0/0x2a0
[  389.255762][ T5117]  ? __ia32_sys_read+0x90/0x90
[  389.260806][ T5117]  __x64_sys_sendmmsg+0xa0/0xb0
[  389.265660][ T5117]  x64_sys_call+0x6c6/0x9a0
[  389.270168][ T5117]  do_syscall_64+0x4c/0xa0
[  389.274590][ T5117]  ? clear_bhb_loop+0x50/0xa0
[  389.279371][ T5117]  ? clear_bhb_loop+0x50/0xa0
[  389.284053][ T5117]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  389.289948][ T5117] RIP: 0033:0x7f355dce0929
[  389.294392][ T5117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.313998][ T5117] RSP: 002b:00007f355c349038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  389.322438][ T5117] RAX: ffffffffffffffda RBX: 00007f355df07fa0 RCX: 00007f355dce0929
[  389.330412][ T5117] RDX: 0000000004000095 RSI: 0000200000005240 RDI: 0000000000000003
[  389.338386][ T5117] RBP: 00007f355c349090 R08: 0000000000000000 R09: 0000000000000000
[  389.346361][ T5117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.354331][ T5117] R13: 0000000000000000 R14: 00007f355df07fa0 R15: 00007ffc47d0c108
[  389.362309][ T5117]  </TASK>
[  389.372313][ T3341] usb 3-1: config 0 descriptor??
[  389.437813][ T3341] usb 3-1: can't set config #0, error -71
[  389.455095][   T30] audit: type=1326 audit(1751779134.671:3302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  389.503507][   T30] audit: type=1326 audit(1751779134.671:3303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  389.548606][ T3341] usb 3-1: USB disconnect, device number 15
[  389.559512][   T30] audit: type=1326 audit(1751779134.671:3304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  389.585373][   T30] audit: type=1326 audit(1751779134.701:3305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  389.687636][   T30] audit: type=1326 audit(1751779134.701:3306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  390.009118][   T30] audit: type=1326 audit(1751779134.701:3307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  390.056814][   T30] audit: type=1326 audit(1751779134.701:3308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  391.395701][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  391.395722][   T30] audit: type=1326 audit(1751779135.591:3338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  391.436836][   T30] audit: type=1326 audit(1751779135.591:3339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5123 comm="syz.5.1418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  391.493585][   T30] audit: type=1326 audit(1751779136.711:3340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5151 comm="syz.1.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  391.560212][   T30] audit: type=1326 audit(1751779136.711:3341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5151 comm="syz.1.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x7ffc0000
[  391.620972][ T5165] loop5: detected capacity change from 0 to 256
[  391.632206][   T30] audit: type=1326 audit(1751779136.721:3342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5161 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  391.656969][   T30] audit: type=1326 audit(1751779136.721:3343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5161 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  392.485281][ T5165] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  392.553573][   T30] audit: type=1326 audit(1751779136.721:3344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5161 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  392.585483][   T30] audit: type=1326 audit(1751779136.721:3345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5161 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  392.624965][   T30] audit: type=1326 audit(1751779136.721:3346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5161 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  392.690716][   T30] audit: type=1326 audit(1751779136.721:3347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5161 comm="syz.3.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  392.768310][ T5174] loop3: detected capacity change from 0 to 1024
[  393.106416][ T5202] loop3: detected capacity change from 0 to 16
[  393.270325][ T5202] erofs: (device loop3): mounted with root inode @ nid 36.
[  393.297452][   T49] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  393.319194][ T5202] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  393.340819][ T5202] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  393.363102][ T5202] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  393.385425][ T5202] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  393.976031][ T5215] FAULT_INJECTION: forcing a failure.
[  393.976031][ T5215] name failslab, interval 1, probability 0, space 0, times 0
[  393.989361][ T5215] CPU: 0 PID: 5215 Comm: syz.1.1447 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  393.999378][ T5215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  394.009680][ T5215] Call Trace:
[  394.012974][ T5215]  <TASK>
[  394.015918][ T5215]  __dump_stack+0x21/0x30
[  394.020262][ T5215]  dump_stack_lvl+0xee/0x150
[  394.024864][ T5215]  ? show_regs_print_info+0x20/0x20
[  394.030087][ T5215]  dump_stack+0x15/0x20
[  394.034270][ T5215]  should_fail+0x3c1/0x510
[  394.038705][ T5215]  __should_failslab+0xa4/0xe0
[  394.043487][ T5215]  should_failslab+0x9/0x20
[  394.048004][ T5215]  slab_pre_alloc_hook+0x3b/0xe0
[  394.052957][ T5215]  ? __d_alloc+0x2d/0x6a0
[  394.057298][ T5215]  kmem_cache_alloc+0x44/0x260
[  394.062074][ T5215]  __d_alloc+0x2d/0x6a0
[  394.066244][ T5215]  ? current_time+0x197/0x2b0
[  394.070937][ T5215]  d_alloc_pseudo+0x1d/0x70
[  394.075450][ T5215]  alloc_file_pseudo+0xc8/0x1f0
[  394.080320][ T5215]  ? alloc_empty_file_noaccount+0x80/0x80
[  394.086086][ T5215]  ? shmem_get_inode+0x69a/0x9e0
[  394.091121][ T5215]  ? __kasan_check_write+0x14/0x20
[  394.096249][ T5215]  ? clear_nlink+0x8a/0xe0
[  394.100765][ T5215]  __shmem_file_setup+0x1df/0x2b0
[  394.105805][ T5215]  shmem_file_setup+0x2f/0x40
[  394.110501][ T5215]  __se_sys_memfd_create+0x1e6/0x3b0
[  394.115885][ T5215]  __x64_sys_memfd_create+0x5b/0x70
[  394.121189][ T5215]  x64_sys_call+0x473/0x9a0
[  394.125710][ T5215]  do_syscall_64+0x4c/0xa0
[  394.130135][ T5215]  ? clear_bhb_loop+0x50/0xa0
[  394.134823][ T5215]  ? clear_bhb_loop+0x50/0xa0
[  394.139512][ T5215]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  394.145546][ T5215] RIP: 0033:0x7f355dce0929
[  394.149985][ T5215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.169608][ T5215] RSP: 002b:00007f355c306e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  394.178124][ T5215] RAX: ffffffffffffffda RBX: 00000000000001da RCX: 00007f355dce0929
[  394.186110][ T5215] RDX: 00007f355c306ef0 RSI: 0000000000000000 RDI: 00007f355dd634cc
[  394.194267][ T5215] RBP: 00002000000011c0 R08: 00007f355c306bb7 R09: 00007f355c306e40
[  394.202247][ T5215] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000140
[  394.210227][ T5215] R13: 00007f355c306ef0 R14: 00007f355c306eb0 R15: 0000200000000280
[  394.218219][ T5215]  </TASK>
[  394.682528][ T5223] loop5: detected capacity change from 0 to 128
[  394.778342][ T5223] FAT-fs (loop5): Unrecognized mount option "0xffffffffffffffff��������0xffffffffffffffff�O��9�`�%1�F��4듶B딌�8�R��nҖ�\���•$?m�x��Ѱ�?���LaI1�lO�u�R�pڈ���k=!Q�y]ߩ>?s׶�9��\�~Uh��)P�*��ar�*�g�\�Ҷ�]_�4[" or missing value
[  394.802497][ T5227] loop3: detected capacity change from 0 to 256
[  394.828787][ T5227] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  395.100782][ T5230] fuse: Bad value for 'fd'
[  395.815850][ T5244] loop5: detected capacity change from 0 to 16
[  395.859659][ T5244] erofs: (device loop5): mounted with root inode @ nid 36.
[  395.869803][   T49] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  395.891795][ T5244] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  395.913271][ T5244] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  395.934965][ T5244] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  395.957714][ T5244] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000]
[  396.116376][ T5253] loop3: detected capacity change from 0 to 4096
[  396.196125][ T5262] fuse: Bad value for 'fd'
[  396.221726][ T5253] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  396.401335][ T5273] loop3: detected capacity change from 0 to 2048
[  396.473628][ T5273] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  396.715505][ T5284] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  396.725489][ T5284] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  396.756413][ T5284] loop5: detected capacity change from 0 to 512
[  396.782213][ T5283] incfs: Options parsing error. -22
[  396.809908][ T5284] EXT4-fs (loop5): Ignoring removed bh option
[  396.881890][ T5284] EXT4-fs (loop5): orphan cleanup on readonly fs
[  396.891921][ T5284] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1470: bg 0: block 248: padding at end of block bitmap is not set
[  396.909224][ T5284] __quota_error: 102 callbacks suppressed
[  396.909252][ T5284] Quota error (device loop5): write_blk: dquota write failed
[  396.922762][ T5284] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  396.932847][ T5284] EXT4-fs error (device loop5): ext4_acquire_dquot:6195: comm syz.5.1470: Failed to acquire dquot type 1
[  396.949528][ T5284] EXT4-fs (loop5): 1 truncate cleaned up
[  396.999643][ T5284] EXT4-fs (loop5): mounted filesystem without journal. Opts: bh,nolazytime,noblock_validity,barrier,grpjquota=,noquota,auto_da_alloc,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  397.281635][   T30] audit: type=1400 audit(1751779142.501:3450): avc:  denied  { write } for  pid=5280 comm="syz.3.1471" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  397.320940][ T5288] FAULT_INJECTION: forcing a failure.
[  397.320940][ T5288] name failslab, interval 1, probability 0, space 0, times 0
[  397.333679][ T5288] CPU: 0 PID: 5288 Comm: syz.2.1472 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  397.343684][ T5288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  397.353762][ T5288] Call Trace:
[  397.357059][ T5288]  <TASK>
[  397.360011][ T5288]  __dump_stack+0x21/0x30
[  397.364367][ T5288]  dump_stack_lvl+0xee/0x150
[  397.369071][ T5288]  ? show_regs_print_info+0x20/0x20
[  397.374295][ T5288]  dump_stack+0x15/0x20
[  397.378468][ T5288]  should_fail+0x3c1/0x510
[  397.382907][ T5288]  __should_failslab+0xa4/0xe0
[  397.387698][ T5288]  should_failslab+0x9/0x20
[  397.392223][ T5288]  slab_pre_alloc_hook+0x3b/0xe0
[  397.397183][ T5288]  __kmalloc+0x6d/0x2c0
[  397.401365][ T5288]  ? kvmalloc_node+0x242/0x330
[  397.406156][ T5288]  kvmalloc_node+0x242/0x330
[  397.410770][ T5288]  ? vm_mmap+0xb0/0xb0
[  397.414863][ T5288]  ? rcu_gp_kthread_wake+0x90/0x90
[  397.420125][ T5288]  ? mutex_unlock+0x89/0x220
[  397.424833][ T5288]  nf_hook_entries_grow+0x328/0x7b0
[  397.430058][ T5288]  __nf_register_net_hook+0x1c1/0x770
[  397.435457][ T5288]  ? __kasan_check_write+0x14/0x20
[  397.440602][ T5288]  nf_register_net_hook+0xbb/0x1a0
[  397.445742][ T5288]  nf_register_net_hooks+0x47/0x1b0
[  397.450972][ T5288]  nf_ct_netns_do_get+0x3a0/0x540
[  397.456029][ T5288]  nf_ct_netns_get+0x90/0xc0
[  397.460649][ T5288]  redirect_tg4_check+0xcc/0x140
[  397.465755][ T5288]  xt_check_target+0x3b8/0xa80
[  397.470570][ T5288]  ? xt_find_jump_offset+0xf0/0xf0
[  397.475794][ T5288]  ? mutex_unlock+0x89/0x220
[  397.480406][ T5288]  ? __mutex_lock_slowpath+0x10/0x10
[  397.485717][ T5288]  ? xt_find_target+0x1f/0x260
[  397.490505][ T5288]  ? xt_find_target+0x240/0x260
[  397.495378][ T5288]  translate_table+0x17f8/0x1fe0
[  397.500348][ T5288]  ? ipt_register_table+0x7e0/0x7e0
[  397.505577][ T5288]  ? __kmalloc+0x13d/0x2c0
[  397.510020][ T5288]  ? kvmalloc_node+0x242/0x330
[  397.514810][ T5288]  ? kvmalloc_node+0x26d/0x330
[  397.519600][ T5288]  ? __kasan_check_write+0x14/0x20
[  397.524737][ T5288]  ? copy_from_sockptr_offset+0x77/0x90
[  397.530315][ T5288]  do_ipt_set_ctl+0x95c/0xce0
[  397.535014][ T5288]  ? path_openat+0xfcf/0x2f10
[  397.539712][ T5288]  ? do_filp_open+0x1b3/0x3e0
[  397.544406][ T5288]  ? do_sys_openat2+0x14c/0x7b0
[  397.549276][ T5288]  ? __x64_sys_openat+0x136/0x160
[  397.554327][ T5288]  ? x64_sys_call+0x219/0x9a0
[  397.559033][ T5288]  ? do_syscall_64+0x4c/0xa0
[  397.563647][ T5288]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  397.569736][ T5288]  ? ipt_unregister_table_exit+0x220/0x220
[  397.575568][ T5288]  ? memcpy+0x56/0x70
[  397.579574][ T5288]  ? avc_has_perm_noaudit+0x2f4/0x460
[  397.584980][ T5288]  ? __kasan_check_write+0x14/0x20
[  397.590122][ T5288]  ? mutex_unlock+0x89/0x220
[  397.594734][ T5288]  ? __mutex_lock_slowpath+0x10/0x10
[  397.600038][ T5288]  ? _raw_spin_lock_bh+0x8e/0xe0
[  397.605000][ T5288]  ? _raw_spin_lock_irq+0xe0/0xe0
[  397.610046][ T5288]  ? avc_has_perm+0x158/0x240
[  397.614860][ T5288]  nf_setsockopt+0x272/0x2a0
[  397.619474][ T5288]  ip_setsockopt+0x25e6/0x3520
[  397.624264][ T5288]  ? ipv4_pktinfo_prepare+0x580/0x580
[  397.629659][ T5288]  ? 0xffffffffa0028ce0
[  397.633829][ T5288]  ? is_bpf_text_address+0x177/0x190
[  397.639155][ T5288]  ? __kernel_text_address+0xa0/0x100
[  397.644554][ T5288]  ? unwind_get_return_address+0x4d/0x90
[  397.650221][ T5288]  ? stack_trace_save+0xe0/0xe0
[  397.655282][ T5288]  ? arch_stack_walk+0xee/0x140
[  397.660175][ T5288]  ? stack_trace_save+0x98/0xe0
[  397.665057][ T5288]  ? __stack_depot_save+0x34/0x480
[  397.670201][ T5288]  ? memcpy+0x56/0x70
[  397.674208][ T5288]  ? avc_has_perm_noaudit+0x2f4/0x460
[  397.679601][ T5288]  ? __x64_sys_openat+0x136/0x160
[  397.684649][ T5288]  ? x64_sys_call+0x219/0x9a0
[  397.689360][ T5288]  ? avc_denied+0x1b0/0x1b0
[  397.693889][ T5288]  ? kstrtouint_from_user+0x1a0/0x200
[  397.699283][ T5288]  ? avc_has_perm+0x158/0x240
[  397.703986][ T5288]  ? avc_has_perm_noaudit+0x460/0x460
[  397.709383][ T5288]  ? proc_fail_nth_write+0x17a/0x1f0
[  397.714691][ T5288]  tcp_setsockopt+0x1f8/0x1d30
[  397.719637][ T5288]  ? tcp_set_window_clamp+0x1b0/0x1b0
[  397.725032][ T5288]  ? vfs_write+0xc17/0xf70
[  397.729467][ T5288]  ? __fget_files+0x2c4/0x320
[  397.734161][ T5288]  sock_common_setsockopt+0xa0/0xb0
[  397.739379][ T5288]  ? sock_common_recvmsg+0x1b0/0x1b0
[  397.744668][ T5288]  __sys_setsockopt+0x2f0/0x460
[  397.749523][ T5288]  ? __kasan_check_write+0x14/0x20
[  397.754641][ T5288]  ? __ia32_sys_recv+0xb0/0xb0
[  397.759410][ T5288]  ? ksys_write+0x1eb/0x240
[  397.764010][ T5288]  ? __ia32_sys_read+0x90/0x90
[  397.768782][ T5288]  __x64_sys_setsockopt+0xbf/0xd0
[  397.773818][ T5288]  x64_sys_call+0x982/0x9a0
[  397.778330][ T5288]  do_syscall_64+0x4c/0xa0
[  397.782751][ T5288]  ? clear_bhb_loop+0x50/0xa0
[  397.787430][ T5288]  ? clear_bhb_loop+0x50/0xa0
[  397.792116][ T5288]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  397.798018][ T5288] RIP: 0033:0x7ff47d36e929
[  397.802439][ T5288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.822050][ T5288] RSP: 002b:00007ff47b9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  397.830476][ T5288] RAX: ffffffffffffffda RBX: 00007ff47d595fa0 RCX: 00007ff47d36e929
[  397.838454][ T5288] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000006
[  397.846431][ T5288] RBP: 00007ff47b9d7090 R08: 0000000000000388 R09: 0000000000000000
[  397.854412][ T5288] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.862395][ T5288] R13: 0000000000000000 R14: 00007ff47d595fa0 R15: 00007ffd3d76b4e8
[  397.870380][ T5288]  </TASK>
[  397.937930][ T5283] incfs: mount failed -22
[  398.058111][ T5295] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1476'.
[  398.266871][ T5298] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  398.277315][ T5298] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  402.009524][ T5308] fuse: Bad value for 'fd'
[  402.080036][   T30] audit: type=1326 audit(1751779147.301:3451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5310 comm="syz.1.1481" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f355dce0929 code=0x0
[  402.098400][ T5321] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  402.203952][ T5329] loop3: detected capacity change from 0 to 512
[  402.229793][ T5329] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  402.237285][ T5329] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  402.262073][ T5329] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c118, mo2=0002]
[  402.270178][ T5329] System zones: 1-12
[  402.275094][ T5329] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2228: inode #15: comm syz.3.1487: corrupted in-inode xattr
[  402.287464][ T5329] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1487: couldn't read orphan inode 15 (err -117)
[  402.299951][ T5329] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,debug,,errors=continue. Quota mode: none.
[  402.948642][   T30] audit: type=1400 audit(1751779148.171:3452): avc:  denied  { bind } for  pid=5346 comm="syz.1.1492" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  403.004128][   T30] audit: type=1400 audit(1751779148.191:3453): avc:  denied  { name_bind } for  pid=5346 comm="syz.1.1492" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  403.033288][   T30] audit: type=1400 audit(1751779148.191:3454): avc:  denied  { node_bind } for  pid=5346 comm="syz.1.1492" saddr=172.20.20.170 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  403.117365][ T5355] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  403.127558][ T5355] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  405.543832][ T5361] 9pnet: Could not find request transport: fd<rfdno=0x00000000000000060x0000000000000008
[  405.576848][ T5363] FAULT_INJECTION: forcing a failure.
[  405.576848][ T5363] name failslab, interval 1, probability 0, space 0, times 0
[  405.589742][ T5363] CPU: 0 PID: 5363 Comm: syz.1.1497 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  405.599662][ T5363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  405.609735][ T5363] Call Trace:
[  405.613032][ T5363]  <TASK>
[  405.615979][ T5363]  __dump_stack+0x21/0x30
[  405.620484][ T5363]  dump_stack_lvl+0xee/0x150
[  405.625108][ T5363]  ? show_regs_print_info+0x20/0x20
[  405.630340][ T5363]  dump_stack+0x15/0x20
[  405.634524][ T5363]  should_fail+0x3c1/0x510
[  405.638969][ T5363]  __should_failslab+0xa4/0xe0
[  405.643761][ T5363]  should_failslab+0x9/0x20
[  405.648297][ T5363]  slab_pre_alloc_hook+0x3b/0xe0
[  405.653268][ T5363]  ? getname_flags+0xb9/0x500
[  405.658117][ T5363]  kmem_cache_alloc+0x44/0x260
[  405.662916][ T5363]  getname_flags+0xb9/0x500
[  405.667436][ T5363]  ? refcount_dec_and_lock_irqsave+0xe1/0x100
[  405.673534][ T5363]  user_path_at_empty+0x30/0x1c0
[  405.678495][ T5363]  __se_sys_mount+0x2e3/0x380
[  405.683280][ T5363]  ? __x64_sys_mount+0xd0/0xd0
[  405.688067][ T5363]  ? __ia32_sys_read+0x90/0x90
[  405.692847][ T5363]  __x64_sys_mount+0xbf/0xd0
[  405.697468][ T5363]  x64_sys_call+0x6bf/0x9a0
[  405.702003][ T5363]  do_syscall_64+0x4c/0xa0
[  405.706448][ T5363]  ? clear_bhb_loop+0x50/0xa0
[  405.711157][ T5363]  ? clear_bhb_loop+0x50/0xa0
[  405.715857][ T5363]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  405.721777][ T5363] RIP: 0033:0x7f355dce0929
[  405.726224][ T5363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.746082][ T5363] RSP: 002b:00007f355c349038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  405.754536][ T5363] RAX: ffffffffffffffda RBX: 00007f355df07fa0 RCX: 00007f355dce0929
[  405.762536][ T5363] RDX: 0000200000000500 RSI: 0000200000000400 RDI: 0000200000000300
[  405.770555][ T5363] RBP: 00007f355c349090 R08: 0000200000000380 R09: 0000000000000000
[  405.778551][ T5363] R10: 000000000000c802 R11: 0000000000000246 R12: 0000000000000001
[  405.786543][ T5363] R13: 0000000000000000 R14: 00007f355df07fa0 R15: 00007ffc47d0c108
[  405.794548][ T5363]  </TASK>
[  406.075613][   T30] audit: type=1326 audit(1751779151.291:3455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5374 comm="syz.5.1503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  406.099380][   T30] audit: type=1326 audit(1751779151.291:3456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5374 comm="syz.5.1503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  406.162215][   T30] audit: type=1326 audit(1751779151.291:3457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5374 comm="syz.5.1503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  406.186990][   T30] audit: type=1326 audit(1751779151.321:3458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5374 comm="syz.5.1503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  406.217555][   T30] audit: type=1326 audit(1751779151.321:3459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5374 comm="syz.5.1503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  406.241404][   T30] audit: type=1326 audit(1751779151.341:3460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5374 comm="syz.5.1503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  406.707369][ T5400] loop3: detected capacity change from 0 to 2048
[  406.859183][ T5400]  loop3: p1 < > p3
[  406.872056][ T5400] loop3: p3 size 134217728 extends beyond EOD, truncated
[  407.400533][ T5412] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  407.410900][ T5412] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  407.822947][ T5412] loop5: detected capacity change from 0 to 512
[  408.489332][ T5412] EXT4-fs (loop5): Ignoring removed bh option
[  408.568674][ T5412] EXT4-fs (loop5): orphan cleanup on readonly fs
[  408.578815][ T5412] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1510: bg 0: block 248: padding at end of block bitmap is not set
[  408.594265][ T5412] __quota_error: 15 callbacks suppressed
[  408.594292][ T5412] Quota error (device loop5): write_blk: dquota write failed
[  408.607624][ T5412] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  408.617706][ T5412] EXT4-fs error (device loop5): ext4_acquire_dquot:6195: comm syz.5.1510: Failed to acquire dquot type 1
[  408.632564][ T5412] EXT4-fs (loop5): 1 truncate cleaned up
[  408.639236][ T5412] EXT4-fs (loop5): mounted filesystem without journal. Opts: bh,nolazytime,noblock_validity,barrier,grpjquota=,noquota,auto_da_alloc,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  409.301931][  T422] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  409.313071][ T5421] loop5: detected capacity change from 0 to 512
[  409.346870][ T5421] EXT4-fs (loop5): Ignoring removed nobh option
[  409.362958][ T5421] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  409.377437][   T30] audit: type=1326 audit(1751779154.591:3476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5427 comm="syz.3.1515" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x0
[  409.384075][ T5421] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1512: invalid indirect mapped block 256 (level 2)
[  409.415814][ T5421] EXT4-fs (loop5): 2 truncates cleaned up
[  409.421689][ T5421] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,nojournal_checksum,dioread_nolock,bsdgroups,,errors=continue. Quota mode: writeback.
[  409.459887][ T5421] EXT4-fs error (device loop5): ext4_validate_block_bitmap:429: comm syz.5.1512: bg 0: block 5: invalid block bitmap
[  409.472593][ T5421] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  409.485178][ T5421] EXT4-fs (loop5): This should not happen!! Data will be lost
[  409.485178][ T5421] 
[  409.495268][ T5421] EXT4-fs (loop5): Total free blocks count 0
[  409.501641][ T5421] EXT4-fs (loop5): Free/Dirty block details
[  409.587454][  T422] usb 2-1: Using ep0 maxpacket: 16
[  409.592953][ T5421] EXT4-fs (loop5): free_blocks=0
[  409.755461][ T5421] EXT4-fs (loop5): dirty_blocks=2
[  409.761746][  T422] usb 2-1: config 0 has an invalid interface number: 105 but max is 0
[  409.789049][ T5421] EXT4-fs (loop5): Block reservation details
[  409.795103][ T5421] EXT4-fs (loop5): i_reserved_data_blocks=2
[  409.809125][ T5435] loop3: detected capacity change from 0 to 2048
[  409.828780][  T422] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  409.842582][  T422] usb 2-1: config 0 has no interface number 0
[  409.859881][ T5435] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  409.885114][ T1562] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  409.897955][ T1562] EXT4-fs (loop5): This should not happen!! Data will be lost
[  409.897955][ T1562] 
[  410.052855][ T5451] FAULT_INJECTION: forcing a failure.
[  410.052855][ T5451] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.066164][ T5451] CPU: 1 PID: 5451 Comm: syz.2.1516 Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  410.076087][ T5451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  410.086161][ T5451] Call Trace:
[  410.089456][ T5451]  <TASK>
[  410.092403][ T5451]  __dump_stack+0x21/0x30
[  410.096757][ T5451]  dump_stack_lvl+0xee/0x150
[  410.101366][ T5451]  ? show_regs_print_info+0x20/0x20
[  410.106588][ T5451]  dump_stack+0x15/0x20
[  410.110769][ T5451]  should_fail+0x3c1/0x510
[  410.115204][ T5451]  should_fail_usercopy+0x1a/0x20
[  410.120244][ T5451]  _copy_from_user+0x20/0xd0
[  410.124857][ T5451]  strndup_user+0xb1/0x150
[  410.129290][ T5451]  __se_sys_mount+0x9c/0x380
[  410.133980][ T5451]  ? release_firmware_map_entry+0x190/0x190
[  410.139895][ T5451]  ? __x64_sys_mount+0xd0/0xd0
[  410.144686][ T5451]  ? __kasan_check_write+0x14/0x20
[  410.149828][ T5451]  __x64_sys_mount+0xbf/0xd0
[  410.154436][ T5451]  x64_sys_call+0x6bf/0x9a0
[  410.158957][ T5451]  do_syscall_64+0x4c/0xa0
[  410.163389][ T5451]  ? clear_bhb_loop+0x50/0xa0
[  410.168083][ T5451]  ? clear_bhb_loop+0x50/0xa0
[  410.172864][ T5451]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  410.178863][ T5451] RIP: 0033:0x7ff47d36e929
[  410.183387][ T5451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  410.203114][ T5451] RSP: 002b:00007ff47b995038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  410.211542][ T5451] RAX: ffffffffffffffda RBX: 00007ff47d596160 RCX: 00007ff47d36e929
[  410.219529][ T5451] RDX: 00002000000000c0 RSI: 0000200000000040 RDI: 0000200000000000
[  410.227510][ T5451] RBP: 00007ff47b995090 R08: 0000000000000000 R09: 0000000000000000
[  410.235485][ T5451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.243458][ T5451] R13: 0000000000000000 R14: 00007ff47d596160 R15: 00007ffd3d76b4e8
[  410.251442][ T5451]  </TASK>
[  410.334403][   T30] audit: type=1326 audit(1751779155.551:3477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5452 comm="syz.5.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  410.358277][  T422] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  410.368257][  T422] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  410.415381][   T30] audit: type=1326 audit(1751779155.551:3478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5452 comm="syz.5.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  410.446495][ T5456] IPv6: NLM_F_REPLACE set, but no existing node found!
[  410.448399][  T422] usb 2-1: config 0 descriptor??
[  410.457034][   T30] audit: type=1326 audit(1751779155.551:3479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5452 comm="syz.5.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  410.477840][  T422] usb 2-1: can't set config #0, error -71
[  410.489243][  T422] usb 2-1: USB disconnect, device number 18
[  410.496438][   T30] audit: type=1326 audit(1751779155.581:3480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5452 comm="syz.5.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  410.644493][   T30] audit: type=1326 audit(1751779155.581:3481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5452 comm="syz.5.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  410.839465][   T30] audit: type=1326 audit(1751779155.581:3482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5452 comm="syz.5.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  410.864128][   T30] audit: type=1326 audit(1751779155.591:3483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5452 comm="syz.5.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x7ffc0000
[  410.987851][   T58] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  411.258089][   T58] usb 4-1: Using ep0 maxpacket: 16
[  411.289918][ T5468] overlayfs: failed to resolve './file0': -2
[  411.537780][   T58] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  411.547222][   T58] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  412.157370][ T5488] loop5: detected capacity change from 0 to 4096
[  412.227555][   T58] usb 4-1: Product: syz
[  412.279126][ T5488] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  412.317120][   T58] usb 4-1: Manufacturer: syz
[  412.614600][   T58] usb 4-1: SerialNumber: syz
[  412.695180][ T5500] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  412.704270][   T58] usb 4-1: config 0 descriptor??
[  412.749653][   T58] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  412.758233][   T58] usb 4-1: Detected FT232H
[  413.220291][   T58] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  413.673415][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  413.673452][   T30] audit: type=1400 audit(1751779158.891:3498): avc:  denied  { ioctl } for  pid=5514 comm="syz.1.1539" path="/dev/binderfs/binder1" dev="binder" ino=11 ioctlcmd=0x6208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  413.678196][ T5515] xt_ecn: cannot match TCP bits for non-tcp packets
[  413.709629][   T58] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  413.914374][ T5460] futex_wake_op: syz.3.1523 tries to shift op by -1; fix this program
[  413.924166][  T422] usb 4-1: USB disconnect, device number 11
[  413.931441][  T422] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  413.941245][  T422] ftdi_sio 4-1:0.0: device disconnected
[  414.041727][ T5523] x_tables: duplicate underflow at hook 4
[  414.297051][   T30] audit: type=1400 audit(1751779159.511:3499): avc:  denied  { lock } for  pid=5524 comm="syz.0.1542" path="socket:[33110]" dev="sockfs" ino=33110 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  414.331587][   T30] audit: type=1400 audit(1751779159.541:3500): avc:  denied  { read } for  pid=5524 comm="syz.0.1542" name="usbmon7" dev="devtmpfs" ino=176 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  414.360207][   T30] audit: type=1400 audit(1751779159.541:3501): avc:  denied  { open } for  pid=5524 comm="syz.0.1542" path="/dev/usbmon7" dev="devtmpfs" ino=176 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  414.621811][   T30] audit: type=1326 audit(1751779159.841:3502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5536 comm="syz.3.1547" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x0
[  414.624509][ T5537] loop5: detected capacity change from 0 to 512
[  414.752162][ T5537] EXT4-fs (loop5): Ignoring removed nobh option
[  414.766197][ T5537] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  414.800425][ T5541] loop3: detected capacity change from 0 to 2048
[  414.813158][ T5537] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1546: invalid indirect mapped block 256 (level 2)
[  414.835829][ T5537] EXT4-fs (loop5): 2 truncates cleaned up
[  414.843134][ T5537] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,nojournal_checksum,dioread_nolock,bsdgroups,,errors=continue. Quota mode: writeback.
[  414.901485][ T5548] tipc: Enabled bearer <udp:syz2>, priority 10
[  415.184698][   T30] audit: type=1400 audit(1751779160.081:3503): avc:  denied  { getopt } for  pid=5542 comm="syz.1.1549" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  415.359725][ T5541] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  415.822321][ T5537] EXT4-fs error (device loop5): ext4_validate_block_bitmap:429: comm syz.5.1546: bg 0: block 5: invalid block bitmap
[  415.937935][ T5537] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 1 with error 28
[  415.969038][ T5537] EXT4-fs (loop5): This should not happen!! Data will be lost
[  415.969038][ T5537] 
[  415.978873][ T5537] EXT4-fs (loop5): Total free blocks count 0
[  415.984897][ T5537] EXT4-fs (loop5): Free/Dirty block details
[  415.990943][ T5537] EXT4-fs (loop5): free_blocks=0
[  415.995909][ T5537] EXT4-fs (loop5): dirty_blocks=2
[  416.001467][ T5537] EXT4-fs (loop5): Block reservation details
[  416.007489][ T5537] EXT4-fs (loop5): i_reserved_data_blocks=2
[  416.022121][  T433] tipc: Node number set to 2492212245
[  416.040962][ T1541] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  416.072071][ T1541] EXT4-fs (loop5): This should not happen!! Data will be lost
[  416.072071][ T1541] 
[  416.149508][ T5561] input: syz0 as /devices/virtual/input/input8
[  416.254770][   T30] audit: type=1400 audit(1751779161.471:3504): avc:  denied  { read write } for  pid=5565 comm="syz.3.1554" name="uhid" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  416.280017][  T433] hid-generic 0001:0597:0004.0007: item fetching failed at offset 0/1
[  416.289295][  T433] hid-generic: probe of 0001:0597:0004.0007 failed with error -22
[  416.307294][   T30] audit: type=1400 audit(1751779161.501:3505): avc:  denied  { open } for  pid=5565 comm="syz.3.1554" path="/dev/uhid" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  416.356336][ T5573] fuse: Bad value for 'fd'
[  416.399480][   T30] audit: type=1326 audit(1751779161.621:3506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5574 comm="syz.3.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  416.476880][   T30] audit: type=1326 audit(1751779161.621:3507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5574 comm="syz.3.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  417.338612][ T5581] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  417.354072][ T5581] SELinux: security_context_str_to_sid(system_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  419.212783][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  419.245488][   T30] audit: type=1326 audit(1751779164.421:3524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5574 comm="syz.3.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.271181][   T30] audit: type=1326 audit(1751779164.421:3525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5574 comm="syz.3.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.398772][   T30] audit: type=1326 audit(1751779164.621:3526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5593 comm="syz.5.1564" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f54a6c17929 code=0x0
[  419.514287][ T5600] loop5: detected capacity change from 0 to 2048
[  419.521680][ T5602] tipc: Trying to set illegal importance in message
[  419.549798][   T30] audit: type=1326 audit(1751779164.771:3527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5582 comm="syz.3.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.575698][ T5600] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  419.620680][   T30] audit: type=1326 audit(1751779164.771:3528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5582 comm="syz.3.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.650991][ T5613] fuse: Bad value for 'fd'
[  419.683744][   T30] audit: type=1326 audit(1751779164.771:3529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5582 comm="syz.3.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.738581][   T30] audit: type=1326 audit(1751779164.771:3530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5582 comm="syz.3.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.762456][   T30] audit: type=1326 audit(1751779164.771:3531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5582 comm="syz.3.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.786326][   T30] audit: type=1326 audit(1751779164.771:3532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5582 comm="syz.3.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  419.852488][   T30] audit: type=1326 audit(1751779164.771:3533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5582 comm="syz.3.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b1eb2d929 code=0x7ffc0000
[  420.521564][ T5626] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1573'.
[  420.547261][ T5630] loop5: detected capacity change from 0 to 256
[  420.680182][ T5630] bridge0: port 1(bridge_slave_0) entered disabled state
[  420.687564][ T5630] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.694853][ T5630] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.704832][ T5632] 9pnet: Insufficient options for proto=fd
[  420.740768][  T285] ------------[ cut here ]------------
[  420.746698][  T285] WARNING: CPU: 1 PID: 285 at fs/inode.c:335 drop_nlink+0xc5/0x110
[  420.754938][  T285] Modules linked in:
[  420.760365][  T285] CPU: 1 PID: 285 Comm: syz-executor Not tainted 5.15.185-syzkaller-00178-g5cf73bface18 #0
[  420.770897][  T285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  420.878868][  T285] RIP: 0010:drop_nlink+0xc5/0x110
[  420.886592][  T285] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 63 3b f2 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 1b c3 b3 ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c
[  420.909853][  T285] RSP: 0018:ffffc90000a27b28 EFLAGS: 00010293
[  420.916123][  T285] RAX: ffffffff81b4e4c5 RBX: ffff8881291153a0 RCX: ffff88811da82780
[  420.925571][  T285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  420.964439][  T285] RBP: ffffc90000a27b50 R08: 0000000000000004 R09: 0000000000000003
[  420.972650][  T285] R10: fffff52000144f54 R11: 1ffff92000144f54 R12: dffffc0000000000
[  420.980777][  T285] R13: 1ffff11025222a7d R14: ffff8881291153e8 R15: 0000000000000000
[  420.988859][  T285] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  420.998285][  T285] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  421.011986][  T285] CR2: 0000001b2d915ff8 CR3: 000000011b00a000 CR4: 00000000003506b0
[  421.020207][  T285] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  421.032588][  T285] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  421.040819][  T285] Call Trace:
[  421.044177][  T285]  <TASK>
[  421.047253][  T285]  shmem_rmdir+0x5b/0x90
[  421.051660][  T285]  vfs_rmdir+0x313/0x460
[  421.055989][  T285]  incfs_kill_sb+0x105/0x220
[  421.062047][  T285]  deactivate_locked_super+0xa0/0x100
[  421.067514][  T285]  deactivate_super+0xaf/0xe0
[  421.072589][  T285]  cleanup_mnt+0x446/0x500
[  421.077094][  T285]  __cleanup_mnt+0x19/0x20
[  421.081867][  T285]  task_work_run+0x127/0x190
[  421.086607][  T285]  do_exit+0xa76/0x27a0
[  421.091781][  T285]  ? put_task_struct+0x90/0x90
[  421.096735][  T285]  ? __fdget_pos+0x1f7/0x380
[  421.101683][  T285]  ? ksys_write+0x1da/0x240
[  421.106781][  T285]  ? __ia32_sys_read+0x90/0x90
[  421.112023][  T285]  do_group_exit+0x141/0x310
[  421.116763][  T285]  ? debug_smp_processor_id+0x17/0x20
[  421.122317][  T285]  __x64_sys_exit_group+0x3f/0x40
[  421.127370][  T285]  x64_sys_call+0x832/0x9a0
[  421.132057][  T285]  do_syscall_64+0x4c/0xa0
[  421.136636][  T285]  ? clear_bhb_loop+0x50/0xa0
[  421.141590][  T285]  ? clear_bhb_loop+0x50/0xa0
[  421.146360][  T285]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  421.160727][  T285] RIP: 0033:0x7ff47d36e929
[  421.196836][  T285] Code: Unable to access opcode bytes at RIP 0x7ff47d36e8ff.
[  421.204503][  T285] RSP: 002b:00007ffd3d768488 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  421.213371][  T285] RAX: ffffffffffffffda RBX: 00007ff47d3f0997 RCX: 00007ff47d36e929
[  421.235078][  T285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  421.243382][  T285] RBP: 0000000000000016 R08: 00007ffd3d766226 R09: 00007ffd3d769740
[  421.251631][  T285] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffd3d769740
[  421.322921][  T285] R13: 00007ff47d3f0925 R14: 000055556e9594a8 R15: 00007ffd3d76b900
[  421.413048][  T285]  </TASK>
[  421.416188][  T285] ---[ end trace 6929fa32e68e410e ]---
[  421.427915][  T285] ==================================================================
[  421.436049][  T285] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[  421.442307][  T285] Write of size 4 at addr 0000000000000170 by task syz-executor/285
[  421.450286][  T285] 
[  421.452609][  T285] CPU: 0 PID: 285 Comm: syz-executor Tainted: G        W         5.15.185-syzkaller-00178-g5cf73bface18 #0
[  421.463980][  T285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  421.474058][  T285] Call Trace:
[  421.477340][  T285]  <TASK>
[  421.480276][  T285]  __dump_stack+0x21/0x30
[  421.484610][  T285]  dump_stack_lvl+0xee/0x150
[  421.489204][  T285]  ? show_regs_print_info+0x20/0x20
[  421.494401][  T285]  ? _raw_spin_lock+0x8e/0xe0
[  421.499099][  T285]  ? _raw_spin_trylock_bh+0x130/0x130
[  421.504481][  T285]  ? ihold+0x20/0x60
[  421.508381][  T285]  kasan_report+0xe7/0x140
[  421.512812][  T285]  ? ihold+0x20/0x60
[  421.516800][  T285]  kasan_check_range+0x280/0x290
[  421.521759][  T285]  __kasan_check_write+0x14/0x20
[  421.526796][  T285]  ihold+0x20/0x60
[  421.530563][  T285]  vfs_rmdir+0x1f0/0x460
[  421.534829][  T285]  incfs_kill_sb+0x105/0x220
[  421.539433][  T285]  deactivate_locked_super+0xa0/0x100
[  421.544815][  T285]  deactivate_super+0xaf/0xe0
[  421.549498][  T285]  cleanup_mnt+0x446/0x500
[  421.553915][  T285]  __cleanup_mnt+0x19/0x20
[  421.558332][  T285]  task_work_run+0x127/0x190
[  421.562926][  T285]  do_exit+0xa76/0x27a0
[  421.567105][  T285]  ? put_task_struct+0x90/0x90
[  421.571889][  T285]  ? __fdget_pos+0x1f7/0x380
[  421.576488][  T285]  ? ksys_write+0x1da/0x240
[  421.580991][  T285]  ? __ia32_sys_read+0x90/0x90
[  421.585762][  T285]  do_group_exit+0x141/0x310
[  421.590361][  T285]  ? debug_smp_processor_id+0x17/0x20
[  421.595744][  T285]  __x64_sys_exit_group+0x3f/0x40
[  421.600796][  T285]  x64_sys_call+0x832/0x9a0
[  421.605327][  T285]  do_syscall_64+0x4c/0xa0
[  421.609831][  T285]  ? clear_bhb_loop+0x50/0xa0
[  421.614518][  T285]  ? clear_bhb_loop+0x50/0xa0
[  421.619202][  T285]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  421.625099][  T285] RIP: 0033:0x7ff47d36e929
[  421.629608][  T285] Code: Unable to access opcode bytes at RIP 0x7ff47d36e8ff.
[  421.636974][  T285] RSP: 002b:00007ffd3d768488 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  421.645477][  T285] RAX: ffffffffffffffda RBX: 00007ff47d3f0997 RCX: 00007ff47d36e929
[  421.653460][  T285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  421.661446][  T285] RBP: 0000000000000016 R08: 00007ffd3d766226 R09: 00007ffd3d769740
[  421.669430][  T285] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffd3d769740
[  421.677408][  T285] R13: 00007ff47d3f0925 R14: 000055556e9594a8 R15: 00007ffd3d76b900
[  421.685391][  T285]  </TASK>
[  421.688419][  T285] ==================================================================
[  421.696482][  T285] Disabling lock debugging due to kernel taint
[  421.710253][  T285] BUG: kernel NULL pointer dereference, address: 0000000000000170
[  421.718114][  T285] #PF: supervisor write access in kernel mode
[  421.724204][  T285] #PF: error_code(0x0002) - not-present page
[  421.730222][  T285] PGD 0 P4D 0 
[  421.733619][  T285] Oops: 0002 [#1] PREEMPT SMP KASAN
[  421.738834][  T285] CPU: 1 PID: 285 Comm: syz-executor Tainted: G    B   W         5.15.185-syzkaller-00178-g5cf73bface18 #0
[  421.750219][  T285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  421.760310][  T285] RIP: 0010:ihold+0x26/0x60
[  421.764845][  T285] Code: 00 00 00 00 55 48 89 e5 41 56 53 48 89 fb e8 31 bb b3 ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 50 33 f2 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 b1
[  421.784694][  T285] RSP: 0018:ffffc90000a27b68 EFLAGS: 00010246
[  421.790778][  T285] RAX: ffff88811da82700 RBX: 0000000000000000 RCX: ffff88811da82780
[  421.798757][  T285] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff
[  421.806730][  T285] RBP: ffffc90000a27b78 R08: 0000000000000004 R09: 0000000000000003
[  421.814720][  T285] R10: fffffbfff0e17a4c R11: 1ffffffff0e17a4c R12: 1ffff110252c09e2
[  421.822699][  T285] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  421.830671][  T285] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  421.839716][  T285] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  421.846311][  T285] CR2: 0000000000000170 CR3: 000000010fbed000 CR4: 00000000003506a0
[  421.854289][  T285] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  421.862264][  T285] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  421.870240][  T285] Call Trace:
[  421.873519][  T285]  <TASK>
[  421.876454][  T285]  vfs_rmdir+0x1f0/0x460
[  421.880705][  T285]  incfs_kill_sb+0x105/0x220
[  421.885299][  T285]  deactivate_locked_super+0xa0/0x100
[  421.890677][  T285]  deactivate_super+0xaf/0xe0
[  421.895363][  T285]  cleanup_mnt+0x446/0x500
[  421.899785][  T285]  __cleanup_mnt+0x19/0x20
[  421.904208][  T285]  task_work_run+0x127/0x190
[  421.908799][  T285]  do_exit+0xa76/0x27a0
[  421.912965][  T285]  ? put_task_struct+0x90/0x90
[  421.917730][  T285]  ? __fdget_pos+0x1f7/0x380
[  421.922327][  T285]  ? ksys_write+0x1da/0x240
[  421.926832][  T285]  ? __ia32_sys_read+0x90/0x90
[  421.931596][  T285]  do_group_exit+0x141/0x310
[  421.936274][  T285]  ? debug_smp_processor_id+0x17/0x20
[  421.941650][  T285]  __x64_sys_exit_group+0x3f/0x40
[  421.946677][  T285]  x64_sys_call+0x832/0x9a0
[  421.951188][  T285]  do_syscall_64+0x4c/0xa0
[  421.955608][  T285]  ? clear_bhb_loop+0x50/0xa0
[  421.960291][  T285]  ? clear_bhb_loop+0x50/0xa0
[  421.964988][  T285]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  421.970887][  T285] RIP: 0033:0x7ff47d36e929
[  421.975307][  T285] Code: Unable to access opcode bytes at RIP 0x7ff47d36e8ff.
[  421.982667][  T285] RSP: 002b:00007ffd3d768488 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  421.991088][  T285] RAX: ffffffffffffffda RBX: 00007ff47d3f0997 RCX: 00007ff47d36e929
[  421.999062][  T285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  422.007038][  T285] RBP: 0000000000000016 R08: 00007ffd3d766226 R09: 00007ffd3d769740
[  422.015012][  T285] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffd3d769740
[  422.022988][  T285] R13: 00007ff47d3f0925 R14: 000055556e9594a8 R15: 00007ffd3d76b900
[  422.030982][  T285]  </TASK>
[  422.034006][  T285] Modules linked in:
[  422.037933][  T285] CR2: 0000000000000170
[  422.042098][  T285] ---[ end trace 6929fa32e68e410f ]---
[  422.047560][  T285] RIP: 0010:ihold+0x26/0x60
[  422.052073][  T285] Code: 00 00 00 00 55 48 89 e5 41 56 53 48 89 fb e8 31 bb b3 ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 50 33 f2 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 b1
[  422.071692][  T285] RSP: 0018:ffffc90000a27b68 EFLAGS: 00010246
[  422.077761][  T285] RAX: ffff88811da82700 RBX: 0000000000000000 RCX: ffff88811da82780
[  422.085739][  T285] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff
[  422.093713][  T285] RBP: ffffc90000a27b78 R08: 0000000000000004 R09: 0000000000000003
[  422.101685][  T285] R10: fffffbfff0e17a4c R11: 1ffffffff0e17a4c R12: 1ffff110252c09e2
[  422.109664][  T285] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  422.117640][  T285] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  422.126575][  T285] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  422.133158][  T285] CR2: 0000000000000170 CR3: 000000010fbed000 CR4: 00000000003506a0
[  422.141132][  T285] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  422.149104][  T285] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  422.157083][  T285] Kernel panic - not syncing: Fatal exception
[  422.163358][  T285] Kernel Offset: disabled
[  422.167695][  T285] Rebooting in 86400 seconds..