last executing test programs:

51m9.55783353s ago: executing program 2 (id=4218):
syz_emit_ethernet(0x46, &(0x7f0000000100)={@local, @remote, @void, {@ipv4={0x800, @udp={{0xc, 0x4, 0x0, 0x0, 0xfffffffffffffe12, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp_addr={0x44, 0x1c, 0xa, 0x1, 0x8, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xe29}, {@multicast2, 0x8}, {@remote, 0xa}]}]}}, {0x0, 0x4e20, 0x8}}}}}, 0x0)

51m9.491258005s ago: executing program 2 (id=4219):
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f00000001c0)={0x3a, 'syz1', 0x3a, 'E', 0x3a, 0x7, 0x3a, 'privport', 0x3a, 'rfdno', 0x3a, './file0', 0x3a, [0x50, 0x46]}, 0x36)

51m9.476598827s ago: executing program 2 (id=4220):
r0 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x1, 0x0)

51m9.423528511s ago: executing program 2 (id=4221):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r2=>0x0}, 0x2058)
write$FUSE_LSEEK(r0, &(0x7f00000021c0)={0x18, 0x0, r2, {0x7}}, 0x18)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_IOCTL(r0, &(0x7f0000002140)={0x20, 0x0, r3, {0x0, 0x0, 0x80003ff, 0x4000}}, 0x20)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, 0x0)

51m9.344089758s ago: executing program 2 (id=4223):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x0, &(0x7f0000000100), 0x1, 0x57e, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
ioctl$FIBMAP(r1, 0x1, &(0x7f0000000000)=0x2)
renameat2(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file3\x00', 0x4)

51m9.251873795s ago: executing program 2 (id=4224):
socket$inet6(0xa, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000340)=ANY=[@ANYBLOB="f0000000100013070000000000000000fc020000000000000000000000000000fe8000000000000000000000000000100004000000000000000000202c000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe"], 0xf0}, 0x1, 0xe}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000600)=""/79, 0x0, 0x10000})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

51m9.251615075s ago: executing program 32 (id=4224):
socket$inet6(0xa, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000340)=ANY=[@ANYBLOB="f0000000100013070000000000000000fc020000000000000000000000000000fe8000000000000000000000000000100004000000000000000000202c000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe"], 0xf0}, 0x1, 0xe}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000600)=""/79, 0x0, 0x10000})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

11m39.076924937s ago: executing program 5 (id=10864):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r4}, 0x10)
syz_clone(0x82020080, 0x0, 0x0, 0x0, 0x0, 0x0)

11m37.312803601s ago: executing program 5 (id=10869):
mount$overlay(0x0, 0x0, 0x0, 0x8, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb77, &(0x7f0000000c40)="$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")
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x410, &(0x7f0000000280)=ANY=[], 0x1, 0x230, &(0x7f0000000640)="$eJzs3c9qE10UAPAzbdokH9+iO1EQRlzoqqjgviIVxIBQiaC7gl01q2STZNM+hq/gc+kDSFd1UUbizDRjOmmD9I+pv9+mp/fcMzN37mQmEHKTRe7bnc/RaiWxshVbcZzERqxE6TAAgNvkOMvie5arNDcWq16wGwDwV5nz/K86mVebePwDwFJ69+HjmxedzvZOmrYijg6H3WE3/5vnX73ubD9Jf9mYVh0Nh93V0/zTdPa9wyS/Fv8V+Wd5fXqaXo+I7no8fpjnJ7mXbzvp7/XN+DT3qH0iAQAAAAAAAAAAAAAAAAAAAADAcrsfaal2fZ/Nzdl8u8jn/1XWB5pZv6cR98r1AafLA2UH1zEoAAAAAAAAAAAAAAAAAAAAWDKD0Xh/t9fb60+DZkRUWxo1feYHSbHhhTpfRfD17vP3kwNYrGqlXZ9KZk7CbNAuhllJnWS5i3aaJD+K4qs8G+36yV0kiMaNTNwlBullbbBZTvPZVDuSc8qzbBLUvwrKZTHmlq9feG082vnTcR1PrtAvD/qDUWTndp7eI5rXdC8CAAAAAAAAAAAAAAAAAIB/XeVb32e0Vm/iiAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg+g1G4/JX/sf7u73eXn8wGu/vtoq2aUtdcBAR/1/QZ68/KPe1Fq2bGSQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC33s8AAAD//wmuGq0=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x84c00, 0x0, 0x0, 0x0, &(0x7f0000000000))

11m37.178101502s ago: executing program 5 (id=10872):
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x5437, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000040018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000000000850000008600000095000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r4}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/syz0\x00', 0x1ff)

11m35.899539985s ago: executing program 5 (id=10881):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f00000002c0)='./file1\x00', 0x543a40, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getresuid(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, 0x0, &(0x7f0000000340)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000740)=ANY=[@ANYBLOB='iocharset=macgreek,umask=00000000000000000000005,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1528, &(0x7f00000037c0)="$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")
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x1120450, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0xc}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00'}, 0x10)
open(&(0x7f0000000200)='./file0/file0\x00', 0x2000000, 0x0)

11m34.650067317s ago: executing program 5 (id=10884):
mount$overlay(0x0, 0x0, 0x0, 0x8, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb77, &(0x7f0000000c40)="$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")
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x410, &(0x7f0000000280)=ANY=[], 0x1, 0x230, &(0x7f0000000640)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x84c00, 0x0, 0x0, 0x0, &(0x7f0000000000))

11m34.466318662s ago: executing program 5 (id=10886):
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_emit_ethernet(0x2e, &(0x7f00000006c0)={@multicast, @remote, @void, {@ipv4={0x800, @igmp={{0x6, 0x4, 0x0, 0x26, 0x20, 0x67, 0x0, 0x9, 0x2, 0x0, @remote, @broadcast, {[@noop, @ssrr={0x89, 0x3, 0x38}]}}, {0x11, 0x6, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}}}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x0, 0x0})
symlink(0x0, &(0x7f0000000040)='./file0\x00')
lstat(&(0x7f0000000200)='./file0\x00', 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='net/sockstat\x00')
open_tree(r3, &(0x7f0000000340)='./file0/file0\x00', 0x14000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000240)={0xaa, 0x48})
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c02"], 0x80}}, 0x0)
syz_mount_image$msdos(&(0x7f0000000740), &(0x7f0000000080)='./file0\x00', 0x1000000, &(0x7f0000000880)=ANY=[@ANYBLOB="636f6465706167653d3835302c6e66732c747a3d55544300006f6465706167653d38362d303030303030303030303030303030303030303030362c646f74732c6e6f646f74732c646f74732c6e6f646f7473266e665708f074ca01b875ea732c7379735f696d6d757461626c652c6e6f636173652c6e6f646f74732c646973636172642c6e07006f74737daf000000000000646f74732c63686563843d72656c617865642c6e6f646f74732c6e6f646f74732c646f7494e9f0f365ee"], 0x0, 0x1f4, &(0x7f0000000b00)="$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")
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x4495)

11m34.190150334s ago: executing program 33 (id=10886):
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_emit_ethernet(0x2e, &(0x7f00000006c0)={@multicast, @remote, @void, {@ipv4={0x800, @igmp={{0x6, 0x4, 0x0, 0x26, 0x20, 0x67, 0x0, 0x9, 0x2, 0x0, @remote, @broadcast, {[@noop, @ssrr={0x89, 0x3, 0x38}]}}, {0x11, 0x6, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}}}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x0, 0x0})
symlink(0x0, &(0x7f0000000040)='./file0\x00')
lstat(&(0x7f0000000200)='./file0\x00', 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='net/sockstat\x00')
open_tree(r3, &(0x7f0000000340)='./file0/file0\x00', 0x14000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000240)={0xaa, 0x48})
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c02"], 0x80}}, 0x0)
syz_mount_image$msdos(&(0x7f0000000740), &(0x7f0000000080)='./file0\x00', 0x1000000, &(0x7f0000000880)=ANY=[@ANYBLOB="636f6465706167653d3835302c6e66732c747a3d55544300006f6465706167653d38362d303030303030303030303030303030303030303030362c646f74732c6e6f646f74732c646f74732c6e6f646f7473266e665708f074ca01b875ea732c7379735f696d6d757461626c652c6e6f636173652c6e6f646f74732c646973636172642c6e07006f74737daf000000000000646f74732c63686563843d72656c617865642c6e6f646f74732c6e6f646f74732c646f7494e9f0f365ee"], 0x0, 0x1f4, &(0x7f0000000b00)="$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")
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x4495)

5m16.559696629s ago: executing program 6 (id=12106):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0x1008801, &(0x7f0000005ac0)=ANY=[], 0x1, 0x1ea, &(0x7f00000004c0)="$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")
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fadvise64(r6, 0x0, 0x0, 0x3)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x1, @remote}, 0x10)

5m7.871240542s ago: executing program 6 (id=12117):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000180)="440f20c03505000000440f22c0f26df20f38f17a64b805000000b9e10d00000f01d9d8dd0f01728eb8010000000f01d94c0fc71d000000003ef245dbed410fc7f7", 0x41}], 0x1, 0x72, 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x9, 0x6, 0x0, 0x0, 0x9, 0x0, 0xff, 0xff, 0x0, '\x00', 0x6e})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m7.190338427s ago: executing program 6 (id=12119):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x800, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
read$FUSE(r3, &(0x7f0000006180)={0x2020}, 0x2020)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

5m5.468012797s ago: executing program 6 (id=12120):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000740)=ANY=[@ANYBLOB='iocharset=macgreek,umask=00000000000000000000005,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1528, &(0x7f00000037c0)="$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")
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0xc}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0}, &(0x7f0000000000), &(0x7f0000000200)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000200)='./file0/file0\x00', 0x2000000, 0x0)

5m5.123718695s ago: executing program 6 (id=12132):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00"], 0x0, 0xffffffc0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2e2c43, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
close(r0)
pipe2$9p(&(0x7f0000000240), 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x6, @mcast2, 0x6}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r5}, 0x18)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f00000007c0)='./mnt\x00', 0x840, &(0x7f0000000080)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}]}, 0x1, 0x241, &(0x7f0000000540)="$eJzs3U9oFFccB/DfzO42TbKUtL0UCm2hlNIGQnor9JJeWgiUEEoptIUUES9KIsQEb4knLx70rJKTlyDejB4ll+BFETxFzSFeBA0eDB70sDI7iUSz/oGJO+J8PjC7M7vvze8Ns983exkmgMoaiIiRiKhFxGBENCIi2dngm3wZ2Npc6F2ZiGi1/nyYtNvl27ntfv0RMR8RP0fEcprEwXrE7NK/649Xf//+xEzju3NL//R29SC3bKyv/bF5duz4xdGfZq/fvD+WxEg0XziuvZd0+KyeRHz2Loq9J5J62SPgbYwfvXAry/3nEfFtO/+NSCM/eSenP1puxI9nXtX31IMbX3ZzrMDea7Ua2TVwvgVUThoRzUjSoYjI19N0aCj/D3+71pcempo+MnhgamZyf9kzFbBXmhFrv13uudT/Uv7v1fL8Ax+uLP9/jS/eydY3a2WPBuimLP+D/8/9EPIPlSP/UF3yD9Ul/1Bdr8t/WtKYgO5w/Yfqkn+oLvmH6pJ/qC75h+ramX8AoFpaPWXfgQyUpez5BwAAAAAAAAAAAAAAAAAA2G2hd2Vie+lWzaunIzZ+jYh6p/q1recQfNx+7XuUZM2eS/Juhfz3dcEdFHS+5LuvP7lbbv1rX5Vbf24yYv5YRAzX67t/f0nh52B8+obvG/sKFijol7/Lrf90sdz6o6sRV7L5Z7jT/JPGF+33zvNPMzt/BesfflJwBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTNswAAAP//ceptKw==")
openat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x501000, 0x1be)
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0xa, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_mount_image$ext4(0x0, &(0x7f0000000580)='./file0\x00', 0x3956400, 0x0, 0x0, 0x0, 0x0)
open(&(0x7f00000002c0)='./file0/file0\x00', 0x141840, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

5m3.382838686s ago: executing program 6 (id=12135):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000000500000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
close(r2)

5m2.513414146s ago: executing program 34 (id=12135):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000000500000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
close(r2)

3m16.044873993s ago: executing program 7 (id=12362):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
wait4(0x0, 0x0, 0x8, 0x0)

3m13.053590025s ago: executing program 7 (id=12367):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
clock_getres(0x7ffffffff000, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
fcntl$getown(0xffffffffffffffff, 0x9)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, 0x0, 0x0)
connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r6, 0x0, 0x0, 0x20000805, 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r7}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@gettaction={0x28, 0x5a, 0x1, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x80000000}]}, 0x28}}, 0x0)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)

3m8.830754167s ago: executing program 7 (id=12377):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000240), 0x0)
lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'user.', '/dev/net/tun\x00'})

3m8.463643926s ago: executing program 7 (id=12381):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000740)=ANY=[@ANYBLOB='iocharset=macgreek,umask=00000000000000000000005,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1528, &(0x7f00000037c0)="$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")
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0xc}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0}, &(0x7f0000000000), &(0x7f0000000200)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000200)='./file0/file0\x00', 0x2000000, 0x0)

3m8.343390856s ago: executing program 7 (id=12384):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
r3 = eventfd2(0x0, 0x800)
io_setup(0x6, &(0x7f0000000140)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f00000000c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xfffd, r2, 0x0, 0x0, 0x0, 0x0, 0x3, r3}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
shutdown(r2, 0x0)

3m7.05114641s ago: executing program 7 (id=12387):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c00)={'team_slave_1\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000740)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400)={[{@sysvgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$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")
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/timer_list\x00', 0x0, 0x0)
preadv(r7, &(0x7f0000001500)=[{&(0x7f00000002c0)=""/4084, 0xff4}], 0x1, 0xf73, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002400)=@delchain={0x24, 0x66, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
syz_mount_image$ext4(&(0x7f0000000240)='ext2\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000080)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
symlinkat(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffffff, &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
open(0x0, 0x107502, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
utimensat(0xffffffffffffffff, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)

3m6.965093257s ago: executing program 35 (id=12387):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c00)={'team_slave_1\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000740)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400)={[{@sysvgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$eJzs3T1oLFUYBuB3Zne95t5FrtoI4g+IiAbCtRNsYqMQkBBEBBUiIjZKIsQEu8TKxkJrlVQ2QeyMlpIm2CiCVdQUsRE0WBgstFiZnURisuLPxh1xngdmZ2b3nPnOMPOe3WbYAK11Nclskk6S6SS9JMXpBnfWy9Xj3c2p3cVkMHjsh2LYrt6vnfS7kmQjyQNJdsoiL3STte2nDn7ae+Se11d7d7+7/eTURE/y2OHB/qNH78y/9sHc/WufffHdfJHZ9H93XhevGPFet0hu+jeK/UcU3aZHwF+x8Mr7X1a5vznJXcP891KmvnhvrFy308t9b/9R3ze///zWSY4VuHiDQa/6DtwYAK1TJumnKGeS1NtlOTNT/4b/qnO5fHF55eXp55dXl55reqYCLko/2X/4o0sfXjmT/287df6B/68q/48vbH1dbR91mh4NMBG31asq/9PPrN8b+YfWkX9oL/mH9pJ/aC/5h/aSf2gv+Yf2kn9oL/mH9pJ/aK/T+QcA2mVwqeknkIGmND3/AAAAAAAAAAAAAAAAAAAA521O7S6eLJOq+clbyeFDSbqj6neG/0ecXD98vfxjUTX7TVF3G8vTd4x5gDG91/DT1zd802z9T29vtv76UrLxapJr3e75+684vv/+uRv/5PPes2MW+JuKM/sPPjHZ+mf9stVs/bm95ONq/rk2av4pc8twPXr+6VfXb8z6L/085gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYmF8DAAD//xFQbUc=")
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/timer_list\x00', 0x0, 0x0)
preadv(r7, &(0x7f0000001500)=[{&(0x7f00000002c0)=""/4084, 0xff4}], 0x1, 0xf73, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002400)=@delchain={0x24, 0x66, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
syz_mount_image$ext4(&(0x7f0000000240)='ext2\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000080)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}]}, 0x1, 0x241, &(0x7f0000000540)="$eJzs3U9oFFccB/DfzO42TbKUtL0UCm2hlNIGQnor9JJeWgiUEEoptIUUES9KIsQEb4knLx70rJKTlyDejB4ll+BFETxFzSFeBA0eDB70sDI7iUSz/oGJO+J8PjC7M7vvze8Ns983exkmgMoaiIiRiKhFxGBENCIi2dngm3wZ2Npc6F2ZiGi1/nyYtNvl27ntfv0RMR8RP0fEcprEwXrE7NK/649Xf//+xEzju3NL//R29SC3bKyv/bF5duz4xdGfZq/fvD+WxEg0XziuvZd0+KyeRHz2Loq9J5J62SPgbYwfvXAry/3nEfFtO/+NSCM/eSenP1puxI9nXtX31IMbX3ZzrMDea7Ua2TVwvgVUThoRzUjSoYjI19N0aCj/D3+71pcempo+MnhgamZyf9kzFbBXmhFrv13uudT/Uv7v1fL8Ax+uLP9/jS/eydY3a2WPBuimLP+D/8/9EPIPlSP/UF3yD9Ul/1Bdr8t/WtKYgO5w/Yfqkn+oLvmH6pJ/qC75h+ramX8AoFpaPWXfgQyUpez5BwAAAAAAAAAAAAAAAAAA2G2hd2Vie+lWzaunIzZ+jYh6p/q1recQfNx+7XuUZM2eS/Juhfz3dcEdFHS+5LuvP7lbbv1rX5Vbf24yYv5YRAzX67t/f0nh52B8+obvG/sKFijol7/Lrf90sdz6o6sRV7L5Z7jT/JPGF+33zvNPMzt/BesfflJwBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTNswAAAP//ceptKw==")
symlinkat(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffffff, &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
open(0x0, 0x107502, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
utimensat(0xffffffffffffffff, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)

2m7.159667918s ago: executing program 8 (id=12547):
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
syz_open_pts(0xffffffffffffffff, 0x121500)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x1a, 0x8, 0x40, 0x42, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20)
mkdir(0x0, 0x0)

2m7.12613584s ago: executing program 8 (id=12548):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000080000000100010009"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r4}, 0x10)
syz_clone(0x82020080, 0x0, 0x0, 0x0, 0x0, 0x0)

2m5.676808008s ago: executing program 8 (id=12550):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lstat(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000007c0)=ANY=[], 0x119)

2m4.483864375s ago: executing program 8 (id=12556):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000740)=ANY=[@ANYBLOB='iocharset=macgreek,umask=00000000000000000000005,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1528, &(0x7f00000037c0)="$eJzs3AuYT9X6OPD3XWvtMSS+TXIZ1lrv5ptclkmSXJLkkiRJkuSWkDTJkYTEEJI0JCG5DEkMIblMTBr3+/2SkCRNkoTklqz/M+FxOnX+p/M7/XKe37yf59mP9X73ftd+9/f9XvbeZubbrkNrNaldvRERwX8EL/yTBACxADAQAPICQAAA5ePKx2Wtzykx6T/bCftzPZh6pStgVxL3P3vj/mdv3P/sjfufvXH/szfuf/bG/c/euP+MZWebphW6hpfsu/D9/+yMv///D8ksM/bLNWWu6wYQ80dTuP/ZG/f//6zgj2zE/c/euP/ZVeyVLoD9F+D3f3aQ45+u4f5nb9x/xrKzK33/+UovEPkvew6O5LzQmL/q+BljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMsb/AaX+ZAoBL4ytdF2OMMcYYY4wxxv48PseVroAxxhhjjDHGGGP/+xAESFAQQAzkgFjICblAAMDVkAfyQgSugTi4FvLBdZAfCkBBKATxUBiKgAYDFghCKArFIArXQ3G4AUpASSgFpcFBGUiAG6Es3ATl4GYoD7dABbgVKkIlqAxV4DaoCrdDNbgDqsOdUANqQi2oDXdBHbgb6sI9UA/uhfpwHzSA+6EhPACN4EFoDA9BE3gYmsIj0AyaQwtoCa3+R/nPQ094AXpBb0iCPtAXXoR+0B8GwEswEF6GQfAKDIZXIRmGwFB4DYbB6zAc3oARMBJGwZswGt6CMTAWxsF4SIEJMBHehknwDkyGd2EKTIVUmAbT4T2YATNhFrwPs+EDmANzYR7MhzT4EBbAQkiHj2ARfAwZsBiWwFJYBsthBayEVbAa1sBaWAfrYQNshE2wGbbAVtgG22EHfAI74VPYBbthD3wGe+HzfzP/1D/kd0NAQIECFSqMwRiMxVjMhbkwN+bGPJgHIxjBOIzDfJgP82N+LIgFMR7jsQgWQYMGCQmLYlGMYhSLY3EsgSWwFJZChw4TMAHL4k1YDstheSyPFbACVsRKWAmrYBWsilWxGlbD6lgda2ANrIW18C68C/tgXayL9bAe1sf6l25PYSNshI2xMTbBJtgUm2IzbIYtsAW2wlbYGltjG2yD7bAdtsf22AE7YCImYkfsiJ2wE3bGztgFu2BX7IrdsDt2z3w+B+AL+AL2xhqiD/bFvtgPk3MMwJfwJXwZB+Er+Aq+isk4BIfia/gavo7D8SSOwJE4CkdhVfEWjsGxSGI8pmAKTsSJOAknYVah7+JUTMVpOB2n4wyciTPxfZyNH+AHOBfn4nxMwzRcgAsxHdNxEZ7CDFyMS3ApLsPluAxX4ipciWtwLa7B9bgeN+JG3IybcStuxe24HT9BBYCf4m7cjcm4F/fiPtyH+3E/HsADmImZeBAP4iE8hIfxMB7BI3gUj+FxPIYn8ASexFN4Gk/jWTyL5/DZ+K8bf1JydTKILEooESNiRKyIFblELpFb5BZ5RB4RERERJ+JEPpFP5Bf5RUFRUMSLeFFEFBFGGEEijAEAERVRUVwUFyVECVFKlBJOOJEgEkRZUVaUE+VEeXGLqCBuFRVFJdHWVRFVRFXRzlUTd4jqorqoIWqKWqK2qC3qiDqirqgr6ol6or6oLxqI+0VD0QcH4IMiqzNNxBBsKoZiM9FcyIufYK3FcGwj2op24nExEkdgB9HaJYqnREcxBjuJv4mx+IzoIsZjV/Gc6Ca6ix7iedFTtHG9RG8xGfuIvmIq9hP9xQDxkpiBNcX7ODtnLfGqSBZDxFDxmpiPr4vh4g0xQowUo8SbYrR4S4wRY8U4MV6kiAlionhbTBLviMniXTFFTBWpYpqYLt4TM8RMMUu8L2aLD8QcMVfME/NFmvhQLBALRbr4SCwSH4sMsVgsEUvFMrFcrBArxSqxWqwRa8U6sV5sEBvFJrFZbBFbxTaxXewQn4id4lOxS+wWe8RnYq/4XOwTX4j94ktxQHwlMsXX4qD4RhwS34rD4jtxRHwvjopj4rj4QZwQP4qT4pQ4Lc6Is+IncU78LM4LL0CiFFJKJQMZI3PIWJlT5pJXydwyuPjsXiPj5LUyn7xO5pcFZEFZSMbLwrKI1NJIK0mGsqgsJqPyellc3iBLyJKylCwtnSwjE+SNsqy8SZaTN8vy8hZZQd4qK8pKsrKsIm+TVeXtEiIX9lFD1pS1ZG15l0yCu2VdeY+sJ++V9eV9soG8XzaUD8hG8kHZWD4km8iHZVP5iGwmm8sWsqVsJR+VreVjso1sK9vJx2V7+YTsIJ+UifIp2VH6iy+RZ2QX+azsKp+T3WR32UP+LM9LL3vJ3hL6gOwrX5T9ZH85IBYA5MtykHxFDpavymQ5RA6Vr8lh8nU5XL4hR8iRcpR8U46Wb8kxcqwcJ8fLFDlBTpRvy0nyHTlZviunyKkyVU6TA+TAX2aaJeW/zH/7d/IH/7L3jXKT3Cy3yK1ym9wud8hP5E65U+6Su+QeuUfulXvlPrlP7pf75QF5QGbKTHlQHpSH5CF5WB6WR+QReVQek2fkD/KE/FGelKfkKXlGnpVn5bmLzwEoVEJJpVSgYlQOFatyqlzqKpVbXa3yqLwqoq5RcepalU9dp/KrAqqgKqTiVWFVRGlllFWkQlVUFVNRdT1efMGoUqq0cqqMSlA3/jv5qri6QZVQJX+Vf6m+pH9SXyvVSrVWrVUb1Ua1U+1Ue9VedVAdVKJKVB1VR9VJdVKdVWfVRXVRXVVX1U11Uz1UD9VT9VS9VC+VpJJUX/Wi6qf6qwHqJTVQvawGqUFqsBqsklWyGqqGqmFqmBquhqsRaoQapUap0Wq0GqPGqHFqnEpRKWqimqgmqUlqspqspqgpKlWlqulqupqhZqhZapaarWarOWqOmqfmqTSVphaoBSpdpatFapHKUIvVYrVULVXL1XK1Uq1Uq9VqtVatVevVepWhNqlNaovaorapbWqH2qF2qp1ql9ql9qg9aq/aq/apfWq/2q8OqAMqU2Wqg+qgOqQOqcPqsDqijqij6qg6ro6rE+qEOqlOqtPqtDqrzqpz6pw6r85nnfYFIhCBClQQE8QEsUFskCvIFeQOcgd5gjxBJIgEcUFckC+4LsgfFAgKBoWC+KBwUCTQgQlsIC42PRpcHxQPbghKBCWDUkHpwAVlgoTgxqBscFNQLrg5KB/cElQIbg0qBpWCykGV4LaganB7UC24I6ge3BnUCGoGtYLawV1BneDuoG5wT1AvuDeoH9wXNAjuDxoGDwSNggeDxsFDQZPg4aBp8EjQLGgetAhaBq3+1Pm9P1ngMddL99ZJuo/uq1/U/XR/PUC/pAfql/Ug/YoerF/VyXqIHqpf08P063q4fkOP0CP1KP2mHq3f0mP0WD1Oj9cpeoKeqN/Wk/Q7erJ+V0/RU3Wqnqan6/f0DD1Tz9Lv69n6Az1Hz9Xz9Hydpj/UC/RCna4/0ov0xzpDL9ZL9FK9TC/XK/RKvUqv1mv0Wr1Or9cb9Ea9SW/WW/RWvU1v1zv0J3qn/lTv0rv1Hv2Z3qs/1/v0F3q//lIf0F/pTP21Pqi/0Yf0t/qw/k4f0d/ro/qYPq5/0Cf0j/qkPqVP6zP6rP5Jn9M/6/PaZ53cZ329G2WUiTExJtbEmlwml8ltcps8Jo+JmIiJM3Emn8ln8pv8pqApaOJNvCliipgsZMgUNUVN1ERNcVPclDAlTClTyjjjTIJJMGVNWVPOlDPlTXlTwVQwFU1FU9lUNreZ28zt5nZzh7nD3GnuNDVNTVPb1DZ1TB1T19Q19Uw9U9/UNw1MA9PQNDSNTCPT2DQ2TUwT09Q0Nc1MM9PCtDCtTCvT2rQ2bUwb0860M+1Ne9PBdDCJJtF0NB1NJ9PJdDadTRfTxXQ1XU030830MD1MT9PT9DK9TJJJMn1NX9PP9DMDzAAz0Aw0g8wgM9gMNskm2Qw1Q80wM8wMN8PNCDPSjMo6UTVvmTFmrBlnxpsUk2ImmolmkplkJpvJZoqZYlJNqpluppsZZoaZZWaZ2Wa2mWPmmHlmnkkzaWaBWWDSTbpZZBaZDJNhlpglZplZZlaYFWaVWWXWmDVmHawzG8wGs8lsMlvMFrPNbDM7zA6z0+w0u8wus8fsMXvNXrPP7DP7zX5zwBwwmSbTHDQHzSFzyBw2h80Rc8QcNUfNcXPcnDAnzElz0pw2p81ZU+Di96U3sTanzWWvsrnt1TaPzWv/MS5oC9l4W9gWsdrmtwV+FRtrbQlb0paypa2zZWyCvfE3cUVbyVa2Vexttqq93Vb7TVzH3m3r2ntsPXuvrW3v+lVc395nG9iHbUNEANvcNrYtbRP7sG1qH7HNbHPbwra07e0TtoN90ibap2xH+/Rv4gV2oV1lV9s1dq3dZXfb0/aMPWS/tWftT7aX7W0H2pftIPuKHWxftcl2yG/iUfZNO9q+ZcfYsXacHf+beIqdalPtNDvdvmdn2Jm/idPsh3a2Tbdz7Fw7z87/Jc6qKd1+ZBfZj22GDWCJXWqX2eV2hV15qVaf1663G+xGu9N+arfYrXab3W53XDoRtrvtHvuZ3Ws/twftN3a//dIesIdtpv36lzjr+A7b7+wR+709ao/Z4/YHe8L+qC5lZx37D/Zne956C4QEJElRQDGUg2IpJ+Wiqyg3XU15KC9F6BqKo2spH11H+akAFaRCFE+FqQhpMmSJKKSiVIyidD1dKq8UlSZHZSiBbqSydBOVo5upPN1CFehWqkiVqDJVoduoKt1O1egOqk53Ug2qSbWoNt1Fdehuqkv3UD26l+rTfdSA7qeG9AA1ogepMT1ETehhakqPUDNqTi2oJbWiR6k1PUZtqC21o8epPT1BHehJSqSnqCM9TZ3ob9SZnqEu9Cx1peeoG3WnHvQ89aQXqBf1piTqQ33pRepH/WkAvUQD6WUaRK/QYHqVkmkIDaXXaBi9TsPpDRpBI2kUvUmj6S0aQ2NpHI2nFJpAE+ltmkTv0GR6l6bQVEqlaTSd3qMZNJNm0fs0mz6gOTSX5tF8SqMPaQEtpHT6iBbRx5RBi2kJLaVltJxW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nXbQJ7STPqVdtJv20Ge0lz6nffQF7acv6QB9RZn0NR2kb+gQfUuH6Tvfm76no3SMjtMPdIJ+pJN0ik7TGTpLP9E5+pnOkycIMRShDFUYhDFhjjA2zBnmCq8Kc4dXh3nCvGEkvCaMC68N84XXhfnDAmHBsFAYHxYOi4Q6NKENKQzDomGxMBpeHxYPbwhLhCXDUmHp0IVlwoTwxrBseFNYLrw5LB/eElYIbw0rhpXCh++tEt4WVg1vD6uFd4TVwzvDGmHNsFZYO7wrrBPeHdYN7wnrhfeG5cL7wgbh/WHD8IGwUfhg2Dh8KGwSPhw2DR8Jm4XNwxZhy7BV+GjYOnwsbBO2DduFj4ftwyfCDuGTYWL4VNgxfPqX9fct/Ofrk8I+Yd/wxfDF0Pt75Lzo/Gha9MPogujCaHr0o+ii6MfRjOji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iboxqj3tXOAQyecdMoFLsblcLEup8vlrnK53dUuj8vrIu4aF+eudfncdS6/K+AKukIu3hV2RZx2xllHLnRFXTEXdde74u4GV8KVdKVcaedcGZfgWrpWrpVr7R5zbVxb18497h53T7gn3JPuSfeU6+iedp3c31xn94zr4p51z7rnXDfX3fVwz7uebkKeC+/JJNfX9XX9XD83wA1wA91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfFTXGpLtVNd9PdDDfDVZ15YS9z3Bw3z81zaS7NLXBZ54zpbpFb5DJchlvilrhlbplb4Va4VW6VW+PWuHVundvgNrhNbpPb4ra4bW6b2+F2uJ1up9vl816Y1O11+9w+t9/tdwfcVy7Tfe0Oum/cIfetO+y+c0fc9+6oO+aOux/cCfejO+lOudPujDvrfnLn3M/uvPMuJTIhMjHydmRS5J3I5Mi7kSmRqZHUyLTI9Mh7kRmRmZFZkfcjsyMfROZE5kbmReZH0iIfRhZEFkbSIx9FFkU+jmREFkeWRJZGlkWWR7wvvCX0RX0xH/XX++L+Bl/Cl/SlfGnvfBmf4G/0Zf1Nvpy/2Zf3t/gK/lZf0Vfylf0jvplv7lv4lr6Vf9S39o/5Nr6tb+cf9+39E76Df9In+qd8R/+07+T/5jv7Z3wX/6zv6p/z3Xx338M/73v6F3wv39sn+T6+r3/R9/P9/QD/kh/oX/aD/Ct+sH/VJ/shfqh/zQ/zr/vh/g0/wo/0o2Le9KMvXSLDeJ/iJ/iJ/m0/yb/jJ/t3/RQ/1af6aX66f8/P8DP9LP++n+0/8HP8XD/Pz/dp/kO/wC/06f4jv8h/7DP84ks3lf0Kv9Kv8qv9Gr/Wr/Pr/Qa/0W/ym/0Wv9Vv89v9Dv+J3+k/9bv8br/Hf+b3+s/9Pv+F3++/9Af8Vz7Tf+0P+m/8If+tP+y/80f89/6oP+aP+x/8Cf+jP+lP+dP+jD/rf/Ln/M/+PP/OGmOMMcbYHzLh8lD8es2F2/l9fidH/N3GfQHg6q2FMv9+fdYZ5br8F8b9RXz7CAA81bvrg5eWGjWSkpIubpshISg2F+DS/wRliYHL8WJoB09AIrSFsr9bf3/R/Sz9i/mjtwDk+rucWLgcX57/CwBM+p35H3181IIK4em4/8/8cwFKFLuckxMux4uh3S/3V9pCuX9Sf4HW/6L+nF+mALT5u5zccDm+XH8CPAZPQ+KvtmSMMcYYY4wxxi7oLyp3vnT9eeknPn/v+jxeXc7JAZfjf3V9zhhjjDHGGGOMsSvvme49nnw0MbFt539/UO1/lPWHB03hf2tmHvzuwHuAS48oAPgPJwTIGsi/8ig2/yX7Sr741vnHVcvO+AD+O1r5Zwyu8AcTY4wxxhhj7E93+aT/14+rK1UQY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDGWDf0Vf07sSh8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9vwAAAP//kfb+pw==")
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0xc}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0}, &(0x7f0000000000), &(0x7f0000000200)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000200)='./file0/file0\x00', 0x2000000, 0x0)

2m3.310348979s ago: executing program 8 (id=12562):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
clock_gettime(0xfffffff5, 0x0)
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600), 0x1, 0x555, &(0x7f0000000640)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r4 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
fallocate(r4, 0x0, 0x0, 0xfffb)
pwrite64(0xffffffffffffffff, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

2m2.875999534s ago: executing program 8 (id=12563):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000340)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}, {@nomblk_io_submit}, {@nomblk_io_submit}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
quotactl$Q_GETQUOTA(0xffffffff80000700, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)

2m1.316669051s ago: executing program 36 (id=12563):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000340)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}, {@nomblk_io_submit}, {@nomblk_io_submit}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
quotactl$Q_GETQUOTA(0xffffffff80000700, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)

11.942072743s ago: executing program 4 (id=12993):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lstat(0x0, 0x0)
r4 = syz_open_pts(0xffffffffffffffff, 0x141601)
ioprio_set$pid(0x2, 0x0, 0x4007)
ioctl$TIOCGPTLCK(r4, 0x80045439, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x20000000)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000980)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0xffff, 0xfff2}, {}, {0xa, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x1c, 0x2, [@TCA_BPF_ACT={0x4}, @TCA_BPF_FLAGS={0x8, 0x8, 0xf2ff}, @TCA_BPF_OPS={{0x6}, {0x4}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8848}, 0x2000c944)

11.103677071s ago: executing program 4 (id=12996):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2169802, 0x0, 0x0, 0x0, &(0x7f00000003c0))
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=<r5=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',privport,access=', @ANYRESDEC=r5])
lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'user.', '/dev/net/tun\x00'})

10.851757442s ago: executing program 4 (id=12997):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r3}, 0x10)
syz_clone(0x82020080, 0x0, 0x0, 0x0, 0x0, 0x0)

10.220315833s ago: executing program 9 (id=13007):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2169802, 0x0, 0x0, 0x0, &(0x7f00000003c0))
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=<r5=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',privport,access=', @ANYRESDEC=r5])
lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'user.', '/dev/net/tun\x00'})

10.161750748s ago: executing program 9 (id=13009):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)}, 0xffffffff}], 0x1, 0x40000001, 0x0)

9.234991953s ago: executing program 0 (id=13010):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lstat(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000007c0)=ANY=[], 0x119)

9.234301543s ago: executing program 4 (id=13011):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00"], 0x0, 0xffffffc0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2e2c43, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
close(r0)
pipe2$9p(&(0x7f0000000240), 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x6, @mcast2, 0x6}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f00000007c0)='./mnt\x00', 0x840, &(0x7f0000000080)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x501000, 0x1be)
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)

8.372955792s ago: executing program 1 (id=13013):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0a000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
open$dir(&(0x7f0000000140)='./file0\x00', 0x500, 0x40)

8.247338483s ago: executing program 1 (id=13015):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
clock_gettime(0xfffffff5, 0x0)
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600), 0x1, 0x555, &(0x7f0000000640)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x187802, 0x0)
pwrite64(r4, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

7.16400123s ago: executing program 9 (id=13019):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc044)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
statx(r3, &(0x7f00000001c0)='./cgroup/../file0\x00', 0x0, 0x8, &(0x7f0000000340))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

6.631831793s ago: executing program 1 (id=13021):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000180)="440f20c03505000000440f22c0f26df20f38f17a64b805000000b9e10d00000f01d9d8dd0f01728eb8010000000f01d94c0fc71d000000003ef245dbed410fc7f7", 0x41}], 0x1, 0x72, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.308299899s ago: executing program 1 (id=13022):
symlink(0x0, 0x0)
pipe2(0x0, 0x4100)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x1018e58, &(0x7f0000000000), 0x1, 0x61f, &(0x7f0000001680)="$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")

6.230706856s ago: executing program 9 (id=13023):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0a000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
write$FUSE_INIT(r4, &(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x4, 0x800000, 0x4, 0x400, 0x5, 0x1, 0x0, 0x0, 0x1, 0x74}}, 0x50)
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
r5 = open$dir(&(0x7f0000000140)='./file0\x00', 0x500, 0x40)
getdents64(r5, 0x0, 0x0)

6.18505281s ago: executing program 3 (id=13024):
request_key(&(0x7f0000001000)='dns_resolver\x00', &(0x7f0000001040)={'syz', 0x3}, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x240000, &(0x7f0000000840)={[{@nombcache}, {@grpid}, {@journal_path={'journal_path', 0x3d, '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/'}}, {@data_journal}, {@norecovery}, {@commit={'commit', 0x3d, 0x5}}, {@nodioread_nolock}, {@data_writeback}, {@jqfmt_vfsv0}, {@nomblk_io_submit}, {@user_xattr}], [{@mask={'mask', 0x3d, '^MAY_READ'}}, {@obj_type={'obj_type', 0x3d, 'PQ]\xa7\xfaP\x1f\x8e\xce9\xe7\xeb\xcc\xd6\xf8\xe1\xa9\xe9\xb7\x9e\x92\x1atob\xdb\x9b\x06*6f\xef\xa4:/\x16\xb8\x8b\xa1\xc3\xe6zvt\xf4Rd\xbe\x9dy\xa66\x8d\x85\xb1\a\xben%\x05f\xe2\xc6\xef\x99\xbb\xcd\xe0\xdf\xbe\x879i\x902\x82\xbf\x14\t\xee\x02\x85\xaf\x1f\x8e\xaa\xd4\xef~N\xd4\xf0\xd6\x0fG`\x9d\x1f]\xe4\bY\xfb0F[\xf1\x12u\x1a\x80l\xea9\xd6f\xe9\x10n\x94\xa7\xdb\x86\x81\xce\xf9\x903\xbf\xd3o2\x16S\xd4\xe5\x90\x9e\xcc\x1d\x9d\xfc\xcb\x17u\x11c\x8b\xa9\xd9\xad1#\x1f\xdeI\x19\xf8\xd3\xc7\xbf\x8cyt\xb7~~;\xc8:\xefE\xd1u^ox &\xcc\xa1\x1dc\x17UA'}}, {@euid_eq}, {@fowner_gt}, {@obj_type={'obj_type', 0x3d, '\v\xfdR\x88\xc3\xda\x96\xcd,\x81L\xb4\r\xde_tcU\x96#\x8d\x94\x82\xf8\xa4|4nsm\xfbO\xa2\x84\xcc\xb17\'I\x18\b\xec\xa7\x93Q\xcbP\xf0\xbf\'<$j\xfc\xec\xd8\xb3\x19\x89a]\xbdhL\x0f&\xd6;\x10f\xcf?\x94eq\xa8\x1d\x8a\x91\xc6\xafF\x05`\xb1\xa5v\xae\xdc\x80\xee\x15\x9e\x97\x12\x1d\xe5\xad\x05\t\x00\x00\x00\xe1\x00\x00\x00'}}]}, 0xfa, 0x571, &(0x7f0000001180)="$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")
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
open_tree(0xffffffffffffff9c, 0x0, 0x81000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000001080)=ANY=[], 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xfffffffd, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{}, 0x0, &(0x7f0000000280)}, 0x20)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xf, {"a2e3ad21ed0d09f91b5b090987f70906d038e7ff7fc6e5539b0d3d0e8b089b32356d63060890e0878f0e1ac6e7049b334a959b669a240d5b67f3988f7ef319520100ffe8d17c708c523c921b1b5b31070b07580936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08cdc339081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383701d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9d6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bad8deff4b05f60cea0da7710ac0000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f74a2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bcff00000000000000fec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420ae305fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42f48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b6080000007a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fadf9ffffff238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3b99caf6b00d84a604047497022d9c30e23ef4df5c89644f48bb536f7946b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6020048cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffee738d97b9b5ef828ee9fb06ffc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c65a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c3329c8a6b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2d06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d2a89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d009000000c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb15da202d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb7847c7148b6ce431bb90e29389f22fc5b59a70efaea2bd40195af4486220d70bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24622a4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744d9b6c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de99258842cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b9906009af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)

6.154388152s ago: executing program 0 (id=13025):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc044)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
statx(r3, &(0x7f00000001c0)='./cgroup/../file0\x00', 0x0, 0x8, &(0x7f0000000340))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000140)={0x80, 0x6, 0x303, 0xfffd, 0x13, 0x0, 0x0})
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

6.153883832s ago: executing program 9 (id=13026):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2169802, 0x0, 0x0, 0x0, &(0x7f00000003c0))
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, 0x0)

4.364329497s ago: executing program 3 (id=13027):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
r3 = eventfd2(0x0, 0x800)
io_setup(0x6, &(0x7f0000000140)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f00000000c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xfffd, r2, 0x0, 0x0, 0x0, 0x0, 0x3, r3}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
shutdown(r2, 0x0)

4.348686938s ago: executing program 0 (id=13028):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c00)={'team_slave_1\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000740)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400)={[{@sysvgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$eJzs3T1oLFUYBuB3Zne95t5FrtoI4g+IiAbCtRNsYqMQkBBEBBUiIjZKIsQEu8TKxkJrlVQ2QeyMlpIm2CiCVdQUsRE0WBgstFiZnURisuLPxh1xngdmZ2b3nPnOMPOe3WbYAK11Nclskk6S6SS9JMXpBnfWy9Xj3c2p3cVkMHjsh2LYrt6vnfS7kmQjyQNJdsoiL3STte2nDn7ae+Se11d7d7+7/eTURE/y2OHB/qNH78y/9sHc/WufffHdfJHZ9H93XhevGPFet0hu+jeK/UcU3aZHwF+x8Mr7X1a5vznJXcP891KmvnhvrFy308t9b/9R3ze///zWSY4VuHiDQa/6DtwYAK1TJumnKGeS1NtlOTNT/4b/qnO5fHF55eXp55dXl55reqYCLko/2X/4o0sfXjmT/287df6B/68q/48vbH1dbR91mh4NMBG31asq/9PPrN8b+YfWkX9oL/mH9pJ/aC/5h/aSf2gv+Yf2kn9oL/mH9pJ/aK/T+QcA2mVwqeknkIGmND3/AAAAAAAAAAAAAAAAAAAA521O7S6eLJOq+clbyeFDSbqj6neG/0ecXD98vfxjUTX7TVF3G8vTd4x5gDG91/DT1zd802z9T29vtv76UrLxapJr3e75+684vv/+uRv/5PPes2MW+JuKM/sPPjHZ+mf9stVs/bm95ONq/rk2av4pc8twPXr+6VfXb8z6L/085gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYmF8DAAD//xFQbUc=")
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/timer_list\x00', 0x0, 0x0)
preadv(r7, &(0x7f0000001500)=[{&(0x7f00000002c0)=""/4084, 0xff4}], 0x1, 0xf73, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002400)=@delchain={0x24, 0x66, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {}, {0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', r8, &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
open(0x0, 0x107502, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
utimensat(r9, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)

4.230699868s ago: executing program 3 (id=13029):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lstat(0x0, 0x0)
r4 = syz_open_pts(0xffffffffffffffff, 0x141601)
ioprio_set$pid(0x2, 0x0, 0x4007)
ioctl$TIOCGPTLCK(r4, 0x80045439, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x20000000)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000980)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0xffff, 0xfff2}, {}, {0xa, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x1c, 0x2, [@TCA_BPF_ACT={0x4}, @TCA_BPF_FLAGS={0x8, 0x8, 0xf2ff}, @TCA_BPF_OPS={{0x6}, {0x4}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8848}, 0x2000c944)

3.068270272s ago: executing program 3 (id=13030):
r0 = socket(0x1e, 0x80004, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r2 = dup3(r1, r0, 0x0)
recvmmsg(r2, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f00000003c0)=[{0x0}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)

2.912784094s ago: executing program 4 (id=13031):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
clock_gettime(0xfffffff5, 0x0)
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000600), 0x1, 0x555, &(0x7f0000000640)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x187802, 0x0)
pwrite64(r4, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

2.113173109s ago: executing program 3 (id=13032):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x103442, 0x58)
readahead(r2, 0x0, 0x7)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080000000100"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x84)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})

2.092189401s ago: executing program 9 (id=13033):
bpf$MAP_CREATE(0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="0b00000005000000020000000200000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@metacopy_on}]})
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8820, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0)
stat(&(0x7f00000007c0)='./file7\x00', &(0x7f0000000800))

2.072845242s ago: executing program 0 (id=13034):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x10, 0x14, &(0x7f0000000200)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
dup(0xffffffffffffffff)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b700000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x4000000, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

2.071473042s ago: executing program 1 (id=13035):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lstat(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000007c0)=ANY=[], 0x119)

939.345924ms ago: executing program 0 (id=13036):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc044)
r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
statx(r3, &(0x7f00000001c0)='./cgroup/../file0\x00', 0x0, 0x8, &(0x7f0000000340))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

798.559555ms ago: executing program 4 (id=13037):
request_key(&(0x7f0000001000)='dns_resolver\x00', &(0x7f0000001040)={'syz', 0x3}, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x240000, &(0x7f0000000840)={[{@nombcache}, {@grpid}, {@journal_path={'journal_path', 0x3d, '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/'}}, {@data_journal}, {@norecovery}, {@commit={'commit', 0x3d, 0x5}}, {@nodioread_nolock}, {@data_writeback}, {@jqfmt_vfsv0}, {@nomblk_io_submit}, {@user_xattr}], [{@mask={'mask', 0x3d, '^MAY_READ'}}, {@obj_type={'obj_type', 0x3d, 'PQ]\xa7\xfaP\x1f\x8e\xce9\xe7\xeb\xcc\xd6\xf8\xe1\xa9\xe9\xb7\x9e\x92\x1atob\xdb\x9b\x06*6f\xef\xa4:/\x16\xb8\x8b\xa1\xc3\xe6zvt\xf4Rd\xbe\x9dy\xa66\x8d\x85\xb1\a\xben%\x05f\xe2\xc6\xef\x99\xbb\xcd\xe0\xdf\xbe\x879i\x902\x82\xbf\x14\t\xee\x02\x85\xaf\x1f\x8e\xaa\xd4\xef~N\xd4\xf0\xd6\x0fG`\x9d\x1f]\xe4\bY\xfb0F[\xf1\x12u\x1a\x80l\xea9\xd6f\xe9\x10n\x94\xa7\xdb\x86\x81\xce\xf9\x903\xbf\xd3o2\x16S\xd4\xe5\x90\x9e\xcc\x1d\x9d\xfc\xcb\x17u\x11c\x8b\xa9\xd9\xad1#\x1f\xdeI\x19\xf8\xd3\xc7\xbf\x8cyt\xb7~~;\xc8:\xefE\xd1u^ox &\xcc\xa1\x1dc\x17UA'}}, {@euid_eq}, {@fowner_gt}, {@obj_type={'obj_type', 0x3d, '\v\xfdR\x88\xc3\xda\x96\xcd,\x81L\xb4\r\xde_tcU\x96#\x8d\x94\x82\xf8\xa4|4nsm\xfbO\xa2\x84\xcc\xb17\'I\x18\b\xec\xa7\x93Q\xcbP\xf0\xbf\'<$j\xfc\xec\xd8\xb3\x19\x89a]\xbdhL\x0f&\xd6;\x10f\xcf?\x94eq\xa8\x1d\x8a\x91\xc6\xafF\x05`\xb1\xa5v\xae\xdc\x80\xee\x15\x9e\x97\x12\x1d\xe5\xad\x05\t\x00\x00\x00\xe1\x00\x00\x00'}}]}, 0xfa, 0x571, &(0x7f0000001180)="$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")
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xfffffffd, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x4)
dup(r4)

316.112845ms ago: executing program 1 (id=13038):
request_key(&(0x7f0000001000)='dns_resolver\x00', &(0x7f0000001040)={'syz', 0x3}, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x240000, &(0x7f0000000840)={[{@nombcache}, {@grpid}, {@journal_path={'journal_path', 0x3d, '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/'}}, {@data_journal}, {@norecovery}, {@commit={'commit', 0x3d, 0x5}}, {@nodioread_nolock}, {@data_writeback}, {@jqfmt_vfsv0}, {@nomblk_io_submit}, {@user_xattr}], [{@mask={'mask', 0x3d, '^MAY_READ'}}, {@obj_type={'obj_type', 0x3d, 'PQ]\xa7\xfaP\x1f\x8e\xce9\xe7\xeb\xcc\xd6\xf8\xe1\xa9\xe9\xb7\x9e\x92\x1atob\xdb\x9b\x06*6f\xef\xa4:/\x16\xb8\x8b\xa1\xc3\xe6zvt\xf4Rd\xbe\x9dy\xa66\x8d\x85\xb1\a\xben%\x05f\xe2\xc6\xef\x99\xbb\xcd\xe0\xdf\xbe\x879i\x902\x82\xbf\x14\t\xee\x02\x85\xaf\x1f\x8e\xaa\xd4\xef~N\xd4\xf0\xd6\x0fG`\x9d\x1f]\xe4\bY\xfb0F[\xf1\x12u\x1a\x80l\xea9\xd6f\xe9\x10n\x94\xa7\xdb\x86\x81\xce\xf9\x903\xbf\xd3o2\x16S\xd4\xe5\x90\x9e\xcc\x1d\x9d\xfc\xcb\x17u\x11c\x8b\xa9\xd9\xad1#\x1f\xdeI\x19\xf8\xd3\xc7\xbf\x8cyt\xb7~~;\xc8:\xefE\xd1u^ox &\xcc\xa1\x1dc\x17UA'}}, {@euid_eq}, {@fowner_gt}, {@obj_type={'obj_type', 0x3d, '\v\xfdR\x88\xc3\xda\x96\xcd,\x81L\xb4\r\xde_tcU\x96#\x8d\x94\x82\xf8\xa4|4nsm\xfbO\xa2\x84\xcc\xb17\'I\x18\b\xec\xa7\x93Q\xcbP\xf0\xbf\'<$j\xfc\xec\xd8\xb3\x19\x89a]\xbdhL\x0f&\xd6;\x10f\xcf?\x94eq\xa8\x1d\x8a\x91\xc6\xafF\x05`\xb1\xa5v\xae\xdc\x80\xee\x15\x9e\x97\x12\x1d\xe5\xad\x05\t\x00\x00\x00\xe1\x00\x00\x00'}}]}, 0xfa, 0x571, &(0x7f0000001180)="$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")
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
open_tree(0xffffffffffffff9c, 0x0, 0x81000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_ro(r4, 0x0, 0x0, 0x0)
preadv(r5, 0x0, 0x0, 0xfffffffd, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{}, 0x0, &(0x7f0000000280)}, 0x20)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)

276.938858ms ago: executing program 3 (id=13039):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
r3 = eventfd2(0x0, 0x800)
io_setup(0x6, &(0x7f0000000140)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f00000000c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xfffd, r2, 0x0, 0x0, 0x0, 0x0, 0x3, r3}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
shutdown(r2, 0x0)

0s ago: executing program 0 (id=13040):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0x1, 0x120d, &(0x7f0000001280)="$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")
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x41)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
rename(&(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

kernel console output (not intermixed with test programs):

arch=c000003e syscall=222 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3007.752772][   T30] audit: type=1326 audit(1754535346.001:15706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3896 comm="syz.0.11795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3008.122984][ T3885] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3008.130390][ T3885] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3008.138414][ T3885] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3008.138884][T12385] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 3008.145896][ T3885] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3008.164076][T12385] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3008.178274][T12385] usb 4-1: Product: syz
[ 3008.186156][T12385] usb 4-1: Manufacturer: syz
[ 3008.191007][T12385] usb 4-1: SerialNumber: syz
[ 3008.193240][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3008.206422][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3008.214620][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3008.234058][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3008.242748][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3008.250123][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3008.258857][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3008.267523][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3008.274899][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3008.294197][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3008.306006][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3008.334843][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3008.352740][  T501] usb 2-1: descriptor type invalid, skip
[ 3008.358706][  T501] usb 2-1: descriptor type invalid, skip
[ 3008.363941][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3008.376718][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3008.396297][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3008.406149][  T501] usb 2-1: not running at top speed; connect to a high speed hub
[ 3008.414380][ T3885] device veth0_vlan entered promiscuous mode
[ 3008.438708][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3008.447737][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3008.458757][ T3885] device veth1_macvtap entered promiscuous mode
[ 3008.479542][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3008.488117][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3008.502838][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3008.523164][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3008.545169][  T501] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 3008.596506][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3008.612419][  T501] usb 2-1: language id specifier not provided by device, defaulting to English
[ 3008.631026][T29402] tipc: Disabling bearer <eth:macsec0>
[ 3008.639656][T29402] tipc: Left network mode
[ 3008.748357][  T501] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 3008.761238][  T501] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3008.782234][  T501] usb 2-1: Product: syz
[ 3008.791236][  T501] usb 2-1: Manufacturer: syz
[ 3008.795921][  T501] usb 2-1: SerialNumber: syz
[ 3009.354492][T29402] device bridge_slave_1 left promiscuous mode
[ 3009.368348][T29402] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3009.376389][T29402] device bridge_slave_0 left promiscuous mode
[ 3009.383591][T29402] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3009.392623][T29402] device veth1_macvtap left promiscuous mode
[ 3009.399939][T29402] device veth0_vlan left promiscuous mode
[ 3010.095344][T12385] cdc_ncm 4-1:1.0: bind() failure
[ 3010.104839][T12385] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[ 3010.120665][T12385] cdc_ncm 4-1:1.1: bind() failure
[ 3010.137813][T12385] usb 4-1: USB disconnect, device number 59
[ 3011.431641][  T501] cdc_ncm 2-1:1.0: bind() failure
[ 3011.438511][  T501] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[ 3011.445769][    T6] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 3011.464395][  T501] cdc_ncm 2-1:1.1: bind() failure
[ 3012.181604][  T501] usb 2-1: USB disconnect, device number 57
[ 3012.543417][    T6] usb 7-1: Using ep0 maxpacket: 8
[ 3013.023340][ T3975] netlink: 'syz.3.11816': attribute type 2 has an invalid length.
[ 3013.398741][    T6] usb 7-1: unable to read config index 0 descriptor/all
[ 3013.407934][    T6] usb 7-1: can't read configurations, error -71
[ 3015.224019][ T3987] loop6: detected capacity change from 0 to 128
[ 3015.293005][ T3987] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3015.308890][ T3987] ext4 filesystem being mounted at /175/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3019.820160][ T4027] loop6: detected capacity change from 0 to 512
[ 3020.578688][ T4027] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.11830: inode #1: comm syz.6.11830: iget: illegal inode #
[ 3020.653477][ T4027] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.11830: error while reading EA inode 1 err=-117
[ 3020.685757][ T4027] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.11830: inode #1: comm syz.6.11830: iget: illegal inode #
[ 3020.715831][ T4027] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.11830: error while reading EA inode 1 err=-117
[ 3020.745114][ T4027] EXT4-fs (loop6): 1 orphan inode deleted
[ 3020.751436][ T4027] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[ 3020.804749][ T4027] netlink: 'syz.6.11830': attribute type 2 has an invalid length.
[ 3025.244317][ T4084] 9p: Unknown uid 18446744073709551615
[ 3025.260569][ T4081] overlayfs: conflicting lowerdir path
[ 3025.398312][ T4097] loop6: detected capacity change from 0 to 128
[ 3025.833094][ T4097] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3026.045721][ T4097] ext4 filesystem being mounted at /185/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3028.023451][T31290] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[ 3028.451339][T31290] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3028.465855][T31290] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 3028.489641][T31290] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3028.517293][T31290] usb 4-1: config 0 descriptor??
[ 3028.558790][T31290] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 3028.835847][T24436] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[ 3028.979352][ T4148] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3028.987024][ T4148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3028.994994][ T4148] device bridge_slave_0 entered promiscuous mode
[ 3029.008001][ T4148] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3029.015124][ T4148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3029.024770][ T4148] device bridge_slave_1 entered promiscuous mode
[ 3029.118600][T32487] tipc: Disabling bearer <eth:macsec0>
[ 3029.124326][T32487] tipc: Left network mode
[ 3029.192117][ T4148] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3029.199418][ T4148] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3029.207099][ T4148] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3029.214182][ T4148] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3029.243321][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3029.251591][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3029.260237][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3029.280468][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3029.289052][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3029.296136][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3029.304539][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3029.313498][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3029.320871][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3029.336476][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3029.345699][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3029.365828][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3029.380887][ T4148] device veth0_vlan entered promiscuous mode
[ 3029.388706][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3029.397818][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3029.406838][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3029.422366][ T4148] device veth1_macvtap entered promiscuous mode
[ 3029.434928][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3029.450463][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3029.460104][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3029.485645][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3029.505210][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3030.090671][T32487] device bridge_slave_1 left promiscuous mode
[ 3030.099063][T32487] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3030.111338][T32487] device bridge_slave_0 left promiscuous mode
[ 3030.118049][T32487] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3030.132956][T32487] device veth1_macvtap left promiscuous mode
[ 3030.139935][T32487] device veth0_vlan left promiscuous mode
[ 3030.760411][ T4182] loop6: detected capacity change from 0 to 128
[ 3030.944889][ T4182] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3030.961454][ T4182] ext4 filesystem being mounted at /190/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3031.119063][   T30] audit: type=1400 audit(1754535368.049:15707): avc:  denied  { read } for  pid=4178 comm="syz.6.11874" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[ 3031.218964][ T3509] usb 4-1: USB disconnect, device number 60
[ 3031.444404][T24436] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3031.464210][T24436] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3031.474366][T24436] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 3031.489968][T24436] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 3031.499919][T24436] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3031.509062][T24436] usb 5-1: config 0 descriptor??
[ 3032.587011][ T4198] overlayfs: conflicting lowerdir path
[ 3032.897455][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 3033.136533][ T4220] loop6: detected capacity change from 0 to 128
[ 3033.402564][T24436] usbhid 5-1:0.0: can't add hid device: -71
[ 3033.510675][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3033.531183][ T4220] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3033.547175][ T4220] ext4 filesystem being mounted at /192/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3033.645022][T24436] usbhid: probe of 5-1:0.0 failed with error -71
[ 3033.731448][T24436] usb 5-1: USB disconnect, device number 56
[ 3033.738394][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 3033.749902][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3033.786129][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3033.794501][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3033.803204][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3033.812075][ T1013] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3036.578841][ T4250] netlink: 'syz.1.11896': attribute type 2 has an invalid length.
[ 3036.656666][T23457] usb 1-1: new high-speed USB device number 64 using dummy_hcd
[ 3037.828281][ T4257] netlink: 'syz.4.11899': attribute type 2 has an invalid length.
[ 3037.881072][    T8] Bluetooth: hci0: Frame reassembly failed (-84)
[ 3043.151011][    T6] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[ 3045.213191][ T4306] loop6: detected capacity change from 0 to 1024
[ 3045.363970][ T4306] EXT4-fs (loop6): revision level too high, forcing read-only mode
[ 3045.375797][ T4306] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 3045.387967][ T4306] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.11917: bg 0: block 10: padding at end of block bitmap is not set
[ 3045.404570][ T4306] Quota error (device loop6): write_blk: dquota write failed
[ 3045.412336][ T4306] Quota error (device loop6): find_free_dqentry: Can't remove block (3) from entry free list
[ 3045.423222][ T4306] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 3045.433585][ T4306] EXT4-fs error (device loop6): ext4_acquire_dquot:6198: comm syz.6.11917: Failed to acquire dquot type 0
[ 3045.447781][ T4306] Quota error (device loop6): write_blk: dquota write failed
[ 3045.455442][ T4306] Quota error (device loop6): find_free_dqentry: Can't remove block (3) from entry free list
[ 3045.466193][ T4306] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 3045.476535][ T4306] EXT4-fs error (device loop6): ext4_acquire_dquot:6198: comm syz.6.11917: Failed to acquire dquot type 0
[ 3045.489567][ T4306] EXT4-fs error (device loop6): ext4_free_blocks:6223: comm syz.6.11917: Freeing blocks not in datazone - block = 0, count = 4096
[ 3045.505247][ T4306] Quota error (device loop6): write_blk: dquota write failed
[ 3045.512944][ T4306] Quota error (device loop6): find_free_dqentry: Can't remove block (3) from entry free list
[ 3045.523607][ T4306] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 3045.534076][ T4306] EXT4-fs error (device loop6): ext4_acquire_dquot:6198: comm syz.6.11917: Failed to acquire dquot type 0
[ 3045.546634][ T4306] EXT4-fs (loop6): 1 orphan inode deleted
[ 3045.554435][ T4306] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3045.889268][T23457] usb 1-1: device descriptor read/64, error -71
[ 3046.336367][T29347] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[ 3047.803331][T29347] usb 4-1: Using ep0 maxpacket: 8
[ 3048.087245][ T4339] overlayfs: conflicting lowerdir path
[ 3048.101754][T29347] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3048.115569][T29347] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3048.126117][T29347] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3048.139550][T29347] usb 4-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3048.149848][T29347] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3048.159922][T29347] usb 4-1: config 0 descriptor??
[ 3049.323099][T29347] usbhid 4-1:0.0: can't add hid device: -71
[ 3049.392526][T29347] usbhid: probe of 4-1:0.0 failed with error -71
[ 3049.457551][T29347] usb 4-1: USB disconnect, device number 61
[ 3051.836389][ T4380] netlink: 'syz.0.11942': attribute type 2 has an invalid length.
[ 3054.476028][ T4397] loop6: detected capacity change from 0 to 512
[ 3054.746124][ T4397] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.11947: inode #1: comm syz.6.11947: iget: illegal inode #
[ 3054.761098][ T4397] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.11947: error while reading EA inode 1 err=-117
[ 3054.774857][ T4397] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.11947: inode #1: comm syz.6.11947: iget: illegal inode #
[ 3054.789610][ T4397] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.11947: error while reading EA inode 1 err=-117
[ 3054.803460][ T4397] EXT4-fs (loop6): 1 orphan inode deleted
[ 3054.809347][ T4397] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[ 3055.680705][ T4413] overlayfs: missing 'workdir'
[ 3055.711634][ T3509] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[ 3057.123255][ T3509] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3057.152090][ T3509] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3057.168559][ T3509] usb 2-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 3057.199100][ T3509] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3057.255006][ T3509] usb 2-1: config 0 descriptor??
[ 3058.096084][ T3509] usbhid 2-1:0.0: can't add hid device: -71
[ 3058.102672][ T3509] usbhid: probe of 2-1:0.0 failed with error -71
[ 3058.167727][ T4443] syz.6.11961[4443] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3058.168169][ T4443] syz.6.11961[4443] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3058.260383][ T4443] loop6: detected capacity change from 0 to 128
[ 3058.764254][ T4443] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 3058.771630][ T4443] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 3058.875719][ T4443] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[ 3058.893415][ T4443] ext4 filesystem being mounted at /205/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3059.131827][ T4443] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[ 3059.911954][ T3509] usb 2-1: USB disconnect, device number 58
[ 3059.978053][ T4459] loop6: detected capacity change from 0 to 512
[ 3060.018591][ T4459] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3060.030030][ T4459] ext4 filesystem being mounted at /206/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3061.475724][ T4478] loop6: detected capacity change from 0 to 256
[ 3061.505317][ T2754] usb 1-1: new high-speed USB device number 65 using dummy_hcd
[ 3062.467790][ T2754] usb 1-1: Using ep0 maxpacket: 8
[ 3062.757258][ T2754] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3062.778525][ T2754] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3062.930676][ T4496] loop6: detected capacity change from 0 to 128
[ 3063.501084][ T4496] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3063.556902][ T4496] ext4 filesystem being mounted at /208/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3063.654814][ T2754] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3065.074387][ T2754] usb 1-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3065.194595][ T2754] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3065.207242][ T2754] usb 1-1: config 0 descriptor??
[ 3065.226746][ T2754] usb 1-1: can't set config #0, error -71
[ 3066.048034][ T2754] usb 1-1: USB disconnect, device number 65
[ 3066.084850][ T4525] netlink: 'syz.0.11985': attribute type 27 has an invalid length.
[ 3066.142302][ T4525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3066.149712][ T4525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3067.945146][ T4550] 9pnet: Insufficient options for proto=fd
[ 3069.422804][  T501] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[ 3069.479453][ T1013] Bluetooth: hci0: Frame reassembly failed (-84)
[ 3069.892953][ T4575] loop6: detected capacity change from 0 to 128
[ 3070.098262][ T4575] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3070.114462][ T4575] ext4 filesystem being mounted at /213/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3072.122101][ T3509] usb 5-1: new full-speed USB device number 57 using dummy_hcd
[ 3075.406583][ T4620] overlayfs: conflicting lowerdir path
[ 3075.522001][ T4622] netlink: 'syz.4.12013': attribute type 2 has an invalid length.
[ 3075.788969][ T3509] usb 5-1: device not accepting address 57, error -71
[ 3076.722182][ T4640] loop6: detected capacity change from 0 to 128
[ 3077.277945][ T4640] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3077.295257][ T4640] ext4 filesystem being mounted at /217/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3079.981343][ T4673] overlayfs: conflicting lowerdir path
[ 3080.537195][ T4681] device veth0_vlan left promiscuous mode
[ 3080.564257][ T4681] device veth0_vlan entered promiscuous mode
[ 3080.575252][ T4681] device veth1_macvtap left promiscuous mode
[ 3080.583720][ T4681] device veth1_macvtap entered promiscuous mode
[ 3080.593360][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3080.602483][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3080.610279][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3080.619580][T29402] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3080.627079][T29402] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3080.638618][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3080.648424][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3080.657401][T29402] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3080.659533][ T4693] overlayfs: conflicting lowerdir path
[ 3080.664876][T29402] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3080.665411][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3080.687409][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 3080.696629][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3080.732688][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 3080.741586][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3080.751894][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3080.761106][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3080.769995][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3080.778758][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3080.788609][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3081.049652][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3081.095041][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3081.140097][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3081.186499][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3081.235239][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3081.278474][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3081.394147][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3081.404628][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3081.417055][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3081.428786][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3081.440890][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3082.381758][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3082.422547][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3082.437696][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3082.450285][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3082.458708][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3082.466782][T29402] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3082.481380][ T4687] netlink: 40 bytes leftover after parsing attributes in process `syz.4.12033'.
[ 3083.154146][ T4717] overlayfs: conflicting lowerdir path
[ 3090.905623][ T4756] loop6: detected capacity change from 0 to 512
[ 3091.607360][ T4756] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.12052: inode #1: comm syz.6.12052: iget: illegal inode #
[ 3091.622904][ T4756] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.12052: error while reading EA inode 1 err=-117
[ 3091.637139][ T4756] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.12052: inode #1: comm syz.6.12052: iget: illegal inode #
[ 3091.651466][ T4756] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.12052: error while reading EA inode 1 err=-117
[ 3091.665148][ T4756] EXT4-fs (loop6): 1 orphan inode deleted
[ 3091.671036][ T4756] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[ 3091.973242][T29347] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[ 3092.170279][ T4772] overlayfs: conflicting lowerdir path
[ 3092.573507][T29347] usb 4-1: device descriptor read/64, error -71
[ 3094.864050][ T4803] loop6: detected capacity change from 0 to 16
[ 3094.873667][ T4803] erofs: (device loop6): mounted with root inode @ nid 36.
[ 3094.903830][T29347] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3094.918144][T29347] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3094.946601][T29347] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 3094.967956][T29347] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 3094.978086][T29347] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3096.218497][T29347] usb 4-1: config 0 descriptor??
[ 3096.250865][T29347] usb 4-1: can't set config #0, error -71
[ 3096.274368][T29347] usb 4-1: USB disconnect, device number 62
[ 3097.480249][   T30] audit: type=1326 audit(1754535430.122:15708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.12077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3097.834551][ T4816] loop6: detected capacity change from 0 to 40427
[ 3097.910345][   T30] audit: type=1326 audit(1754535430.122:15709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.12077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3097.946608][ T4816] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[ 3097.972442][   T30] audit: type=1326 audit(1754535430.122:15710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.12077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3098.013459][ T4816] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[ 3098.061000][ T4816] F2FS-fs (loop6): invalid crc value
[ 3098.087651][ T4816] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 9809626597)
[ 3098.102800][   T30] audit: type=1326 audit(1754535430.159:15711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.12077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3098.175445][   T30] audit: type=1326 audit(1754535430.159:15712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.12077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3098.206209][ T4816] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[ 3098.214269][   T30] audit: type=1326 audit(1754535430.159:15713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.12077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3098.238261][   T30] audit: type=1326 audit(1754535430.159:15714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4831 comm="syz.0.12077" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3098.250705][ T4816] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 3100.850641][ T4875] overlayfs: conflicting lowerdir path
[ 3103.178076][ T4902] syz.0.12098[4902] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3103.180008][ T4902] syz.0.12098[4902] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3107.316626][ T4913] loop6: detected capacity change from 0 to 1024
[ 3107.899109][ T4913] EXT4-fs (loop6): revision level too high, forcing read-only mode
[ 3107.911274][ T4913] EXT4-fs (loop6): orphan cleanup on readonly fs
[ 3107.922359][ T4913] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.12100: bg 0: block 10: padding at end of block bitmap is not set
[ 3107.938517][ T4913] Quota error (device loop6): write_blk: dquota write failed
[ 3107.946832][ T4913] Quota error (device loop6): find_free_dqentry: Can't remove block (3) from entry free list
[ 3107.957880][ T4913] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 3107.968761][ T4913] EXT4-fs error (device loop6): ext4_acquire_dquot:6198: comm syz.6.12100: Failed to acquire dquot type 0
[ 3107.983402][ T4913] Quota error (device loop6): write_blk: dquota write failed
[ 3107.994076][ T4913] Quota error (device loop6): find_free_dqentry: Can't remove block (3) from entry free list
[ 3108.006199][ T4913] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 3108.017625][ T4913] EXT4-fs error (device loop6): ext4_acquire_dquot:6198: comm syz.6.12100: Failed to acquire dquot type 0
[ 3108.031326][ T4913] EXT4-fs error (device loop6): ext4_free_blocks:6223: comm syz.6.12100: Freeing blocks not in datazone - block = 0, count = 4096
[ 3108.046885][ T4913] Quota error (device loop6): write_blk: dquota write failed
[ 3108.054751][ T4913] Quota error (device loop6): find_free_dqentry: Can't remove block (3) from entry free list
[ 3108.066467][ T4913] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[ 3108.077705][ T4913] EXT4-fs error (device loop6): ext4_acquire_dquot:6198: comm syz.6.12100: Failed to acquire dquot type 0
[ 3108.092039][ T4913] EXT4-fs (loop6): 1 orphan inode deleted
[ 3108.100569][ T4913] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3111.028408][ T4941] loop6: detected capacity change from 0 to 16
[ 3114.702386][ T4941] erofs: (device loop6): mounted with root inode @ nid 36.
[ 3114.743268][ T4940] attempt to access beyond end of device
[ 3114.743268][ T4940] loop6: rw=0, want=34359739352, limit=16
[ 3114.757109][ T4940] attempt to access beyond end of device
[ 3114.757109][ T4940] loop6: rw=524288, want=34359739344, limit=16
[ 3114.770758][ T4940] erofs: (device loop6): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[ 3114.781209][ T4940] attempt to access beyond end of device
[ 3114.781209][ T4940] loop6: rw=524288, want=34359740336, limit=16
[ 3117.742562][ T4970] syz.1.12115[4970] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3117.742651][ T4970] syz.1.12115[4970] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3119.393283][ T4975] loop6: detected capacity change from 0 to 256
[ 3119.432182][ T4975] exfat: Deprecated parameter 'namecase'
[ 3119.548496][ T4975] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 3123.332284][ T5019] overlayfs: conflicting lowerdir path
[ 3123.626704][ T5017] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3123.659584][ T5017] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3123.689879][ T5017] device bridge_slave_0 entered promiscuous mode
[ 3123.718704][ T5017] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3123.738155][ T5017] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3124.056210][ T5035] netlink: 'syz.0.12142': attribute type 2 has an invalid length.
[ 3124.092088][ T5017] device bridge_slave_1 entered promiscuous mode
[ 3125.583917][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3125.593070][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3125.971305][ T5059] syz.0.12149[5059] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3125.971427][ T5059] syz.0.12149[5059] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3130.657924][ T5017] device veth0_vlan entered promiscuous mode
[ 3130.712065][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3130.729820][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3130.746220][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3130.754827][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3130.763893][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3130.774300][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3130.783807][  T449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3130.791042][  T449] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3130.822406][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3130.832737][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3130.843191][  T449] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3130.850514][  T449] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3130.959341][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3130.969626][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3131.028019][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3131.214071][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3131.256752][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3131.302796][ T5017] device veth1_macvtap entered promiscuous mode
[ 3131.337522][ T3509] usb 5-1: new full-speed USB device number 59 using dummy_hcd
[ 3131.386238][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3131.405952][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3131.441516][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3132.395938][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3132.437099][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3132.513453][ T3509] usb 5-1: descriptor type invalid, skip
[ 3132.529441][T29402] device bridge_slave_1 left promiscuous mode
[ 3132.536223][ T3509] usb 5-1: descriptor type invalid, skip
[ 3132.542555][T29402] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3132.572454][T29402] device bridge_slave_0 left promiscuous mode
[ 3132.580504][T29402] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3132.612349][ T3509] usb 5-1: not running at top speed; connect to a high speed hub
[ 3132.639640][T29402] device veth1_macvtap left promiscuous mode
[ 3132.690947][T29402] device veth0_vlan left promiscuous mode
[ 3132.738149][ T3509] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 3133.215414][ T5107] syz.0.12162[5107] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3133.215508][ T5107] syz.0.12162[5107] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3133.349796][ T3509] usb 5-1: language id specifier not provided by device, defaulting to English
[ 3136.946283][ T5121] loop7: detected capacity change from 0 to 1024
[ 3137.035677][ T3509] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 3137.167608][ T5121] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 3137.179486][ T5121] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 3137.192261][ T5121] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.12166: bg 0: block 10: padding at end of block bitmap is not set
[ 3137.208194][ T5121] Quota error (device loop7): write_blk: dquota write failed
[ 3137.215683][ T5121] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3137.226728][ T5121] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[ 3137.237012][ T5121] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12166: Failed to acquire dquot type 0
[ 3137.250673][ T5121] Quota error (device loop7): write_blk: dquota write failed
[ 3137.258242][ T5121] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3137.268962][ T5121] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3137.279886][ T5121] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12166: Failed to acquire dquot type 0
[ 3137.294775][ T5121] EXT4-fs error (device loop7): ext4_free_blocks:6223: comm syz.7.12166: Freeing blocks not in datazone - block = 0, count = 4096
[ 3137.309629][ T5121] Quota error (device loop7): write_blk: dquota write failed
[ 3137.317459][ T5121] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3137.328329][ T5121] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3137.338371][ T5121] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12166: Failed to acquire dquot type 0
[ 3137.350686][ T5121] EXT4-fs (loop7): 1 orphan inode deleted
[ 3137.358544][ T3509] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3137.370099][ T5121] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3137.530108][ T3509] usb 5-1: can't set config #1, error -71
[ 3137.642773][ T3509] usb 5-1: USB disconnect, device number 59
[ 3138.431324][ T5142] syz.3.12172[5142] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3138.431830][ T5142] syz.3.12172[5142] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3141.078656][ T5151] loop7: detected capacity change from 0 to 16
[ 3141.591206][ T5151] erofs: (device loop7): mounted with root inode @ nid 36.
[ 3141.636937][ T5151] attempt to access beyond end of device
[ 3141.636937][ T5151] loop7: rw=0, want=34359739352, limit=16
[ 3141.654133][ T5151] attempt to access beyond end of device
[ 3141.654133][ T5151] loop7: rw=524288, want=34359739344, limit=16
[ 3141.669114][ T5151] erofs: (device loop7): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[ 3141.679727][ T5151] attempt to access beyond end of device
[ 3141.679727][ T5151] loop7: rw=524288, want=34359740336, limit=16
[ 3143.458398][ T5181] syz.4.12180[5181] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3143.458708][ T5181] syz.4.12180[5181] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3144.651418][ T5184] loop7: detected capacity change from 0 to 1024
[ 3146.070184][ T5184] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 3146.082804][ T5184] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 3146.664216][ T5194] syz.4.12187[5194] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3146.664433][ T5194] syz.4.12187[5194] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3146.855701][ T5195] overlayfs: conflicting lowerdir path
[ 3147.859741][ T5184] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.12179: bg 0: block 10: padding at end of block bitmap is not set
[ 3147.874983][ T5184] Quota error (device loop7): write_blk: dquota write failed
[ 3147.882916][ T5184] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3147.897234][ T5184] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3147.908994][ T5184] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12179: Failed to acquire dquot type 0
[ 3147.922653][ T5184] Quota error (device loop7): write_blk: dquota write failed
[ 3147.930414][ T5184] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3147.942718][ T5184] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3147.954176][ T5184] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12179: Failed to acquire dquot type 0
[ 3147.966025][ T5184] EXT4-fs error (device loop7): ext4_free_blocks:6223: comm syz.7.12179: Freeing blocks not in datazone - block = 0, count = 4096
[ 3147.980760][ T5184] Quota error (device loop7): write_blk: dquota write failed
[ 3147.989611][ T5184] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3148.002453][ T5184] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3148.014005][ T5184] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12179: Failed to acquire dquot type 0
[ 3148.036235][ T5184] EXT4-fs (loop7): 1 orphan inode deleted
[ 3148.044666][ T5202] netlink: 'syz.0.12188': attribute type 27 has an invalid length.
[ 3148.054165][ T5184] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3148.067271][ T5205] syz.4.12190[5205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3148.067375][ T5205] syz.4.12190[5205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3148.711699][ T5202] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3148.731396][ T5202] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3148.820338][ T5207] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12188'.
[ 3149.469062][ T5223] netlink: 'syz.1.12193': attribute type 2 has an invalid length.
[ 3152.811763][ T5235] netlink: 'syz.4.12198': attribute type 2 has an invalid length.
[ 3153.091093][ T5250] overlayfs: conflicting lowerdir path
[ 3155.260713][ T5252] loop7: detected capacity change from 0 to 512
[ 3155.725044][ T5262] syz.4.12203[5262] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3155.725497][ T5262] syz.4.12203[5262] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3157.823791][ T5252] EXT4-fs: error -4 creating inode table initialization thread
[ 3157.844209][ T5252] EXT4-fs (loop7): mount failed
[ 3161.306168][ T5281] loop7: detected capacity change from 0 to 512
[ 3161.591040][ T5281] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12209: inode #1: comm syz.7.12209: iget: illegal inode #
[ 3161.606206][ T5281] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12209: error while reading EA inode 1 err=-117
[ 3161.621182][ T5281] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12209: inode #1: comm syz.7.12209: iget: illegal inode #
[ 3161.636021][ T5281] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12209: error while reading EA inode 1 err=-117
[ 3161.651458][ T5281] EXT4-fs (loop7): 1 orphan inode deleted
[ 3161.657789][ T5281] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[ 3162.130403][ T5292] overlayfs: conflicting lowerdir path
[ 3162.762105][ T5308] loop7: detected capacity change from 0 to 4096
[ 3162.897294][ T5308] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3163.147085][ T5317] syz.0.12219[5317] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3163.147182][ T5317] syz.0.12219[5317] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3163.925165][ T5319] syz.3.12220[5319] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3163.938292][ T5319] syz.3.12220[5319] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3165.197242][ T5331] syz.1.12223[5331] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3165.210024][ T5331] syz.1.12223[5331] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3166.102238][ T5330] loop7: detected capacity change from 0 to 16
[ 3166.314976][ T5330] erofs: (device loop7): mounted with root inode @ nid 36.
[ 3166.375627][ T5330] attempt to access beyond end of device
[ 3166.375627][ T5330] loop7: rw=0, want=34359739352, limit=16
[ 3166.422495][ T5330] attempt to access beyond end of device
[ 3166.422495][ T5330] loop7: rw=524288, want=34359739344, limit=16
[ 3166.445326][ T5330] erofs: (device loop7): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[ 3166.456047][ T5330] attempt to access beyond end of device
[ 3166.456047][ T5330] loop7: rw=524288, want=34359740336, limit=16
[ 3167.555003][ T5351] overlayfs: conflicting lowerdir path
[ 3168.269927][ T5371] syz.0.12234[5371] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3168.270332][ T5371] syz.0.12234[5371] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3171.427133][T26655] usb 1-1: new high-speed USB device number 66 using dummy_hcd
[ 3171.657271][T22759] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[ 3171.705128][T26655] usb 1-1: Using ep0 maxpacket: 8
[ 3171.833555][T26655] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3171.846163][T26655] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3171.857209][T26655] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3171.872118][T26655] usb 1-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3171.882150][T26655] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3171.892557][T26655] usb 1-1: config 0 descriptor??
[ 3172.068680][T22759] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3172.080809][T22759] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3172.091426][T22759] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 3172.100801][T22759] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3172.110863][T22759] usb 4-1: config 0 descriptor??
[ 3172.271852][T26655] usbhid 1-1:0.0: can't add hid device: -71
[ 3172.306832][T26655] usbhid: probe of 1-1:0.0 failed with error -71
[ 3172.315866][T26655] usb 1-1: USB disconnect, device number 66
[ 3172.691908][T22759] hid-steam 0003:28DE:1142.0030: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0
[ 3172.839908][ T5408] overlayfs: conflicting lowerdir path
[ 3172.904445][T31290] usb 4-1: USB disconnect, device number 63
[ 3174.891726][ T5431] loop7: detected capacity change from 0 to 16
[ 3177.911999][ T5431] erofs: (device loop7): mounted with root inode @ nid 36.
[ 3179.739045][ T5454] netlink: 'syz.1.12259': attribute type 2 has an invalid length.
[ 3181.410716][ T5455] loop7: detected capacity change from 0 to 512
[ 3181.958991][ T5455] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12258: inode #1: comm syz.7.12258: iget: illegal inode #
[ 3181.975114][ T5455] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12258: error while reading EA inode 1 err=-117
[ 3181.988924][ T5455] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12258: inode #1: comm syz.7.12258: iget: illegal inode #
[ 3182.328203][ T5455] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12258: error while reading EA inode 1 err=-117
[ 3182.341378][ T5455] EXT4-fs (loop7): 1 orphan inode deleted
[ 3182.347317][ T5455] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[ 3182.568173][ T5473] overlayfs: conflicting lowerdir path
[ 3182.973348][ T5496] syz.1.12271[5496] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3182.973436][ T5496] syz.1.12271[5496] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3184.682539][ T5508] syz.0.12276[5508] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3184.697060][ T5508] syz.0.12276[5508] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3185.174475][ T5503] netlink: 'syz.3.12277': attribute type 27 has an invalid length.
[ 3185.260234][ T5503] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3185.267737][ T5503] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3185.840554][ T5524] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12282'.
[ 3187.951394][ T5544] syz.4.12285[5544] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3187.951887][ T5544] syz.4.12285[5544] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3189.188799][ T5552] syz.1.12288[5552] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3189.202508][ T5552] syz.1.12288[5552] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3192.714916][ T5554] loop7: detected capacity change from 0 to 512
[ 3193.319620][ T5554] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12289: inode #1: comm syz.7.12289: iget: illegal inode #
[ 3193.334103][ T5554] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12289: error while reading EA inode 1 err=-117
[ 3193.348363][ T5554] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12289: inode #1: comm syz.7.12289: iget: illegal inode #
[ 3193.362716][ T5554] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12289: error while reading EA inode 1 err=-117
[ 3193.376240][ T5554] EXT4-fs (loop7): 1 orphan inode deleted
[ 3193.382307][ T5554] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[ 3194.380269][ T5576] syz.4.12293[5576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3194.380365][ T5576] syz.4.12293[5576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3195.647245][ T5578] syz.0.12296[5578] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3195.661625][ T5578] syz.0.12296[5578] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3203.969767][ T5610] syz.7.12305[5610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3203.981521][ T5610] syz.7.12305[5610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3204.105987][ T5610] loop7: detected capacity change from 0 to 128
[ 3204.632953][ T5612] syz.0.12307[5612] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3204.634601][ T5612] syz.0.12307[5612] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3206.841817][ T5610] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 3206.861217][ T5610] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 3206.980372][ T5618] overlayfs: failed to resolve './file0': -2
[ 3207.026911][ T5610] EXT4-fs (loop7): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[ 3207.042255][ T5610] ext4 filesystem being mounted at /21/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3207.101844][ T5607] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[ 3209.471614][ T5644] syz.7.12317[5644] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3209.473168][ T5644] syz.7.12317[5644] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3209.609997][ T5644] loop7: detected capacity change from 0 to 128
[ 3211.884909][ T5644] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 3211.892231][ T5644] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 3212.117036][ T5644] EXT4-fs (loop7): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[ 3212.134129][ T5644] ext4 filesystem being mounted at /23/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3213.547597][   T30] audit: type=1326 audit(1754535538.694:15715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3213.854877][   T30] audit: type=1326 audit(1754535538.740:15716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3214.263413][   T30] audit: type=1326 audit(1754535538.759:15717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3214.288481][   T30] audit: type=1326 audit(1754535538.759:15718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3215.084866][   T30] audit: type=1326 audit(1754535538.759:15719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3215.151764][   T30] audit: type=1326 audit(1754535538.759:15720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3215.243035][   T30] audit: type=1326 audit(1754535538.890:15721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3215.322600][ T5681] syz.3.12325[5681] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3215.323025][ T5681] syz.3.12325[5681] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3215.577790][   T30] audit: type=1326 audit(1754535538.890:15722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3216.372283][   T30] audit: type=1326 audit(1754535538.918:15723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3216.397722][ T5673] loop7: detected capacity change from 0 to 40427
[ 3216.413244][   T30] audit: type=1326 audit(1754535538.918:15724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5664 comm="syz.0.12320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b8123bbe9 code=0x7ffc0000
[ 3216.533464][ T5673] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[ 3216.541406][ T5673] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[ 3216.692049][ T5673] F2FS-fs (loop7): invalid crc value
[ 3216.732141][ T5673] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 3216.801769][ T5688] syz.3.12326[5688] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3216.802233][ T5688] syz.3.12326[5688] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3220.975063][ T5726] overlayfs: conflicting lowerdir path
[ 3222.585435][T12385] usb 5-1: new full-speed USB device number 60 using dummy_hcd
[ 3223.244753][T12385] usb 5-1: descriptor type invalid, skip
[ 3224.392781][T12385] usb 5-1: descriptor type invalid, skip
[ 3224.492061][ T5751] loop7: detected capacity change from 0 to 1024
[ 3224.527484][T12385] usb 5-1: unable to read config index 0 descriptor/start: -71
[ 3224.557471][T12385] usb 5-1: can't read configurations, error -71
[ 3224.564560][ T5751] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 3224.573695][ T5751] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 3224.581221][ T5751] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.12345: bg 0: block 10: padding at end of block bitmap is not set
[ 3224.596714][ T5751] __quota_error: 14 callbacks suppressed
[ 3224.596735][ T5751] Quota error (device loop7): write_blk: dquota write failed
[ 3224.610036][ T5751] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3224.621727][ T5751] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3224.632231][ T5751] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12345: Failed to acquire dquot type 0
[ 3224.644859][ T5751] Quota error (device loop7): write_blk: dquota write failed
[ 3224.652965][ T5751] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3224.664345][ T5751] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3224.674688][ T5751] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12345: Failed to acquire dquot type 0
[ 3224.687471][ T5751] EXT4-fs error (device loop7): ext4_free_blocks:6223: comm syz.7.12345: Freeing blocks not in datazone - block = 0, count = 4096
[ 3224.701948][ T5751] Quota error (device loop7): write_blk: dquota write failed
[ 3224.709576][ T5751] Quota error (device loop7): find_free_dqentry: Can't remove block (3) from entry free list
[ 3224.720313][ T5751] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[ 3224.730406][ T5751] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12345: Failed to acquire dquot type 0
[ 3224.742681][ T5751] EXT4-fs (loop7): 1 orphan inode deleted
[ 3224.765248][ T5751] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3224.886515][   T30] audit: type=1400 audit(1754535549.301:15739): avc:  denied  { read write } for  pid=5762 comm="syz.4.12352" name="uhid" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[ 3225.103286][ T5769] syz.1.12350[5769] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3225.103380][ T5769] syz.1.12350[5769] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3225.306223][ T5771] overlayfs: conflicting lowerdir path
[ 3227.429303][ T5786] loop7: detected capacity change from 0 to 1024
[ 3227.856458][ T5789] netlink: 'syz.1.12359': attribute type 2 has an invalid length.
[ 3227.921813][ T5786] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 3227.933991][ T5786] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 3227.946223][ T5786] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.12355: bg 0: block 10: padding at end of block bitmap is not set
[ 3227.964185][ T5786] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12355: Failed to acquire dquot type 0
[ 3227.978560][ T5786] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12355: Failed to acquire dquot type 0
[ 3227.992416][ T5786] EXT4-fs error (device loop7): ext4_free_blocks:6223: comm syz.7.12355: Freeing blocks not in datazone - block = 0, count = 4096
[ 3228.009429][ T5786] EXT4-fs error (device loop7): ext4_acquire_dquot:6198: comm syz.7.12355: Failed to acquire dquot type 0
[ 3228.022474][ T5786] EXT4-fs (loop7): 1 orphan inode deleted
[ 3228.030416][ T5786] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3232.329772][ T5819] loop7: detected capacity change from 0 to 512
[ 3232.594829][ T5819] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12367: inode #1: comm syz.7.12367: iget: illegal inode #
[ 3232.628203][ T5819] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12367: error while reading EA inode 1 err=-117
[ 3233.671543][ T5819] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.12367: inode #1: comm syz.7.12367: iget: illegal inode #
[ 3233.694188][ T5832] netlink: 'syz.4.12371': attribute type 2 has an invalid length.
[ 3234.637396][ T5819] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.12367: error while reading EA inode 1 err=-117
[ 3234.911739][ T5819] EXT4-fs (loop7): 1 orphan inode deleted
[ 3234.917728][ T5819] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[ 3235.356544][ T5818] netlink: 'syz.7.12367': attribute type 2 has an invalid length.
[ 3235.888850][T31290] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[ 3236.379293][ T5858] loop7: detected capacity change from 0 to 256
[ 3236.390920][T31290] usb 1-1: Using ep0 maxpacket: 8
[ 3236.396214][T29347] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[ 3236.417428][ T5858] exfat: Deprecated parameter 'namecase'
[ 3236.431691][ T5858] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 3237.766691][T31290] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3237.805177][T29347] usb 5-1: Using ep0 maxpacket: 8
[ 3237.833444][T31290] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3237.986168][ T5876] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3237.993789][ T5876] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3238.001799][ T5876] device bridge_slave_0 entered promiscuous mode
[ 3238.009578][ T5876] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3238.016971][ T5876] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3238.025170][ T5876] device bridge_slave_1 entered promiscuous mode
[ 3238.108232][ T5876] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3238.115561][ T5876] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3238.123197][ T5876] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3238.130377][ T5876] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3238.197411][ T5876] device veth0_vlan entered promiscuous mode
[ 3238.216771][ T5876] device veth1_macvtap entered promiscuous mode
[ 3238.255399][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3238.274326][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3238.296628][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3238.325203][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3238.344325][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3238.371736][T31290] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3238.379824][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3238.393129][T31290] usb 1-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3238.396871][ T5890] loop8: detected capacity change from 0 to 4096
[ 3238.402284][T31290] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3238.417004][T29347] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3238.417041][T29347] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3238.445774][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3238.446954][T31290] usb 1-1: config 0 descriptor??
[ 3238.464943][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3238.467937][T29347] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3238.484259][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3238.500099][T31290] usb 1-1: can't set config #0, error -71
[ 3238.506848][T29347] usb 5-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3238.510426][ T5890] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3238.517356][T31290] usb 1-1: USB disconnect, device number 67
[ 3238.540505][T29347] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3238.555083][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3238.569247][T29347] usb 5-1: config 0 descriptor??
[ 3238.582891][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3238.596936][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3238.605279][ T5890] EXT4-fs (loop8): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[ 3238.648824][   T30] kauditd_printk_skb: 10 callbacks suppressed
[ 3238.648842][   T30] audit: type=1400 audit(1754535562.172:15741): avc:  denied  { setattr } for  pid=5889 comm="syz.8.12391" name="work" dev="loop8" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 3238.736976][T32487] device bridge_slave_1 left promiscuous mode
[ 3238.743480][T32487] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3238.805377][T32487] device bridge_slave_0 left promiscuous mode
[ 3238.815721][   T30] audit: type=1400 audit(1754535562.228:15742): avc:  denied  { rename } for  pid=5889 comm="syz.8.12391" name="#1bb" dev="loop8" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 3238.839810][T32487] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3238.848726][T32487] device veth1_macvtap left promiscuous mode
[ 3238.857203][T32487] device veth0_vlan left promiscuous mode
[ 3238.917063][   T30] audit: type=1400 audit(1754535562.228:15743): avc:  denied  { unlink } for  pid=5889 comm="syz.8.12391" name="#1bb" dev="loop8" ino=21 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[ 3238.960235][T29347] usbhid 5-1:0.0: can't add hid device: -71
[ 3238.989564][ T5902] syz.0.12394[5902] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3238.990009][ T5902] syz.0.12394[5902] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3239.174929][T29347] usbhid: probe of 5-1:0.0 failed with error -71
[ 3239.589264][T29347] usb 5-1: USB disconnect, device number 62
[ 3239.604276][   T30] audit: type=1400 audit(1754535562.228:15744): avc:  denied  { unlink } for  pid=5889 comm="syz.8.12391" name="#1bc" dev="loop8" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 3239.901573][   T30] audit: type=1400 audit(1754535562.238:15745): avc:  denied  { write } for  pid=5889 comm="syz.8.12391" name="/" dev="overlay" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 3239.941866][ T5904] loop8: detected capacity change from 0 to 256
[ 3239.946956][   T30] audit: type=1400 audit(1754535562.238:15746): avc:  denied  { add_name } for  pid=5889 comm="syz.8.12391" name="file2" dev="overlay" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 3239.981783][   T30] audit: type=1400 audit(1754535562.238:15747): avc:  denied  { link } for  pid=5889 comm="syz.8.12391" name="file2" dev="overlay" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 3240.111656][   T30] audit: type=1400 audit(1754535562.238:15748): avc:  denied  { setattr } for  pid=5889 comm="syz.8.12391" name="#20" dev="loop8" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 3240.135347][ T5904] exfat: Deprecated parameter 'namecase'
[ 3240.153890][ T5904] exfat: Deprecated parameter 'utf8'
[ 3240.221863][ T5908] syz.4.12396[5908] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3240.222249][ T5908] syz.4.12396[5908] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3241.009956][   T30] audit: type=1400 audit(1754535562.238:15749): avc:  denied  { write open } for  pid=5889 comm="syz.8.12391" name="#20" dev="loop8" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 3241.046185][   T30] audit: type=1400 audit(1754535562.341:15750): avc:  denied  { unlink } for  pid=5876 comm="syz-executor" name="file2" dev="loop8" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 3241.096414][ T5904] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d)
[ 3241.242897][ T5919] loop8: detected capacity change from 0 to 512
[ 3241.374430][ T5919] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3241.402389][ T5919] EXT4-fs (loop8): Mount option "noacl" will be removed by 3.5
[ 3241.402389][ T5919] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[ 3241.402389][ T5919] 
[ 3242.044309][ T5919] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 3242.087332][ T5919] EXT4-fs (loop8): 1 truncate cleaned up
[ 3242.102759][ T5919] EXT4-fs (loop8): mounted filesystem without journal. Opts: acl,test_dummy_encryption=v1,init_itable=0x000000000000005c,noacl,debug_want_extra_isize=0x0000000000000006,,errors=continue. Quota mode: none.
[ 3243.803458][ T5937] syz.0.12406[5937] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3243.803696][ T5937] syz.0.12406[5937] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3245.193063][ T5950] syz.4.12408[5950] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3245.204987][ T5950] syz.4.12408[5950] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3246.841604][ T5953] syz.1.12407[5953] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3247.493498][ T5960] loop8: detected capacity change from 0 to 1024
[ 3247.624221][ T5963] syz.3.12412[5963] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3247.624319][ T5963] syz.3.12412[5963] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3247.778913][ T5960] EXT4-fs (loop8): revision level too high, forcing read-only mode
[ 3247.806363][ T5960] EXT4-fs (loop8): orphan cleanup on readonly fs
[ 3247.821384][ T5960] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.12404: bg 0: block 10: padding at end of block bitmap is not set
[ 3247.839560][ T5960] Quota error (device loop8): write_blk: dquota write failed
[ 3247.847413][ T5960] Quota error (device loop8): find_free_dqentry: Can't remove block (3) from entry free list
[ 3247.858865][ T5960] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[ 3247.869348][ T5960] EXT4-fs error (device loop8): ext4_acquire_dquot:6198: comm syz.8.12404: Failed to acquire dquot type 0
[ 3247.883869][ T5960] Quota error (device loop8): write_blk: dquota write failed
[ 3247.891612][ T5960] Quota error (device loop8): find_free_dqentry: Can't remove block (3) from entry free list
[ 3247.902740][ T5960] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[ 3247.913288][ T5960] EXT4-fs error (device loop8): ext4_acquire_dquot:6198: comm syz.8.12404: Failed to acquire dquot type 0
[ 3247.928230][ T5960] EXT4-fs error (device loop8): ext4_free_blocks:6223: comm syz.8.12404: Freeing blocks not in datazone - block = 0, count = 4096
[ 3247.947713][ T5960] Quota error (device loop8): write_blk: dquota write failed
[ 3247.955469][ T5960] Quota error (device loop8): find_free_dqentry: Can't remove block (3) from entry free list
[ 3247.966907][ T5960] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[ 3247.977351][ T5960] EXT4-fs error (device loop8): ext4_acquire_dquot:6198: comm syz.8.12404: Failed to acquire dquot type 0
[ 3247.990694][ T5960] EXT4-fs (loop8): 1 orphan inode deleted
[ 3248.017362][ T5960] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3248.466265][ T5960] syz.8.12404 (5960) used greatest stack depth: 19360 bytes left
[ 3248.815819][ T5977] syz.0.12416[5977] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3248.816314][ T5977] syz.0.12416[5977] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3250.131420][T28010] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[ 3251.243567][T28010] usb 9-1: descriptor type invalid, skip
[ 3251.258576][T28010] usb 9-1: descriptor type invalid, skip
[ 3252.463423][T28010] usb 9-1: not running at top speed; connect to a high speed hub
[ 3252.569749][ T6019] syz.3.12430[6019] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3252.570200][ T6019] syz.3.12430[6019] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3252.678393][T28010] usb 9-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 3252.761264][T28010] usb 9-1: language id specifier not provided by device, defaulting to English
[ 3253.006098][T28010] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 3253.019876][T28010] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3253.035995][T28010] usb 9-1: Product: syz
[ 3253.105984][T28010] usb 9-1: Manufacturer: syz
[ 3253.113193][T28010] usb 9-1: SerialNumber: syz
[ 3253.402799][T28010] usb 9-1: can't set config #1, error -71
[ 3253.424227][T28010] usb 9-1: USB disconnect, device number 2
[ 3254.538079][ T6036] syz.1.12434[6036] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3254.538535][ T6036] syz.1.12434[6036] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3255.004074][ T6038] syz.3.12435[6038] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3255.019548][ T6038] syz.3.12435[6038] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3258.617136][ T6076] overlayfs: conflicting lowerdir path
[ 3259.164915][    C0] hrtimer: interrupt took 18954 ns
[ 3259.242602][ T6086] loop8: detected capacity change from 0 to 16
[ 3259.286980][ T6086] erofs: (device loop8): mounted with root inode @ nid 36.
[ 3260.792609][ T6114] netlink: 'syz.1.12462': attribute type 27 has an invalid length.
[ 3260.940933][ T6114] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3260.948659][ T6114] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3261.696745][ T6123] syz.4.12463[6123] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3261.696836][ T6123] syz.4.12463[6123] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3262.813850][ T6115] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3262.833227][ T6115] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3263.007038][ T6115] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3263.014826][ T6115] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3263.045676][ T6115] device veth0_vlan left promiscuous mode
[ 3264.302865][ T6115] device veth0_vlan entered promiscuous mode
[ 3264.430809][ T6115] device veth1_macvtap left promiscuous mode
[ 3264.457736][ T6115] device veth1_macvtap entered promiscuous mode
[ 3264.475854][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3264.484133][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3264.492575][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3264.502015][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3264.511486][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3264.520038][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3264.529774][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3265.503287][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3265.516880][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3265.531260][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3265.540825][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3265.550793][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[ 3265.607628][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3267.925229][ T6148] overlayfs: conflicting lowerdir path
[ 3267.950763][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[ 3267.991675][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3268.027890][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3268.090566][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3268.155056][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3268.176585][  T449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3268.383657][ T6168] syz.0.12478[6168] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3268.384195][ T6168] syz.0.12478[6168] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3269.064899][ T6177] syz.4.12479[6177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3269.076658][ T6177] syz.4.12479[6177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3271.678463][ T6198] syz.8.12487[6198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3271.690350][ T6198] syz.8.12487[6198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3271.705454][ T6198] loop8: detected capacity change from 0 to 128
[ 3271.806153][ T6198] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3271.814160][ T6198] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3275.233611][ T6198] EXT4-fs: error -4 creating inode table initialization thread
[ 3275.241477][ T6198] EXT4-fs (loop8): mount failed
[ 3276.195562][ T6217] syz.1.12492[6217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3276.195660][ T6217] syz.1.12492[6217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3277.467709][ T6235] syz.8.12494[6235] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3277.479446][ T6235] syz.8.12494[6235] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3277.625135][ T6235] loop8: detected capacity change from 0 to 128
[ 3278.034943][ T6237] syz.3.12500[6237] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3278.037479][ T6237] syz.3.12500[6237] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3279.198065][ T6235] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3279.217493][ T6235] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3280.224852][ T6235] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[ 3280.240814][ T6235] ext4 filesystem being mounted at /16/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3280.951135][ T6252] syz.1.12504[6252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3280.952780][ T6252] syz.1.12504[6252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3287.067710][ T6273] syz.3.12510[6273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3287.079764][ T6273] syz.3.12510[6273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3287.676653][ T6280] overlayfs: missing 'lowerdir'
[ 3288.023649][ T6265] loop8: detected capacity change from 0 to 40427
[ 3288.286780][ T6265] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[ 3288.305559][ T6265] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[ 3288.327138][ T6265] F2FS-fs (loop8): invalid crc value
[ 3288.415189][ T6265] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 3288.592218][ T6265] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[ 3288.630715][ T6265] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[ 3289.159398][ T6303] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 3289.257577][ T6303] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 3290.022761][ T6321] syz.0.12526[6321] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3290.022855][ T6321] syz.0.12526[6321] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3291.397566][ T6332] syz.1.12527[6332] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3291.409362][ T6332] syz.1.12527[6332] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3291.664872][ T6335] syz.0.12530[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3291.677008][ T6335] syz.0.12530[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3293.867095][ T6358] syz.8.12534[6358] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3293.878949][ T6358] syz.8.12534[6358] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3293.894870][ T6358] loop8: detected capacity change from 0 to 128
[ 3293.973252][ T6358] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3293.980665][ T6358] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 3294.094325][ T6358] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[ 3294.110601][ T6358] ext4 filesystem being mounted at /22/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3294.964402][ T6366] syz.0.12537[6366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3294.964860][ T6366] syz.0.12537[6366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3296.222735][T29404] usb 2-1: new full-speed USB device number 59 using dummy_hcd
[ 3296.860524][ T6384] syz.0.12542[6384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3296.860621][ T6384] syz.0.12542[6384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3300.475825][ T6426] loop8: detected capacity change from 0 to 256
[ 3300.679364][ T6426] exfat: Deprecated parameter 'namecase'
[ 3301.375195][ T6426] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 3302.447059][ T6445] overlayfs: conflicting lowerdir path
[ 3304.961142][ T6460] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 3305.774249][ T6460] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 3306.061875][ T6458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3306.075378][ T6458] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3306.085025][ T6458] device bridge_slave_0 entered promiscuous mode
[ 3306.158567][ T6458] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3306.193585][ T6458] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3306.209509][ T6458] device bridge_slave_1 entered promiscuous mode
[ 3307.485588][ T6503] syz.1.12581[6503] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3307.485675][ T6503] syz.1.12581[6503] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3307.504080][ T6503] syz.1.12581[6503] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3307.516417][ T6503] syz.1.12581[6503] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3307.530032][ T6503] 9pnet: Insufficient options for proto=fd
[ 3307.592462][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3307.600323][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3307.609885][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3307.618881][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3307.628029][T32487] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3307.635330][T32487] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3307.929179][ T6458] device veth0_vlan entered promiscuous mode
[ 3307.942268][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3307.950647][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3307.960062][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3307.969449][T32487] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3307.976570][T32487] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3307.984445][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3307.993061][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3308.002016][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3308.011840][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3308.022045][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3308.032415][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3308.042567][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3308.052218][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3308.080552][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3308.093140][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3308.229770][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3308.240246][ T6458] device veth1_macvtap entered promiscuous mode
[ 3308.251841][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3308.261002][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3308.271166][ T5282] device bridge_slave_1 left promiscuous mode
[ 3308.277649][ T5282] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3308.286304][ T5282] device bridge_slave_0 left promiscuous mode
[ 3308.292794][ T5282] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3308.305191][ T5282] device veth1_macvtap left promiscuous mode
[ 3308.312147][ T5282] device veth0_vlan left promiscuous mode
[ 3309.821991][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3309.830574][T32487] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3310.348674][ T6550] serio: Serial port ptm0
[ 3313.359756][ T6589] loop9: detected capacity change from 0 to 1024
[ 3313.631058][ T6589] EXT4-fs (loop9): revision level too high, forcing read-only mode
[ 3313.896166][ T6589] EXT4-fs (loop9): orphan cleanup on readonly fs
[ 3314.719874][ T6589] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.12601: bg 0: block 10: padding at end of block bitmap is not set
[ 3314.745671][ T6589] Quota error (device loop9): write_blk: dquota write failed
[ 3314.759718][ T6589] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3314.787028][ T6589] Quota error (device loop9): qtree_write_dquot: Error -28 occurred while creating quota
[ 3315.517942][ T6589] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12601: Failed to acquire dquot type 0
[ 3315.531548][ T6589] Quota error (device loop9): write_blk: dquota write failed
[ 3315.539318][ T6589] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3315.577460][ T6589] Quota error (device loop9): qtree_write_dquot: Error -28 occurred while creating quota
[ 3315.588047][ T6589] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12601: Failed to acquire dquot type 0
[ 3315.686350][ T6589] EXT4-fs error (device loop9): ext4_free_blocks:6223: comm syz.9.12601: Freeing blocks not in datazone - block = 0, count = 4096
[ 3315.778712][ T6589] Quota error (device loop9): write_blk: dquota write failed
[ 3316.025502][ T6605] syz.4.12605[6605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3316.025597][ T6605] syz.4.12605[6605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3316.106598][ T6589] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3316.655736][ T6589] Quota error (device loop9): qtree_write_dquot: Error -28 occurred while creating quota
[ 3316.716353][ T6589] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12601: Failed to acquire dquot type 0
[ 3316.773862][ T6589] EXT4-fs (loop9): 1 orphan inode deleted
[ 3316.799738][ T6589] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3318.607848][ T6635] cgroup: Need name or subsystem set
[ 3318.985362][   T30] audit: type=1400 audit(1754535636.967:15751): avc:  denied  { remount } for  pid=6629 comm="syz.3.12617" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 3320.631927][T28010] usb 4-1: new full-speed USB device number 64 using dummy_hcd
[ 3321.769237][T28010] usb 4-1: descriptor type invalid, skip
[ 3321.775094][T28010] usb 4-1: descriptor type invalid, skip
[ 3321.833389][T28010] usb 4-1: not running at top speed; connect to a high speed hub
[ 3321.929628][T28010] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 3321.993753][T28010] usb 4-1: language id specifier not provided by device, defaulting to English
[ 3322.186213][T28010] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 3322.216964][T28010] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3322.457671][ T6673] overlayfs: conflicting lowerdir path
[ 3323.679873][ T6679] syz.9.12631[6679] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3323.679981][ T6679] syz.9.12631[6679] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3323.695122][ T6679] loop9: detected capacity change from 0 to 128
[ 3323.762012][ T6679] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 3323.769276][ T6679] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 3323.884393][ T6679] EXT4-fs (loop9): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[ 3323.905413][ T6679] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3324.324186][T28010] usb 4-1: Product: syz
[ 3324.328518][T28010] usb 4-1: Manufacturer: syz
[ 3324.333323][T28010] usb 4-1: SerialNumber: syz
[ 3324.367158][T28010] usb 4-1: can't set config #1, error -71
[ 3324.399864][T28010] usb 4-1: USB disconnect, device number 64
[ 3324.695878][ T6687] syz.4.12633[6687] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3324.695976][ T6687] syz.4.12633[6687] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3325.328227][ T6689] 9pnet: Insufficient options for proto=fd
[ 3326.082335][ T6713] overlayfs: conflicting lowerdir path
[ 3326.110019][ T6716] cgroup: Need name or subsystem set
[ 3326.884513][ T6716] loop9: detected capacity change from 0 to 128
[ 3326.924496][ T6716] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 3326.944117][ T6716] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 3327.605238][ T6720] 9pnet: Insufficient options for proto=fd
[ 3327.623921][ T6722] overlayfs: missing 'lowerdir'
[ 3327.650094][ T6725] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 3327.662259][ T6725] SELinux: failed to load policy
[ 3328.770754][ T6740] loop9: detected capacity change from 0 to 128
[ 3328.856419][ T6740] EXT4-fs (loop9): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3328.872062][ T6740] ext4 filesystem being mounted at /11/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3329.056943][ T6735] overlayfs: conflicting lowerdir path
[ 3329.878360][ T6755] loop9: detected capacity change from 0 to 128
[ 3329.954685][ T6755] EXT4-fs (loop9): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[ 3329.971463][ T6755] ext4 filesystem being mounted at /12/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3335.765443][ T6799] serio: Serial port ptm0
[ 3335.859440][T22759] usb 2-1: new full-speed USB device number 60 using dummy_hcd
[ 3337.195776][T22759] usb 2-1: descriptor type invalid, skip
[ 3337.202158][T22759] usb 2-1: descriptor type invalid, skip
[ 3337.316973][T22759] usb 2-1: not running at top speed; connect to a high speed hub
[ 3337.687625][T22759] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 3337.741013][T22759] usb 2-1: language id specifier not provided by device, defaulting to English
[ 3337.880046][T22759] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 3337.889925][T22759] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3337.898438][T22759] usb 2-1: Product: syz
[ 3337.902966][T22759] usb 2-1: Manufacturer: syz
[ 3337.908203][T22759] usb 2-1: SerialNumber: syz
[ 3338.278079][T22759] cdc_ncm 2-1:1.0: bind() failure
[ 3338.394666][T22759] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[ 3338.503591][T22759] cdc_ncm 2-1:1.1: bind() failure
[ 3339.032925][T22759] usb 2-1: USB disconnect, device number 60
[ 3339.051903][ T6834] syz.3.12685[6834] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3339.052006][ T6834] syz.3.12685[6834] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3339.063896][   T30] audit: type=1326 audit(1754535656.096:15752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.9.12683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3339.145974][   T30] audit: type=1326 audit(1754535656.096:15753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.9.12683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3339.179240][   T30] audit: type=1326 audit(1754535656.096:15754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.9.12683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3339.204681][   T30] audit: type=1326 audit(1754535656.096:15755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.9.12683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3339.291182][   T30] audit: type=1326 audit(1754535656.096:15756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6829 comm="syz.9.12683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3339.315951][ T6840] serio: Serial port ptm0
[ 3343.328736][ T6870] overlayfs: conflicting lowerdir path
[ 3345.994097][T22759] usb 4-1: new full-speed USB device number 65 using dummy_hcd
[ 3346.795089][ T6922] loop9: detected capacity change from 0 to 128
[ 3347.719445][ T6926] syz.1.12710[6926] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3347.719542][ T6926] syz.1.12710[6926] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3347.944102][T22759] usb 4-1: descriptor type invalid, skip
[ 3347.961428][T22759] usb 4-1: descriptor type invalid, skip
[ 3351.724419][ T6950] cgroup: Need name or subsystem set
[ 3352.654464][T22759] usb 4-1: unable to read config index 0 descriptor/start: -71
[ 3352.674240][T22759] usb 4-1: can't read configurations, error -71
[ 3352.894024][ T6958] syz.4.12724[6958] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3352.895326][ T6958] syz.4.12724[6958] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3352.939046][ T6958] syz.4.12724[6958] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3352.977675][ T6958] syz.4.12724[6958] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3354.074699][ T6975] syz.0.12727[6975] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3354.093225][ T6975] syz.0.12727[6975] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3354.267843][ T6987] cgroup: Need name or subsystem set
[ 3357.794977][T31290] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[ 3358.043940][ T7006] overlayfs: conflicting lowerdir path
[ 3358.940470][T31290] usb 2-1: Using ep0 maxpacket: 8
[ 3359.143766][T31290] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3359.248156][T31290] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3359.258342][T31290] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3359.272202][T31290] usb 2-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3359.281327][T31290] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3359.290796][T31290] usb 2-1: config 0 descriptor??
[ 3359.656745][T31290] usbhid 2-1:0.0: can't add hid device: -71
[ 3359.663173][T31290] usbhid: probe of 2-1:0.0 failed with error -71
[ 3359.678613][T31290] usb 2-1: USB disconnect, device number 61
[ 3359.775167][T29404] usb 4-1: new high-speed USB device number 67 using dummy_hcd
[ 3361.319215][ T7034] loop9: detected capacity change from 0 to 4096
[ 3361.354921][ T7037] syz.1.12749[7037] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3361.355015][ T7037] syz.1.12749[7037] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3361.369946][T29404] usb 4-1: Using ep0 maxpacket: 8
[ 3361.439508][ T7034] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 3361.465977][ T7034] EXT4-fs (loop9): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[ 3362.072834][T29404] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3362.096713][T29404] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3362.121996][T29404] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3362.137472][T29404] usb 4-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3362.147900][T29404] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3362.163838][T29404] usb 4-1: config 0 descriptor??
[ 3362.733425][ T7048] overlayfs: conflicting lowerdir path
[ 3363.277096][ T7054] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 3363.285867][ T7054] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 3363.295297][T29404] usbhid 4-1:0.0: can't add hid device: -71
[ 3363.302141][T29404] usbhid: probe of 4-1:0.0 failed with error -71
[ 3363.315185][T29404] usb 4-1: USB disconnect, device number 67
[ 3364.502302][ T7079] loop9: detected capacity change from 0 to 1024
[ 3366.035248][ T7079] EXT4-fs (loop9): revision level too high, forcing read-only mode
[ 3366.064887][ T7079] EXT4-fs (loop9): orphan cleanup on readonly fs
[ 3366.098081][ T7079] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.12762: bg 0: block 10: padding at end of block bitmap is not set
[ 3366.260150][ T7079] Quota error (device loop9): write_blk: dquota write failed
[ 3366.322601][ T7079] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3366.346882][ T7079] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota
[ 3366.471567][ T7079] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12762: Failed to acquire dquot type 0
[ 3366.503137][ T7079] Quota error (device loop9): write_blk: dquota write failed
[ 3366.547881][ T7079] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3366.637185][ T7101] cgroup: Need name or subsystem set
[ 3366.865006][ T7079] Quota error (device loop9): qtree_write_dquot: Error -28 occurred while creating quota
[ 3367.107673][ T7079] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12762: Failed to acquire dquot type 0
[ 3367.364978][ T7079] EXT4-fs error (device loop9): ext4_free_blocks:6223: comm syz.9.12762: Freeing blocks not in datazone - block = 0, count = 4096
[ 3367.574955][ T7079] Quota error (device loop9): write_blk: dquota write failed
[ 3367.627359][ T7079] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3367.684837][ T7079] Quota error (device loop9): qtree_write_dquot: Error -28 occurred while creating quota
[ 3367.696539][ T7079] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12762: Failed to acquire dquot type 0
[ 3367.717598][ T7079] EXT4-fs (loop9): 1 orphan inode deleted
[ 3367.738810][ T7079] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3368.404595][ T7119] cgroup: Need name or subsystem set
[ 3370.549646][ T7137] syz.1.12777[7137] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3370.551961][ T7137] syz.1.12777[7137] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3371.364879][ T7149] cgroup: Need name or subsystem set
[ 3371.707946][ T7151] loop9: detected capacity change from 0 to 512
[ 3371.827781][ T7151] EXT4-fs error (device loop9): ext4_orphan_get:1401: inode #15: comm syz.9.12784: casefold flag without casefold feature
[ 3371.984535][ T7151] EXT4-fs error (device loop9): ext4_orphan_get:1406: comm syz.9.12784: couldn't read orphan inode 15 (err -117)
[ 3372.477867][ T7151] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3372.641078][   T30] audit: type=1400 audit(1754535687.516:15757): avc:  denied  { search } for  pid=7163 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3372.678108][   T30] audit: type=1400 audit(1754535687.516:15758): avc:  denied  { getattr } for  pid=7163 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=495 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 3373.787371][   T30] audit: type=1400 audit(1754535687.544:15759): avc:  denied  { write } for  pid=7169 comm="rm" name="resolv.conf" dev="tmpfs" ino=486 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3373.810521][   T30] audit: type=1400 audit(1754535687.544:15760): avc:  denied  { remove_name } for  pid=7169 comm="rm" name="eth0.dhcp" dev="tmpfs" ino=495 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3374.790664][   T30] audit: type=1400 audit(1754535687.544:15761): avc:  denied  { unlink } for  pid=7169 comm="rm" name="eth0.dhcp" dev="tmpfs" ino=495 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 3374.891217][   T30] audit: type=1400 audit(1754535687.544:15762): avc:  denied  { getattr } for  pid=7163 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=486 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3374.999325][   T30] audit: type=1400 audit(1754535687.544:15763): avc:  denied  { add_name } for  pid=7163 comm="dhcpcd-run-hook" name="eth0.dhcp" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3375.095479][   T30] audit: type=1400 audit(1754535687.544:15764): avc:  denied  { create } for  pid=7163 comm="dhcpcd-run-hook" name="eth0.dhcp" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 3375.379683][   T30] audit: type=1400 audit(1754535687.544:15765): avc:  denied  { write open } for  pid=7163 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=20043 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 3375.381153][ T7218] syz.9.12800[7218] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3375.414978][   T30] audit: type=1400 audit(1754535687.544:15766): avc:  denied  { read } for  pid=7170 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=486 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3375.436426][ T7218] syz.9.12800[7218] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3375.644852][ T7219] syz.9.12800[7219] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3375.803504][ T7219] syz.9.12800[7219] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3376.019775][ T7227] overlayfs: conflicting lowerdir path
[ 3378.368929][ T7273] syz.3.12818[7273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3378.369027][ T7273] syz.3.12818[7273] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3378.618647][ T7283] overlayfs: conflicting lowerdir path
[ 3380.088477][ T7253] loop9: detected capacity change from 0 to 131072
[ 3380.142476][   T30] kauditd_printk_skb: 9 callbacks suppressed
[ 3380.142493][   T30] audit: type=1326 audit(1754535694.531:15776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7296 comm="syz.3.12824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3380.231364][   T30] audit: type=1326 audit(1754535694.578:15777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7296 comm="syz.3.12824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3380.258371][   T30] audit: type=1326 audit(1754535694.578:15778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7296 comm="syz.3.12824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3380.389093][ T7312] cgroup: Need name or subsystem set
[ 3381.729042][ T7319] syz.0.12831[7319] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3381.729139][ T7319] syz.0.12831[7319] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3382.369563][ T7330] overlayfs: conflicting lowerdir path
[ 3383.075862][T28010] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[ 3384.277278][T28010] usb 5-1: Using ep0 maxpacket: 8
[ 3384.294257][ T7357] syz.0.12843[7357] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3384.294346][ T7357] syz.0.12843[7357] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3384.502180][T28010] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3385.271387][T28010] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3385.281490][T28010] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3385.295833][T28010] usb 5-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3385.327382][T28010] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3385.379485][T28010] usb 5-1: config 0 descriptor??
[ 3385.404839][T28010] usb 5-1: can't set config #0, error -71
[ 3385.427286][T28010] usb 5-1: USB disconnect, device number 63
[ 3385.540201][ T7380] overlayfs: conflicting lowerdir path
[ 3386.414772][ T7383] syz.0.12851[7383] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3386.414872][ T7383] syz.0.12851[7383] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3388.245314][ T7422] syz.3.12863[7422] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3388.257296][ T7422] syz.3.12863[7422] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3389.210031][   T30] audit: type=1326 audit(1754535703.015:15779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.3.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3389.257764][   T30] audit: type=1326 audit(1754535703.015:15780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.3.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3389.374622][   T30] audit: type=1326 audit(1754535703.165:15781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.3.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3389.476707][ T7443] overlayfs: conflicting lowerdir path
[ 3389.705795][   T30] audit: type=1326 audit(1754535703.165:15782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.3.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3389.731021][   T30] audit: type=1326 audit(1754535703.165:15783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7428 comm="syz.3.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3389.974817][ T7457] overlayfs: failed to resolve './file1': -2
[ 3390.986103][ T7465] syz.0.12875[7465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3390.986200][ T7465] syz.0.12875[7465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3391.038373][ T7469] loop9: detected capacity change from 0 to 4096
[ 3391.154326][ T7469] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 3391.499981][ T7469] EXT4-fs (loop9): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[ 3391.955438][ T7489] loop9: detected capacity change from 0 to 1024
[ 3393.898466][ T7504] syz.1.12889[7504] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3393.898569][ T7504] syz.1.12889[7504] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3394.319317][ T7513] syz.1.12891[7513] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3394.570726][ T7513] syz.1.12891[7513] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3395.251698][ T7530] syz.1.12894[7530] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3395.293108][ T7530] syz.1.12894[7530] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3395.628019][T12385] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[ 3396.624878][ T7551] loop9: detected capacity change from 0 to 8192
[ 3396.713552][ T7552] overlayfs: conflicting lowerdir path
[ 3397.281060][   T30] audit: type=1326 audit(1754535710.564:15784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.3.12909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3397.305780][   T30] audit: type=1326 audit(1754535710.564:15785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.3.12909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3397.332658][   T30] audit: type=1326 audit(1754535710.564:15786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.3.12909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3397.361461][   T30] audit: type=1326 audit(1754535710.564:15787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.3.12909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3397.437109][   T30] audit: type=1326 audit(1754535710.564:15788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7566 comm="syz.3.12909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3397.490709][T12385] usb 1-1: Using ep0 maxpacket: 8
[ 3397.620585][T12385] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 3397.641018][T12385] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 3397.652871][ T7582] overlayfs: conflicting lowerdir path
[ 3397.662040][T12385] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 3397.678029][T12385] usb 1-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[ 3397.688932][T12385] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3397.698374][T12385] usb 1-1: config 0 descriptor??
[ 3397.710435][ T7584] syz.9.12913[7584] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3397.710525][ T7584] syz.9.12913[7584] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3397.728507][ T7584] loop9: detected capacity change from 0 to 128
[ 3397.764326][ T7584] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 3397.774624][ T7584] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 3397.897610][ T7584] EXT4-fs (loop9): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[ 3397.919242][ T7584] ext4 filesystem being mounted at /67/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 3398.549243][T12385] usbhid 1-1:0.0: can't add hid device: -71
[ 3398.555587][T12385] usbhid: probe of 1-1:0.0 failed with error -71
[ 3398.578207][T12385] usb 1-1: USB disconnect, device number 68
[ 3399.144637][   T30] audit: type=1326 audit(1754535712.304:15789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.9.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3399.615219][   T30] audit: type=1326 audit(1754535712.341:15790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.9.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3399.657600][   T30] audit: type=1326 audit(1754535712.341:15791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.9.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3400.497945][ T7624] loop9: detected capacity change from 0 to 512
[ 3400.506616][   T30] audit: type=1326 audit(1754535712.341:15792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7613 comm="syz.9.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dfd4f5be9 code=0x7ffc0000
[ 3400.560753][ T7624] EXT4-fs error (device loop9): ext4_orphan_get:1401: inode #15: comm syz.9.12927: casefold flag without casefold feature
[ 3400.574325][ T7624] EXT4-fs error (device loop9): ext4_orphan_get:1406: comm syz.9.12927: couldn't read orphan inode 15 (err -117)
[ 3400.644873][ T7624] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3402.769309][   T30] audit: type=1326 audit(1754535715.690:15793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7655 comm="syz.1.12938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8435123be9 code=0x7ffc0000
[ 3402.927509][   T30] audit: type=1326 audit(1754535715.727:15794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7655 comm="syz.1.12938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8435123be9 code=0x7ffc0000
[ 3402.952102][ T7662] syz.4.12940[7662] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3402.952190][ T7662] syz.4.12940[7662] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3403.129376][   T30] audit: type=1326 audit(1754535715.727:15795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7655 comm="syz.1.12938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f8435123be9 code=0x7ffc0000
[ 3403.221477][   T30] audit: type=1326 audit(1754535715.727:15796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7655 comm="syz.1.12938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8435123be9 code=0x7ffc0000
[ 3403.280349][   T30] audit: type=1326 audit(1754535715.727:15797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7655 comm="syz.1.12938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8435123be9 code=0x7ffc0000
[ 3403.954176][ T7682] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 3403.966417][ T7682] SELinux: failed to load policy
[ 3404.625882][ T7704] loop9: detected capacity change from 0 to 1024
[ 3404.749230][ T7704] EXT4-fs (loop9): revision level too high, forcing read-only mode
[ 3404.758076][ T7704] EXT4-fs (loop9): orphan cleanup on readonly fs
[ 3404.765675][ T7704] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.12948: bg 0: block 10: padding at end of block bitmap is not set
[ 3404.780556][ T7704] Quota error (device loop9): write_blk: dquota write failed
[ 3404.788097][ T7704] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3404.798540][ T7704] Quota error (device loop9): qtree_write_dquot: Error -28 occurred while creating quota
[ 3404.808705][ T7704] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12948: Failed to acquire dquot type 0
[ 3404.821195][ T7704] Quota error (device loop9): write_blk: dquota write failed
[ 3404.829442][ T7704] Quota error (device loop9): find_free_dqentry: Can't remove block (3) from entry free list
[ 3404.839974][ T7704] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12948: Failed to acquire dquot type 0
[ 3404.852329][ T7704] EXT4-fs error (device loop9): ext4_free_blocks:6223: comm syz.9.12948: Freeing blocks not in datazone - block = 0, count = 4096
[ 3404.866926][ T7704] EXT4-fs error (device loop9): ext4_acquire_dquot:6198: comm syz.9.12948: Failed to acquire dquot type 0
[ 3404.879395][ T7704] EXT4-fs (loop9): 1 orphan inode deleted
[ 3404.885477][ T7704] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3405.385697][ T7713] syz.0.12955[7713] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3405.385790][ T7713] syz.0.12955[7713] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3405.496781][ T7720] syz.1.12956[7720] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3405.509549][ T7720] syz.1.12956[7720] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3407.448765][ T7744] cgroup: Need name or subsystem set
[ 3407.497175][ T7744] loop9: detected capacity change from 0 to 128
[ 3407.574078][ T7744] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 3407.588895][ T7744] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 3409.101723][ T7762] loop9: detected capacity change from 0 to 512
[ 3409.305900][ T7762] EXT4-fs error (device loop9): ext4_orphan_get:1401: inode #15: comm syz.9.12968: casefold flag without casefold feature
[ 3409.320385][ T7762] EXT4-fs error (device loop9): ext4_orphan_get:1406: comm syz.9.12968: couldn't read orphan inode 15 (err -117)
[ 3409.333122][ T7762] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 3409.356996][ T7772] syz.3.12969[7772] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3409.358751][ T7772] syz.3.12969[7772] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3416.507815][ T7895] syz.4.13011[7895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3416.519590][ T7895] syz.4.13011[7895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 3417.485615][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 3417.485649][   T30] audit: type=1326 audit(1754535729.469:15798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.3.13018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3417.892949][ T7917] overlayfs: conflicting lowerdir path
[ 3418.325893][   T30] audit: type=1326 audit(1754535729.628:15799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.3.13018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3418.365824][   T30] audit: type=1326 audit(1754535729.628:15800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.3.13018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3418.412544][   T30] audit: type=1326 audit(1754535729.628:15801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7909 comm="syz.3.13018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb945e33be9 code=0x7ffc0000
[ 3422.761293][ T7964] loop9: detected capacity change from 0 to 4096
[ 3423.016677][ T7971] overlayfs: conflicting lowerdir path
[ 3423.901272][ T7964] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 3423.994411][ T7964] EXT4-fs (loop9): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[ 3424.886171][ T7989] general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN
[ 3424.898240][ T7989] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]
[ 3424.907065][ T7989] CPU: 0 PID: 7989 Comm: syz.9.13033 Not tainted 5.15.189-syzkaller-00091-gf32b52534f1d #0
[ 3424.917860][ T7989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 3424.928074][ T7989] RIP: 0010:security_inode_getattr+0x47/0x130
[ 3424.934386][ T7989] Code: 48 ff 4c 8d 73 08 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 67 a8 86 ff 4d 8b 36 49 83 c6 30 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 4a a8 86 ff 4d 8b 36 49 83 c6 0c
[ 3424.954762][ T7989] RSP: 0018:ffffc90000e17880 EFLAGS: 00010206
[ 3424.961172][ T7989] RAX: 0000000000000006 RBX: ffffc90000e179a0 RCX: 0000000000080000
[ 3424.969182][ T7989] RDX: ffffc90004375000 RSI: 0000000000000394 RDI: 0000000000000395
[ 3424.977426][ T7989] RBP: ffffc90000e178a8 R08: dffffc0000000000 R09: ffffc90000e17a90
[ 3424.985440][ T7989] R10: 0000000000000000 R11: 0000000000000008 R12: ffffc90000e179a0
[ 3424.993808][ T7989] R13: dffffc0000000000 R14: 0000000000000030 R15: ffffc90000e17db0
[ 3425.001982][ T7989] FS:  00007f9dfbf3d6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 3425.011054][ T7989] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3425.018008][ T7989] CR2: 0000001b2e620ff8 CR3: 0000000111944000 CR4: 00000000003506b0
[ 3425.026090][ T7989] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3425.034953][ T7989] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3425.043601][ T7989] Call Trace:
[ 3425.047092][ T7989]  <TASK>
[ 3425.050654][ T7989]  vfs_getattr+0x29/0x310
[ 3425.055445][ T7989]  ? ovl_path_lowerdata+0x12f/0x1c0
[ 3425.060766][ T7989]  ovl_getattr+0x327/0xe20
[ 3425.065308][ T7989]  ? ovl_setattr+0x460/0x460
[ 3425.070397][ T7989]  ? avc_has_perm+0x158/0x240
[ 3425.075605][ T7989]  ? avc_has_perm_noaudit+0x460/0x460
[ 3425.081094][ T7989]  ? debug_smp_processor_id+0x17/0x20
[ 3425.086879][ T7989]  ? kasan_quarantine_put+0x34/0x190
[ 3425.092828][ T7989]  ? memcpy+0x56/0x70
[ 3425.098108][ T7989]  ? ovl_setattr+0x460/0x460
[ 3425.102829][ T7989]  vfs_statx+0x3f1/0xa60
[ 3425.107123][ T7989]  ? vfs_fstatat+0x40/0x40
[ 3425.111863][ T7989]  __se_sys_newstat+0xb8/0x320
[ 3425.116653][ T7989]  ? __x64_sys_newstat+0x70/0x70
[ 3425.121720][ T7989]  ? do_user_addr_fault+0xa64/0x1180
[ 3425.127216][ T7989]  ? do_kern_addr_fault+0x80/0x80
[ 3425.132347][ T7989]  ? __set_current_blocked+0x204/0x230
[ 3425.138004][ T7989]  ? debug_smp_processor_id+0x17/0x20
[ 3425.143387][ T7989]  __x64_sys_newstat+0x5b/0x70
[ 3425.148487][ T7989]  x64_sys_call+0x377/0x9a0
[ 3425.153034][ T7989]  do_syscall_64+0x4c/0xa0
[ 3425.158201][ T7989]  ? clear_bhb_loop+0x50/0xa0
[ 3425.163296][ T7989]  ? clear_bhb_loop+0x50/0xa0
[ 3425.168065][ T7989]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 3425.174152][ T7989] RIP: 0033:0x7f9dfd4f5be9
[ 3425.178691][ T7989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 3425.198873][ T7989] RSP: 002b:00007f9dfbf3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[ 3425.207473][ T7989] RAX: ffffffffffffffda RBX: 00007f9dfd71d090 RCX: 00007f9dfd4f5be9
[ 3425.215558][ T7989] RDX: 0000000000000000 RSI: 0000200000000800 RDI: 00002000000007c0
[ 3425.223544][ T7989] RBP: 00007f9dfd578e19 R08: 0000000000000000 R09: 0000000000000000
[ 3425.231615][ T7989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3425.240136][ T7989] R13: 00007f9dfd71d128 R14: 00007f9dfd71d090 R15: 00007ffc7d7ba118
[ 3425.248123][ T7989]  </TASK>
[ 3425.251310][ T7989] Modules linked in:
[ 3425.255700][ T7989] ---[ end trace 8960d4ba8d23e09d ]---
[ 3425.258507][   T30] audit: type=1400 audit(1754535736.737:15802): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 3425.261557][ T7989] RIP: 0010:security_inode_getattr+0x47/0x130
[ 3425.291544][ T7989] Code: 48 ff 4c 8d 73 08 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 67 a8 86 ff 4d 8b 36 49 83 c6 30 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 4a a8 86 ff 4d 8b 36 49 83 c6 0c
[ 3425.324998][ T7989] RSP: 0018:ffffc90000e17880 EFLAGS: 00010206
[ 3425.331623][ T7989] RAX: 0000000000000006 RBX: ffffc90000e179a0 RCX: 0000000000080000
[ 3425.445553][ T7989] RDX: ffffc90004375000 RSI: 0000000000000394 RDI: 0000000000000395
[ 3425.461474][ T7989] RBP: ffffc90000e178a8 R08: dffffc0000000000 R09: ffffc90000e17a90
[ 3425.470065][ T7989] R10: 0000000000000000 R11: 0000000000000008 R12: ffffc90000e179a0
[ 3425.478263][   T30] audit: type=1400 audit(1754535736.737:15803): avc:  denied  { search } for  pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3425.500836][ T7989] R13: dffffc0000000000 R14: 0000000000000030 R15: ffffc90000e17db0
[ 3425.538998][   T30] audit: type=1400 audit(1754535736.737:15804): avc:  denied  { write } for  pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3425.561534][   T30] audit: type=1400 audit(1754535736.737:15805): avc:  denied  { add_name } for  pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3425.584314][   T30] audit: type=1400 audit(1754535736.737:15806): avc:  denied  { create } for  pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 3425.607418][   T30] audit: type=1400 audit(1754535736.737:15807): avc:  denied  { append open } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 3425.633079][   T30] audit: type=1400 audit(1754535736.737:15808): avc:  denied  { getattr } for  pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 3425.668798][ T7989] FS:  00007f9dfbf3d6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 3425.688337][ T7989] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3425.702568][ T7989] CR2: 0000000000000000 CR3: 0000000111944000 CR4: 00000000003506b0
[ 3425.715648][ T7989] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 3425.724084][ T7989] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 3425.732594][ T7989] Kernel panic - not syncing: Fatal exception
[ 3425.739365][ T7989] Kernel Offset: disabled
[ 3425.744080][ T7989] Rebooting in 86400 seconds..