last executing test programs:

3m1.595055713s ago: executing program 32 (id=645):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x56b, &(0x7f00000019c0)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='ext4_mb_release_inode_pa\x00', r0}, 0x18)
fallocate(r1, 0x20, 0x4000, 0x8000)

2m44.484606954s ago: executing program 33 (id=1052):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000240)='percpu_alloc_percpu\x00', r1}, 0x66)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xaa}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0xe}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

2m40.717986989s ago: executing program 34 (id=1115):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
io_setup(0x8, &(0x7f0000004200)=<r2=>0x0)
io_pgetevents(r2, 0x3, 0x3, &(0x7f0000000440)=[{}, {}, {}], &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

2m38.742945208s ago: executing program 35 (id=1176):
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000a80)={0x0, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x8000, 0x0)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)

2m36.942973275s ago: executing program 36 (id=1216):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x48010}, 0x4)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f00000007c0)={0x1f, 0x4, 0x70})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000000009c02"])

2m33.275478989s ago: executing program 37 (id=1273):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0x800003)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1d"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000009, 0x12, r1, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x2)

2m19.640383019s ago: executing program 38 (id=1570):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="dc00000000010104000000000000000002000000240002801400018008000100e000000108000200e00000010c000280050001000000000008000480040003800800084000000000080008400000000734000f"], 0xdc}}, 0x0)

2m6.60088455s ago: executing program 2 (id=1907):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
pipe2$9p(&(0x7f0000002180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='9p_protocol_dump\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
syz_usb_connect(0x5, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x92, 0xec, 0xc6, 0x20, 0x5ac, 0x77c2, 0xeb3a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x20, 0x0, [{{0x9, 0x4, 0xc4, 0x1, 0x2, 0xff, 0xfd, 0x1, 0x80, [], [{{0x9, 0x5, 0x2, 0x2, 0x210, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)

2m5.207269131s ago: executing program 2 (id=1936):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

2m5.149461712s ago: executing program 2 (id=1938):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ppoll(&(0x7f0000000080)=[{r0, 0x8100}, {r0, 0x4280}], 0x2, 0x0, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0x40045402, &(0x7f0000000040)=0x1)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1, 0x7}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000240)={0x4, 0x8000, 0x0, 0x0, 0x1d})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)

2m4.318837044s ago: executing program 2 (id=1959):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x208000, &(0x7f00000001c0)={[{@noblock_validity}, {}, {@abort}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@barrier}]}, 0x3, 0x578, &(0x7f0000002b40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwritev2(r0, &(0x7f0000000600)=[{&(0x7f0000000080)='W', 0x1}], 0x1, 0x800be6b, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0x8000c61)

2m4.258651755s ago: executing program 2 (id=1960):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001980)=""/197, 0xc5}, 0x1}], 0x1, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0x12, &(0x7f00000001c0)=0x3fd, 0x4)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000140)=0x30, 0x4)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x3, 0x28, 0x68, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x4, 0xc6}]}}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

2m4.040427388s ago: executing program 2 (id=1961):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x800)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0x81, 0xd, 0x2c2f, 0x7f, 0x1, "1381146fee396d8d24902b030211e952c832fe"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000018c0)=0x13)

2m4.022842278s ago: executing program 39 (id=1961):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x800)
r1 = syz_open_pts(r0, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0x81, 0xd, 0x2c2f, 0x7f, 0x1, "1381146fee396d8d24902b030211e952c832fe"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000018c0)=0x13)

1m54.716003815s ago: executing program 8 (id=2206):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x80)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x9588, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

1m54.715887645s ago: executing program 8 (id=2207):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328)
r1 = socket$inet6(0x10, 0x2, 0x4)
sendto$inet6(r1, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0)

1m54.223106162s ago: executing program 8 (id=2221):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
eventfd(0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, 0x0, 0x0})

1m54.155760903s ago: executing program 8 (id=2223):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x1000800, &(0x7f00000002c0)={[{@discard}, {@umask={'umask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x9}}, {@umask={'umask', 0x3d, 0xe}}, {@iocharset={'iocharset', 0x3d, 'maccenteuro'}}, {@discard}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@errors_remount}, {@errors_continue}, {@errors_continue}]}, 0x1, 0x1524, &(0x7f0000002280)="$eJzs3AuYTlXbOPD7XmvtMSbpaZLDsNa6N09yWCZJckiSQ5IkSZJTQtIkryQkhpyShiQkhyE5DCE5TEwa5/P5kJAkTZKE5JSs/yX8vb31fu/7fm/f67u+uX/XtS/rfva+1773cz+HvbeZ+a7zkBqNalZtQETwb8GL/yQDQCwADACA6wAgAICy8WXjL6zPKTH539sJ+3M9kna1K2BXE/c/e+P+Z2/c/+yN+5+9cf+zN+5/9sb9z964/4xlZ5umFbiel+y78P3/7Iy///8PySo15qs1pW7sAhDzz6Zw/7M37v//WcE/sxH3P3vj/mdXsVe7APa/AL//s4Mcf3cN9z974/4zlp1d7fvPV3uBSPZ+Dq72648xxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGWPZw2l+hAODy+GrXxRhjjDHGGGOMsT+Pz3G1K2CMMcYYY4wxxtj/PAQBEhQEEAM5IBZyQhwIALgWcsN1EIHrIR5ugDxwI+SFfJAfCkACFIRCoMGABYIQCkMRiMJNUBRuhmJQHEpASXBQChLhFigNt0IZuA3Kwu1QDu6A8lABKkIluBMqw11QBe6GqnAPVIPqUANqwr1QC+6D2nA/1IEHoC48CPXgIagPD0MDeAQawqPQCB6DxvA4NIGm0AyaQ4v/Vv5L0B1ehh7QE5KhF/SGV6AP9IV+0B8GwKswEF6DQfA6pMBgGAJvwFB4E4bBWzAcRsBIeBtGwTswGsbAWBgHqTAeJsC7MBHeg0kwGabAVEiDaTAd3ocZMBNmwQcwGz6EOTAX5sF8SIePYAEshAz4GBbBJ5AJi2EJLIVlsBxWwEpYBathDayFdbAeNsBG2ASbYQtshW2wHXbAp7ATPoNdsBv2wOewF774F/NP/U1+FwQEFChQocIYjMFYjMU4jMNcmAtzY26MYATjMR7zYB7Mi3kxP+bHBEzAQlgIDRokJCyMhTGKUSyKRbEYFsMSWAIdOkzERCyNt2IZLINlsSyWw3JYHitgBayElbAyVsYqWAWrYlWshtWwBtbAe/Fe7IW1sTbWwTpYF+tevj2FDbABNsSG2AgbYWNsjE2wCTbDZtgCW2BLbImtsBW2wTbYFttiO2yHSZiE7bE9dsAO2BE7YifshJ2xM3bBrtg166UcgC/jy9gTq4le2Bt7Yx9MydEP+2N/fBUH4mv4Gr6OKTgYh+Ab+Aa+icPwJA7HETgSR2Jl8Q6OxjFIYhymYipOwAk4ESfiJJyMk3EqpuE0nI7TcQbOxJn4Ac7GD/FDnItzcT6mYzouwIWYgRm4CE9hJi7GJbgUl+FyXIYrcRWuxDW4FtfgelyPG3EjbsbNuBW34nbcjp+iAsDPcDfuxhTci3txH+7D/bgfD+ABzMIsPIgH8RAewsN4GI/gETyKx/A4HsMTeAJP4ik8jafxLJ7Fc/hCwjcNPy2+OgXEBUooESNiRKyIFXEiTuQSuURukVtERETEi3iRR+QReUVekV/kFwkiQRQShYQRRpAIYwBAREVUFBVFRTFRTJQQJYQTTiSKRFFalBZlRBlRVtwuyok7RHlRQbR2lUQlUVm0cVXE3aKqqCqqieqihqgpaopaopaoLWqLOqKOqCvqinriIVFf9MJ++Ii40JlGYjA2FkOwiWgq5KVPsJZiGLYSrUUb8ZQYgcOxnWjpksSzor0YjR3EX8QYfF50EuOws3hRdBFdRTfxkuguWrkeoqeYhL1EbzEV+4i+op/oL2ZgdfEBzs5ZQ7wuUsRgMUS8Iebjm2KYeEsMFyPESPG2GCXeEaPFGDFWjBOpYryYIN4VE8V7YpKYLKaIqSJNTBPTxftihpgpZokPxGzxoZgj5op5Yr5IFx+JBWKhyBAfi0XiE5EpFoslYqlYJpaLFWKlWCVWizVirVgn1osNYqPYJDaLLWKr2Ca2ix3iU7FTfCZ2id1ij/hc7BVfiH3iS7FffCUOiK9FlvhGHBTfikPiO3FYfC+OiB/EUXFMHBc/ihPiJ3FSnBKnxRlxVvwszolfxHnhBUiUQkqpZCBjZA4ZK3PKOHmNzCWDS8/u9TJe3iDzyBtlXplP5pcFZIIsKAtJLY20kmQoC8siMipvkkXlzbKYLC5LyJLSyVIyUd4iS8tbZRl5mywrb5fl5B2yvKwgK8pK8k5ZWd4lIXJxH9VkdVlD1pT3ymS4T9aW98s68gFZVz4o68mHZH35sGwgH5EN5aOykXxMNpaPyyayqWwmm8sW8gnZUj4pW8nWso18SraVT8t28hmZJJ+V7aW/9BJ5XnaSL8jO8kXZRXaV3eQv8rz0sofsKaEXyN7yFdlH9pX9ZH85QL4qB8rX5CD5ukyRg+UQ+YYcKt+Uw+RbcrgcIUfKt+Uo+Y4cLcfIsXKcTJXj5QT5rpwo35OT5GQ5RU6VaXKa7HdppllS/sP8d/8gf9Cve98oN8nNcovcKrfJ7XKH/FTulDvlLrlL7pF75F65V+6T++R+uV8ekAdklsySB+VBeUgekoflYXlEHpFH5TF5Rv4oT8if5El5Sp6SZ+RZeVaeu/QcgEIllFRKBSpG5VCxKqeKU9eoXOpalVtdpyLqehWvblB51I0qr8qn8qsCKkEVVIWUVkZZRSpUhVURFVU34aUXjCqhSiqnSqlEdcu/kq+KqptVMVX8N/mX60v+O/W1UC1US9VStVKtVBvVRrVVbVU71U4lqSTVXrVXHVQH1VF1VJ1UJ9VZdVZdVBfVTXVT3VV31UP1UMkqWfVWr6g+qq/qp/qrAepVNVANVIPUIJWiUtQQNUQNVUPVMDVMDVfD1Ug1Uo1So9RoNVqNVWNVqkpVE9QENVFNVJPUJDVFTVFpKk1NV9PVDDVDzVKz1Gw1W81Rc9Q8NU+lq3S1QC1QGSpDLVKLVKZarBarpWqpWq6Wq5VqpVqtVqu1aq1ar9arTLVJbVJb1Ba1TW1TO9QOtVPtVLvULrVH7VF71V61T+1T+9V+dUAdUFkqSx1UB9UhdUgdVofVEXVEHVVH1XF1XJ1QJ9RJdVKdVqfVWXVWnVPn1Hl1/sJpXyACEahABTFBTBAbxAZxQVyQK8gV5A5yB5EgEsQH8UGe4MYgb5AvyB8UCBKCgkGhQAcmsIG41PRocFNQNLg5KBYUD0oEJQMXlAoSg1uC0sGtQZngtqBscHtQLrgjKB9UCCoGlYI7g8rBXUGV4O6ganBPUC2oHtQIagb3BrWC+4Lawf1BneCBoG7wYFAveCioHzwcNAgeCRoGjwaNgseCxsHjQZOgadAsaB60+FPn9/5kviddD91TJ+teurd+RffRfXU/3V8P0K/qgfo1PUi/rlP0YD1Ev6GH6jf1MP2WHq5H6JH6bT1Kv6NH6zF6rB6nU/V4PUG/qyfq9/QkPVlP0VN1mp6mp+v39Qw9U8/SH+jZ+kM9R8/V8/R8na4/0gv0Qp2hP9aL9Cc6Uy/WS/RSvUwv1yv0Sr1Kr9Zr9Fq9Tq/XG/RGvUlv1lv0Vr1Nb9c79Kd6p/5M79K79R79ud6rv9D79Jd6v/5KH9Bf6yz9jT6ov9WH9Hf6sP5eH9E/6KP6mD6uf9Qn9E/6pD6lT+sz+qz+WZ/Tv+jz2l84ub/w9W6UUSbGxJhYE2viTJzJZXKZ3Ca3iZiIiTfxJo/JY/KavCa/yW8STIIpZAqZC8iQKWwKm6iJmqKmqClmipkSpoRxxplEk2hKm9KmjCljypqyppwpZ8qb8qaiqWjuNHeau8xd5m5zt7nH3GOqm+qmpqlpaplaprapbeqYOqauqWvqmXqmvqlvGpgGpqFpaBqZRqaxaWyamCammWlmWpgWpqVpaVqZVqaNaWPamramnWlnkkySaW/amw6mg+loOppOppPpbDqbLqaL6Wa6me6mu+lhephkk2x6m96mj+lj+pl+ZoAZYAaagWaQGWRSTIoZYoaYoWaoGWaGmeFmhBl54UTVvGNGmzFmrBlnUk2qmWAmmIlmoplkJpkpZopJM2lmupluZpgZZpaZZWab2WaOmWPmmXkm3aSbBWaByTAZZpFZZDJNpllilphlZplZYVaYVWaVWWPWmHWwzmwwG8wms8lsMVvMNrPN7DA7zE6z0+wyu8wes8fsNXvNPrPP7Df7zQFzwGSZLHPQHDSHzCFz2Bw2R8wRc9QcNcfNcXPCnDAnzUlz2pw2Z02+S9+X3sTanDbOXmNz2Wttbnud/ds4vy1gE2xBW8hqm9fm+01srLXFbHFbwpa0zpayifaW38XlbQVb0Vayd9rK9i5b5XdxLXufrW3vt3XsA7amvfc3cV37oK1nH7P1EQFsU9vQNreN7GO2sX3cNrFNbTPb3La1T9t29hmbZJ+17e1zv4sX2IV2lV1t19i1dpfdbU/bM/aQ/c6etT/bHranHWBftQPta3aQfd2m2MG/i0fat+0o+44dbcfYsXbc7+IpdqpNs9PsdPu+nWFn/i5Otx/Z2TbDzrFz7Tw7/9f4Qk0Z9mO7yH5iM20AS+xSu8wutyvsyv9f61K73m6wG+1O+5ndYrfabXa73XH5RNjutnvs53av/cIetN/a/fYre8Aetln2m1/jC8d32H5vj9gf7FF7zB63P9oT9id1OfvCsf9of7HnrbdASECSFAUUQzkolnJSHF1Duehayk3XUYSup3i6gfLQjZSX8lF+KkAJVJAKkSZDlohCKkxFKEo30eXySlBJclSKEukWKk23Uhm6jcrS7VSO7qDyVIEqUiW6kyrTXVSF7qaqdA9Vo+pUg2rSvVSL7qPadD/VoQeoLj1I9eghqk8PUwN6hBrSo9SIHqPG9Dg1oabUjJpTC3qCWtKT1IpaUxt6itrS09SOnqEkepba03PUgf5CHel56kQvUGd6kbpQV+pGL1F3epl6UE9Kpl7Um16hPtSX+lF/GkCv0kB6jQbR65RCg2kIvUFD6U0aRm/RcBpBI+ltGkXv0GgaQ2NpHKXSeJpA79JEeo8m0WSaQlMpjabRdHqfZtBMmkUf0Gz6kObQXJpH8ymdPqIFtJAy6GNaRJ9QJi2mJbSUltFyWkEraRWtpjW0ltbRetpAG2kTbaYttJW20XbaQZ/STvqMdtFu2kOf0176gvbRl7SfvqID9DVl0Td0kL6lQ/QdHabvfU/6gY7SMTpOP9IJ+olO0ik6TWfoLP1M5+gXOk+eIMRQhDJUYRDGhDnC2DBnGBdeE+YKrw1zh9eFkfD6MD68IcwT3hjmDfOF+cMCYUJYMCwU6tCENqQwDAuHRcJoeFNYNLw5LBYWD0uEJUMXlgoTw1vC0uGtYZnwtrBseHtYLrwjLB9WCB97oFJ4Z1g5vCusEt4dVg3vCauF1cMaYc3w3rBWeF9YO7w/rBM+EJYJHwzrhQ+F9cOHwwbhI2HD8NGwUfhY2Dh8PGwSNg2bhc3DFuETYcvwybBV2DpsEz4Vtg2fDtuFz4RJ4bNh+/C5X9c/uPDvr08Oe4W9w1fCV0Lv75fzovOj6dGPoguiC6MZ0Y+ji6KfRDOji6NLokujy6LLoyuiK6Oroquja6Jro+ui66Mbohuj3tfMAQ6dcNIpF7gYl8PFupwuzl3jcrlrXW53nYu46128u8HlcTe6vC6fy+8KuARX0BVy2hlnHbnQFXZFXNTd5Iq6m10xV9yVcCWdc6VcomvuWrgWrqV70rVyrV0b95R7yj3tnnbPuGfcs669e851cH9xHd3zrpN7wb3gXnRdXFfXzb3kurvxuS++J5Ndb9fb9XF9XD/Xzw1wA9xAN9ANcoNciktxQ9wQN9QNdcPcMDfcDXcj3Ug3yo1yo91oN9aNdaku1U1wE9xEN9FNcpPcFDfFpbk0N91NdzPcDFd55sW9zHFz3Dw3z6W7dLfAXThnzHCL3CKX6TLdErfELXPL3Aq3wq1yq9wat8atc+vcBrfBbXKb3Ba3xW1z29wOt8PtdDvdLn/dxUndXrfP7XP73X53wH3tstw37qD71h1y37nD7nt3xP3gjrpj7rj70Z1wP7mT7pQ77c64s+5nd8794s4771Ij4yMTIu9GJkbei0yKTI5MiUyNpEWmRaZH3o/MiMyMzIp8EJkd+TAyJzI3Mi8yP5Ie+SiyILIwkhH5OLIo8kkkM7I4siSyNLIssjzifcEtoS/si/iov8kX9Tf7Yr64L+FLeudL+UR/iy/tb/Vl/G2+rL/dl/N3+PK+gq/oH/dNfFPfzDf3LfwTvqV/0rfyrX0b/5Rv65/27fwzPsk/69v753wH/xff0T/vO/kXfGf/ou/iu/pu/iXf3b/se/iePtn38r39K76P7+v7+f5+gH/VD/Sv+UH+dZ/iB/sh/g0/1L/ph/m3/HA/wo+MeduPunyJDON8qh/vJ/h3/UT/np/kJ/spfqpP89P8dP++n+Fn+ln+Az/bf+jn+Ll+np/v0/1HfoFf6DP8x36R/8Rn+sWXbyr7FX6lX+VX+zV+rV/n1/sNfqPf5Df7LX6r3+a3+x3+U7/Tf+Z3+d1+j//c7/Vf+H3+S7/ff+UP+K99lv/GH/Tf+kP+O3/Yf++P+B/8UX/MH/c/+hP+J3/Sn/Kn/Rl/1v/sz/lf/Hn+nTXGGGOMsX/K+CtD8ds1F2/n9/qDHPFXG/cGgGu3Fsj66/UXzijX5b047isS2kYA4NmenR+5vFSrlpycfGnbTAlBkbkAl/8n6IIYuBIvhjbwNCRBayj9h/X3FV3P0j+YP3o7QNxf5cTClfjK/F8CYPIfzP/EUyMXlAtPx/8X888FKFbkSk5OuBIvhja/3l9pDWX+Tv35Wv6D+nN+lQrQ6q9ycsGV+Er9ifAkPAdJv9mSMcYYY4wxxhi7qK+o2PHy9efln/j8o+vzBHUlJwdcif/R9TljjDHGGGOMMcauvue7dnvmiaSk1h3/9UGV/1bWPz1oDP9TM/PgDwfeA1x+RAHAvzkhwIWB/E8exeb/yL5SLr11/nbVsjM+gP8drfwzBlf5g4kxxhhjjDH2p7ty0v/bx9XVKogxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGMuG/hN/TuxqHyNjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2tf2/AAAA//9IVQM5")
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000240)='./file0\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000580)=""/176, 0xb0)

1m54.133079544s ago: executing program 8 (id=2224):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f80)=ANY=[@ANYBLOB="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"/2832], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff4f, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r2, 0x18000000000002a0, 0xe, 0x26f9, &(0x7f0000000040)="76389e147583ddd0569ba56a5cfd", 0x0, 0x14000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m53.972393326s ago: executing program 8 (id=2226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000200b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='tlb_flush\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)

1m53.967541056s ago: executing program 40 (id=2226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000200b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='tlb_flush\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)

1m24.606955727s ago: executing program 1 (id=2958):
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
connect$pptp(r0, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x2300, 0x0)
ioctl$PPPIOCATTCHAN(r1, 0x40047438, &(0x7f0000000040)=0x1)
ioctl$PPPIOCDISCONN(r1, 0x7439)

1m24.581203968s ago: executing program 1 (id=2959):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='freezer.self_freezing\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x7b, @mcast2, 0x4}, 0x1c)

1m24.516210218s ago: executing program 1 (id=2962):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="3183000000010000000019000000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886)

1m24.511707019s ago: executing program 1 (id=2963):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x1000800, &(0x7f00000002c0)={[{@discard}, {@umask={'umask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x9}}, {@umask={'umask', 0x3d, 0xe}}, {@iocharset={'iocharset', 0x3d, 'maccenteuro'}}, {@discard}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@errors_remount}, {@errors_continue}, {@errors_continue}]}, 0x1, 0x1524, &(0x7f0000002280)="$eJzs3AuYTlXbOPD7XmvtMSbpaZLDsNa6N09yWCZJckiSQ5IkSZJTQtIkryQkhpyShiQkhyE5DCE5TEwa5/P5kJAkTZKE5JSs/yX8vb31fu/7fm/f67u+uX/XtS/rfva+1773cz+HvbeZ+a7zkBqNalZtQETwb8GL/yQDQCwADACA6wAgAICy8WXjL6zPKTH539sJ+3M9kna1K2BXE/c/e+P+Z2/c/+yN+5+9cf+zN+5/9sb9z964/4xlZ5umFbiel+y78P3/7Iy///8PySo15qs1pW7sAhDzz6Zw/7M37v//WcE/sxH3P3vj/mdXsVe7APa/AL//s4Mcf3cN9z974/4zlp1d7fvPV3uBSPZ+Dq72648xxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGWPZw2l+hAODy+GrXxRhjjDHGGGOMsT+Pz3G1K2CMMcYYY4wxxtj/PAQBEhQEEAM5IBZyQhwIALgWcsN1EIHrIR5ugDxwI+SFfJAfCkACFIRCoMGABYIQCkMRiMJNUBRuhmJQHEpASXBQChLhFigNt0IZuA3Kwu1QDu6A8lABKkIluBMqw11QBe6GqnAPVIPqUANqwr1QC+6D2nA/1IEHoC48CPXgIagPD0MDeAQawqPQCB6DxvA4NIGm0AyaQ4v/Vv5L0B1ehh7QE5KhF/SGV6AP9IV+0B8GwKswEF6DQfA6pMBgGAJvwFB4E4bBWzAcRsBIeBtGwTswGsbAWBgHqTAeJsC7MBHeg0kwGabAVEiDaTAd3ocZMBNmwQcwGz6EOTAX5sF8SIePYAEshAz4GBbBJ5AJi2EJLIVlsBxWwEpYBathDayFdbAeNsBG2ASbYQtshW2wHXbAp7ATPoNdsBv2wOewF774F/NP/U1+FwQEFChQocIYjMFYjMU4jMNcmAtzY26MYATjMR7zYB7Mi3kxP+bHBEzAQlgIDRokJCyMhTGKUSyKRbEYFsMSWAIdOkzERCyNt2IZLINlsSyWw3JYHitgBayElbAyVsYqWAWrYlWshtWwBtbAe/Fe7IW1sTbWwTpYF+tevj2FDbABNsSG2AgbYWNsjE2wCTbDZtgCW2BLbImtsBW2wTbYFttiO2yHSZiE7bE9dsAO2BE7YifshJ2xM3bBrtg166UcgC/jy9gTq4le2Bt7Yx9MydEP+2N/fBUH4mv4Gr6OKTgYh+Ab+Aa+icPwJA7HETgSR2Jl8Q6OxjFIYhymYipOwAk4ESfiJJyMk3EqpuE0nI7TcQbOxJn4Ac7GD/FDnItzcT6mYzouwIWYgRm4CE9hJi7GJbgUl+FyXIYrcRWuxDW4FtfgelyPG3EjbsbNuBW34nbcjp+iAsDPcDfuxhTci3txH+7D/bgfD+ABzMIsPIgH8RAewsN4GI/gETyKx/A4HsMTeAJP4ik8jafxLJ7Fc/hCwjcNPy2+OgXEBUooESNiRKyIFXEiTuQSuURukVtERETEi3iRR+QReUVekV/kFwkiQRQShYQRRpAIYwBAREVUFBVFRTFRTJQQJYQTTiSKRFFalBZlRBlRVtwuyok7RHlRQbR2lUQlUVm0cVXE3aKqqCqqieqihqgpaopaopaoLWqLOqKOqCvqinriIVFf9MJ++Ii40JlGYjA2FkOwiWgq5KVPsJZiGLYSrUUb8ZQYgcOxnWjpksSzor0YjR3EX8QYfF50EuOws3hRdBFdRTfxkuguWrkeoqeYhL1EbzEV+4i+op/oL2ZgdfEBzs5ZQ7wuUsRgMUS8Iebjm2KYeEsMFyPESPG2GCXeEaPFGDFWjBOpYryYIN4VE8V7YpKYLKaIqSJNTBPTxftihpgpZokPxGzxoZgj5op5Yr5IFx+JBWKhyBAfi0XiE5EpFoslYqlYJpaLFWKlWCVWizVirVgn1osNYqPYJDaLLWKr2Ca2ix3iU7FTfCZ2id1ij/hc7BVfiH3iS7FffCUOiK9FlvhGHBTfikPiO3FYfC+OiB/EUXFMHBc/ihPiJ3FSnBKnxRlxVvwszolfxHnhBUiUQkqpZCBjZA4ZK3PKOHmNzCWDS8/u9TJe3iDzyBtlXplP5pcFZIIsKAtJLY20kmQoC8siMipvkkXlzbKYLC5LyJLSyVIyUd4iS8tbZRl5mywrb5fl5B2yvKwgK8pK8k5ZWd4lIXJxH9VkdVlD1pT3ymS4T9aW98s68gFZVz4o68mHZH35sGwgH5EN5aOykXxMNpaPyyayqWwmm8sW8gnZUj4pW8nWso18SraVT8t28hmZJJ+V7aW/9BJ5XnaSL8jO8kXZRXaV3eQv8rz0sofsKaEXyN7yFdlH9pX9ZH85QL4qB8rX5CD5ukyRg+UQ+YYcKt+Uw+RbcrgcIUfKt+Uo+Y4cLcfIsXKcTJXj5QT5rpwo35OT5GQ5RU6VaXKa7HdppllS/sP8d/8gf9Cve98oN8nNcovcKrfJ7XKH/FTulDvlLrlL7pF75F65V+6T++R+uV8ekAdklsySB+VBeUgekoflYXlEHpFH5TF5Rv4oT8if5El5Sp6SZ+RZeVaeu/QcgEIllFRKBSpG5VCxKqeKU9eoXOpalVtdpyLqehWvblB51I0qr8qn8qsCKkEVVIWUVkZZRSpUhVURFVU34aUXjCqhSiqnSqlEdcu/kq+KqptVMVX8N/mX60v+O/W1UC1US9VStVKtVBvVRrVVbVU71U4lqSTVXrVXHVQH1VF1VJ1UJ9VZdVZdVBfVTXVT3VV31UP1UMkqWfVWr6g+qq/qp/qrAepVNVANVIPUIJWiUtQQNUQNVUPVMDVMDVfD1Ug1Uo1So9RoNVqNVWNVqkpVE9QENVFNVJPUJDVFTVFpKk1NV9PVDDVDzVKz1Gw1W81Rc9Q8NU+lq3S1QC1QGSpDLVKLVKZarBarpWqpWq6Wq5VqpVqtVqu1aq1ar9arTLVJbVJb1Ba1TW1TO9QOtVPtVLvULrVH7VF71V61T+1T+9V+dUAdUFkqSx1UB9UhdUgdVofVEXVEHVVH1XF1XJ1QJ9RJdVKdVqfVWXVWnVPn1Hl1/sJpXyACEahABTFBTBAbxAZxQVyQK8gV5A5yB5EgEsQH8UGe4MYgb5AvyB8UCBKCgkGhQAcmsIG41PRocFNQNLg5KBYUD0oEJQMXlAoSg1uC0sGtQZngtqBscHtQLrgjKB9UCCoGlYI7g8rBXUGV4O6ganBPUC2oHtQIagb3BrWC+4Lawf1BneCBoG7wYFAveCioHzwcNAgeCRoGjwaNgseCxsHjQZOgadAsaB60+FPn9/5kviddD91TJ+teurd+RffRfXU/3V8P0K/qgfo1PUi/rlP0YD1Ev6GH6jf1MP2WHq5H6JH6bT1Kv6NH6zF6rB6nU/V4PUG/qyfq9/QkPVlP0VN1mp6mp+v39Qw9U8/SH+jZ+kM9R8/V8/R8na4/0gv0Qp2hP9aL9Cc6Uy/WS/RSvUwv1yv0Sr1Kr9Zr9Fq9Tq/XG/RGvUlv1lv0Vr1Nb9c79Kd6p/5M79K79R79ud6rv9D79Jd6v/5KH9Bf6yz9jT6ov9WH9Hf6sP5eH9E/6KP6mD6uf9Qn9E/6pD6lT+sz+qz+WZ/Tv+jz2l84ub/w9W6UUSbGxJhYE2viTJzJZXKZ3Ca3iZiIiTfxJo/JY/KavCa/yW8STIIpZAqZC8iQKWwKm6iJmqKmqClmipkSpoRxxplEk2hKm9KmjCljypqyppwpZ8qb8qaiqWjuNHeau8xd5m5zt7nH3GOqm+qmpqlpaplaprapbeqYOqauqWvqmXqmvqlvGpgGpqFpaBqZRqaxaWyamCammWlmWpgWpqVpaVqZVqaNaWPamramnWlnkkySaW/amw6mg+loOppOppPpbDqbLqaL6Wa6me6mu+lhephkk2x6m96mj+lj+pl+ZoAZYAaagWaQGWRSTIoZYoaYoWaoGWaGmeFmhBl54UTVvGNGmzFmrBlnUk2qmWAmmIlmoplkJpkpZopJM2lmupluZpgZZpaZZWab2WaOmWPmmXkm3aSbBWaByTAZZpFZZDJNpllilphlZplZYVaYVWaVWWPWmHWwzmwwG8wms8lsMVvMNrPN7DA7zE6z0+wyu8wes8fsNXvNPrPP7Df7zQFzwGSZLHPQHDSHzCFz2Bw2R8wRc9QcNcfNcXPCnDAnzUlz2pw2Z02+S9+X3sTanDbOXmNz2Wttbnud/ds4vy1gE2xBW8hqm9fm+01srLXFbHFbwpa0zpayifaW38XlbQVb0Vayd9rK9i5b5XdxLXufrW3vt3XsA7amvfc3cV37oK1nH7P1EQFsU9vQNreN7GO2sX3cNrFNbTPb3La1T9t29hmbZJ+17e1zv4sX2IV2lV1t19i1dpfdbU/bM/aQ/c6etT/bHranHWBftQPta3aQfd2m2MG/i0fat+0o+44dbcfYsXbc7+IpdqpNs9PsdPu+nWFn/i5Otx/Z2TbDzrFz7Tw7/9f4Qk0Z9mO7yH5iM20AS+xSu8wutyvsyv9f61K73m6wG+1O+5ndYrfabXa73XH5RNjutnvs53av/cIetN/a/fYre8Aetln2m1/jC8d32H5vj9gf7FF7zB63P9oT9id1OfvCsf9of7HnrbdASECSFAUUQzkolnJSHF1Duehayk3XUYSup3i6gfLQjZSX8lF+KkAJVJAKkSZDlohCKkxFKEo30eXySlBJclSKEukWKk23Uhm6jcrS7VSO7qDyVIEqUiW6kyrTXVSF7qaqdA9Vo+pUg2rSvVSL7qPadD/VoQeoLj1I9eghqk8PUwN6hBrSo9SIHqPG9Dg1oabUjJpTC3qCWtKT1IpaUxt6itrS09SOnqEkepba03PUgf5CHel56kQvUGd6kbpQV+pGL1F3epl6UE9Kpl7Um16hPtSX+lF/GkCv0kB6jQbR65RCg2kIvUFD6U0aRm/RcBpBI+ltGkXv0GgaQ2NpHKXSeJpA79JEeo8m0WSaQlMpjabRdHqfZtBMmkUf0Gz6kObQXJpH8ymdPqIFtJAy6GNaRJ9QJi2mJbSUltFyWkEraRWtpjW0ltbRetpAG2kTbaYttJW20XbaQZ/STvqMdtFu2kOf0176gvbRl7SfvqID9DVl0Td0kL6lQ/QdHabvfU/6gY7SMTpOP9IJ+olO0ik6TWfoLP1M5+gXOk+eIMRQhDJUYRDGhDnC2DBnGBdeE+YKrw1zh9eFkfD6MD68IcwT3hjmDfOF+cMCYUJYMCwU6tCENqQwDAuHRcJoeFNYNLw5LBYWD0uEJUMXlgoTw1vC0uGtYZnwtrBseHtYLrwjLB9WCB97oFJ4Z1g5vCusEt4dVg3vCauF1cMaYc3w3rBWeF9YO7w/rBM+EJYJHwzrhQ+F9cOHwwbhI2HD8NGwUfhY2Dh8PGwSNg2bhc3DFuETYcvwybBV2DpsEz4Vtg2fDtuFz4RJ4bNh+/C5X9c/uPDvr08Oe4W9w1fCV0Lv75fzovOj6dGPoguiC6MZ0Y+ji6KfRDOji6NLokujy6LLoyuiK6Oroquja6Jro+ui66Mbohuj3tfMAQ6dcNIpF7gYl8PFupwuzl3jcrlrXW53nYu46128u8HlcTe6vC6fy+8KuARX0BVy2hlnHbnQFXZFXNTd5Iq6m10xV9yVcCWdc6VcomvuWrgWrqV70rVyrV0b95R7yj3tnnbPuGfcs669e851cH9xHd3zrpN7wb3gXnRdXFfXzb3kurvxuS++J5Ndb9fb9XF9XD/Xzw1wA9xAN9ANcoNciktxQ9wQN9QNdcPcMDfcDXcj3Ug3yo1yo91oN9aNdaku1U1wE9xEN9FNcpPcFDfFpbk0N91NdzPcDFd55sW9zHFz3Dw3z6W7dLfAXThnzHCL3CKX6TLdErfELXPL3Aq3wq1yq9wat8atc+vcBrfBbXKb3Ba3xW1z29wOt8PtdDvdLn/dxUndXrfP7XP73X53wH3tstw37qD71h1y37nD7nt3xP3gjrpj7rj70Z1wP7mT7pQ77c64s+5nd8794s4771Ij4yMTIu9GJkbei0yKTI5MiUyNpEWmRaZH3o/MiMyMzIp8EJkd+TAyJzI3Mi8yP5Ie+SiyILIwkhH5OLIo8kkkM7I4siSyNLIssjzifcEtoS/si/iov8kX9Tf7Yr64L+FLeudL+UR/iy/tb/Vl/G2+rL/dl/N3+PK+gq/oH/dNfFPfzDf3LfwTvqV/0rfyrX0b/5Rv65/27fwzPsk/69v753wH/xff0T/vO/kXfGf/ou/iu/pu/iXf3b/se/iePtn38r39K76P7+v7+f5+gH/VD/Sv+UH+dZ/iB/sh/g0/1L/ph/m3/HA/wo+MeduPunyJDON8qh/vJ/h3/UT/np/kJ/spfqpP89P8dP++n+Fn+ln+Az/bf+jn+Ll+np/v0/1HfoFf6DP8x36R/8Rn+sWXbyr7FX6lX+VX+zV+rV/n1/sNfqPf5Df7LX6r3+a3+x3+U7/Tf+Z3+d1+j//c7/Vf+H3+S7/ff+UP+K99lv/GH/Tf+kP+O3/Yf++P+B/8UX/MH/c/+hP+J3/Sn/Kn/Rl/1v/sz/lf/Hn+nTXGGGOMsX/K+CtD8ds1F2/n9/qDHPFXG/cGgGu3Fsj66/UXzijX5b047isS2kYA4NmenR+5vFSrlpycfGnbTAlBkbkAl/8n6IIYuBIvhjbwNCRBayj9h/X3FV3P0j+YP3o7QNxf5cTClfjK/F8CYPIfzP/EUyMXlAtPx/8X888FKFbkSk5OuBIvhja/3l9pDWX+Tv35Wv6D+nN+lQrQ6q9ycsGV+Er9ifAkPAdJv9mSMcYYY4wxxhi7qK+o2PHy9efln/j8o+vzBHUlJwdcif/R9TljjDHGGGOMMcauvue7dnvmiaSk1h3/9UGV/1bWPz1oDP9TM/PgDwfeA1x+RAHAvzkhwIWB/E8exeb/yL5SLr11/nbVsjM+gP8drfwzBlf5g4kxxhhjjDH2p7ty0v/bx9XVKogxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGMuG/hN/TuxqHyNjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2tf2/AAAA//9IVQM5")
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000240)='./file0\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000580)=""/176, 0xb0)

1m24.3887754s ago: executing program 1 (id=2965):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000700000085000000050000008500000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1m24.323899581s ago: executing program 1 (id=2967):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001240), 0x540, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x2)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x40, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

1m24.235391883s ago: executing program 41 (id=2967):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001240), 0x540, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x2)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x40, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

56.012666246s ago: executing program 6 (id=3728):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x1)
fcntl$setlease(r0, 0x400, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)

55.901531988s ago: executing program 6 (id=3731):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

55.844077879s ago: executing program 6 (id=3734):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
open(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r1, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
close(0x3)

55.843857189s ago: executing program 6 (id=3735):
syz_mount_image$f2fs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, &(0x7f0000001ac0)=ANY=[@ANYBLOB='fault_injection=00000000000000001262,extent_cache,resgid=', @ANYRESHEX=0x0, @ANYBLOB=',resgid=', @ANYRESHEX=0x0, @ANYBLOB=',discard,nodiscard,jqfmt=vfsv1,noinline_dentry,checkpoint=disable,alloc_mode=default,resuid=', @ANYRESHEX=0x0, @ANYBLOB="2c6e6f757365725f78617474722c6a71666d743d4b566d350dbf7774726a6a71756f74613dfcc434401ef6f31badb5fb68bb5ecd0000000000000000002c72657365727665725f726f6f743d30303030303030303030303030303030323034372c696e6c696e655f78617474725f73697a653d3078303030303030303030303030303030392c00e088ad3ad329d9a029eb4bfaa313c744fe9b791413c52eed"], 0x1, 0x550b, &(0x7f00000079c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
lsetxattr$security_evm(&(0x7f0000000000)='./file1\x00', &(0x7f0000000240), &(0x7f00000006c0)=@v2={0x3, 0x2, 0x12, 0x1, 0x79, "ea268a7f2f538c6316f9f475de714bf875f4117dc9aa13a018dc15d0993ceca335b11360fd87f9b9af74ff753a4949040a40884dea386e3be200c889c1190804b1c77a36f0f90f07fb02db31f1c2809383967c1282558f6d77f910ec6b9fd0433aa6c9c9e3173ec62a5f3702824446408bf87aca75855d4eec"}, 0x82, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

55.335061467s ago: executing program 6 (id=3749):
r0 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
setsockopt$sock_int(r1, 0x1, 0x2, &(0x7f0000000000)=0x7f, 0x4)
bind$inet(r1, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)

54.711734136s ago: executing program 6 (id=3757):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x59, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)

54.660690737s ago: executing program 42 (id=3757):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x59, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)

49.217917127s ago: executing program 7 (id=3894):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
fchmod(r2, 0x83)

49.170903488s ago: executing program 7 (id=3897):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
setsockopt$inet6_int(r0, 0x29, 0x38, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

47.851000247s ago: executing program 7 (id=3922):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
timer_create(0x2, 0x0, &(0x7f00000000c0))

47.396638704s ago: executing program 7 (id=3919):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x208000, &(0x7f00000001c0)={[{@noblock_validity}, {}, {@abort}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@barrier}]}, 0x3, 0x578, &(0x7f0000002b40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwritev2(r0, &(0x7f0000000600)=[{&(0x7f0000000080)='W', 0x1}], 0x1, 0x800be6b, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0x8000c61)

47.290900785s ago: executing program 7 (id=3921):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000340)=ANY=[@ANYBLOB="05000000000000e684000040"])
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

47.056318899s ago: executing program 7 (id=3926):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000005b80)=@delchain={0x24, 0x26, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff1}}}, 0x24}}, 0x0)

47.053357149s ago: executing program 43 (id=3926):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000005b80)=@delchain={0x24, 0x26, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff1}}}, 0x24}}, 0x0)

3.736920565s ago: executing program 9 (id=4820):
r0 = socket$inet6(0xa, 0x2, 0x3a)
r1 = dup(r0)
bind$unix(r1, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x7c, @dev={0xfe, 0x80, '\x00', 0x3b}, 0xb}, 0x1c)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x8, 0x3a, 0xff, @remote, @local, {[], @echo_reply={0x81, 0x0, 0x0, 0x200}}}}}}, 0x0)
syz_usb_connect(0x0, 0x33, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100007b8955403a0976245b0d0102030109022100010d20000009040000000e0100000f2402010102", @ANYRES64], 0x0)

1.706168974s ago: executing program 3 (id=4841):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
munlockall()

1.594843046s ago: executing program 3 (id=4843):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = add_key$keyring(&(0x7f0000000340), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000400)='ex\x0f\xac\xd1\xeb\xf4\xd8&w\xef\x9f`T3%\xfa\xbf\xef\xeb\x8e1w\xfd')

1.547837467s ago: executing program 3 (id=4861):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
unshare(0x64000600)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0x0, 0x7feff, 0x20008, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
unshare(0x8000000)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000280)={r1, 0x0, &(0x7f0000000200)=""/76}, 0x20)

1.456738938s ago: executing program 3 (id=4853):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(r0, 0x26, &(0x7f0000000080)={0x1, 0x0, 0x2007, 0x1fd})
fcntl$lock(r0, 0x7, &(0x7f0000000280)={0x1, 0x0, 0x2f, 0x9})
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1, 0x20031, 0xffffffffffffffff, 0xc9247000)
fcntl$lock(r0, 0x6, &(0x7f0000000180)={0x2, 0x1, 0x400000200})

1.31414144s ago: executing program 0 (id=4860):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010328bd7000fedbdf251c0000000c00018008000100", @ANYRES32=r3], 0x20}}, 0x10)

1.297654671s ago: executing program 0 (id=4862):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)

1.236238872s ago: executing program 0 (id=4864):
r0 = socket$inet(0x2, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x814400, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="040000000000000008003f006563060008001b"], 0x30}}, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000440)={@multicast2, @loopback, @private=0xa010100}, 0xc)

977.721915ms ago: executing program 9 (id=4865):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000100)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xffff}}]}, 0x3, 0x570, &(0x7f0000000c00)="$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")
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r1, 0x8004587d, &(0x7f0000000140)={0x2, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x41009432, &(0x7f0000000100)={0x0, 0xffffffffffffffff})

817.008377ms ago: executing program 9 (id=4866):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x371d, &(0x7f0000000440)={0x0, 0x0, 0x400, 0xa, 0xffffff}, &(0x7f0000000380), &(0x7f0000000400))
io_uring_register$IORING_REGISTER_RING_FDS(r2, 0x14, 0x0, 0x0)

739.690659ms ago: executing program 9 (id=4867):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

717.993589ms ago: executing program 0 (id=4868):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3e3, &(0x7f00000004c0)="$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")
mkdir(&(0x7f0000000040)='./bus\x00', 0x0)
chdir(&(0x7f0000000300)='./bus\x00')
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

645.36497ms ago: executing program 9 (id=4869):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000010001f"], 0x34}, 0x1, 0x0, 0x0, 0x20000045}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@newtaction={0x18, 0x31, 0x3d, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

624.17368ms ago: executing program 0 (id=4870):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1e000000000000001c20200009"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r2, 0x0, &(0x7f0000001700)=""/53}, 0x20)

589.996311ms ago: executing program 9 (id=4871):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4f3, 0x755, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000000)={0x2c, &(0x7f0000000040)={0x20, 0x12, 0x7, {0x7, 0x1, "00f4000000"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f00000004c0)={0x20, 0xb}, 0x0, 0x0, 0x0, &(0x7f0000000640)={0x20, 0x0, 0x4, {0x800, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)={0x40, 0x1a, 0x2, 0x6076}, 0x0, 0x0, 0x0})
r1 = syz_open_dev$hidraw(&(0x7f0000000280), 0x82, 0x2)
ioctl$HIDIOCGFEATURE(r1, 0xc0404807, &(0x7f0000000080)={0x9, "f3514236b22af193f97d6eeda96a7d6522ab7e935c7beacd659eaec9627e39ced18b6993686036893d26272074e39a2e315ac47935e472d25025e8111fbd7132"})

589.466171ms ago: executing program 3 (id=4881):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
fchmod(r2, 0x83)

413.939133ms ago: executing program 0 (id=4883):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000480)="1b", 0x1, 0x0, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6", 0x90}, {&(0x7f0000001380)="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", 0x205}], 0x2}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af", 0x35}, {&(0x7f0000000180)="5be3b011e12323e4ab88c0472f0700000000000000e71ba62334303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f8269183", 0x3a}], 0x2}}], 0x2, 0xc0)

411.122823ms ago: executing program 3 (id=4884):
socket$inet(0x2, 0x2, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040ac054b024000010203010902"], &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x2, 0x0}, {0xe1, &(0x7f0000000500)=ANY=[@ANYBLOB="e1037097e5fe96504511b437bc5c0abae707a816687b349d6e3748e803b80a824c966c777606e55bf46dd69927cf321f2eeee93b458b26dec23bab05d15177f49c1da393d247c71877db9b90bd0f282c85a8660199a03ec11e50620849e557118bd7ba4453ddf02f31633bdb60d8"]}]})

323.820355ms ago: executing program 5 (id=4874):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xb, 0x7, 0x200008, 0x8, 0x5, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)

201.223046ms ago: executing program 5 (id=4876):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r3, 0x4004ae8b, &(0x7f0000000380))

187.318746ms ago: executing program 4 (id=4877):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00'})
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})

175.476147ms ago: executing program 4 (id=4878):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000bc0)='./file0\x00', r0}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)

162.576667ms ago: executing program 4 (id=4879):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
setsockopt$inet6_int(r0, 0x29, 0x38, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

96.642578ms ago: executing program 4 (id=4880):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x3f, 0x40, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000003c0), &(0x7f0000000080), 0x1003, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000240)={r0, &(0x7f0000000400), &(0x7f0000000500)=""/143}, 0x20)

96.536258ms ago: executing program 5 (id=4882):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x3, 0x25, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000001100)={0x0, <r2=>0x0}, 0x8)
r3 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040)=r2, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000440)={r3, r1}, 0xc)

81.151208ms ago: executing program 5 (id=4885):
timer_create(0x2, 0x0, &(0x7f00000000c0))
timer_create(0x2, 0x0, &(0x7f0000000040)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {r1, r2+10000000}}, 0x0)
unshare(0x42000000)

33.022989ms ago: executing program 4 (id=4886):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r1, 0x1, 0x0, 0x25dfdbfe, {{}, {}, {0x14, 0x19, {0x1, 0x1, 0x0, 0xa9f}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4040005}, 0x44000044)

32.432019ms ago: executing program 5 (id=4896):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x80000000, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

781.7µs ago: executing program 4 (id=4887):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000001700), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000001740)={0x34, r2, 0x1, 0x70bd2b, 0x25dfdbfc, {{}, {}, {0x18, 0x17, {0x1f, 0x0, @l2={'ib', 0x3a, 'vcan0\x00'}}}}}, 0x34}, 0x1, 0x0, 0x0, 0x44011}, 0x40)
capset(0x0, 0x0)

0s ago: executing program 5 (id=4898):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xffffffff, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3122}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x2c, r3, 0x1, 0x0, 0x400, {0x1c}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}]}, 0x2c}}, 0x0)

kernel console output (not intermixed with test programs):

="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.107064][   T28] audit: type=1326 audit(2000000019.570:4991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8689 comm="syz.3.3558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.112001][ T8099] ntrig 0003:1B96:0009.0037: unknown main item tag 0x0
[  173.152848][ T8099] ntrig 0003:1B96:0009.0037: unknown main item tag 0x0
[  173.159761][   T28] audit: type=1326 audit(2000000019.570:4992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8689 comm="syz.3.3558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.166329][ T8099] ntrig 0003:1B96:0009.0037: unknown main item tag 0x0
[  173.196204][   T28] audit: type=1326 audit(2000000019.570:4993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8689 comm="syz.3.3558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.218553][ T8099] ntrig 0003:1B96:0009.0037: unknown main item tag 0x0
[  173.229072][   T28] audit: type=1326 audit(2000000019.570:4994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8689 comm="syz.3.3558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.248549][ T8099] ntrig 0003:1B96:0009.0037: unknown main item tag 0x0
[  173.258826][   T28] audit: type=1326 audit(2000000019.570:4995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8689 comm="syz.3.3558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.289813][   T28] audit: type=1326 audit(2000000019.570:4996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8689 comm="syz.3.3558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.292139][ T8099] ntrig 0003:1B96:0009.0037: hidraw0: USB HID v0.00 Device [HID 1b96:0009] on usb-dummy_hcd.5-1/input0
[  173.315805][   T28] audit: type=1326 audit(2000000019.570:4997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8689 comm="syz.3.3558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7fc00000
[  173.330237][ T8720] loop4: detected capacity change from 0 to 512
[  173.360200][ T8099] ntrig 0003:1B96:0009.0037: Firmware version: 2.3.27.57.7 (8ff5 3f6f)
[  173.390295][ T8720] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  173.403593][ T8720] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  173.419366][ T8732] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8732 comm=syz.7.3587
[  173.425987][ T8720] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3574: corrupted inode contents
[  173.451825][ T8720] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.3574: mark_inode_dirty error
[  173.469675][ T8736] loop7: detected capacity change from 0 to 1024
[  173.476150][ T8720] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3574: corrupted inode contents
[  173.477633][ T8736] EXT4-fs: Ignoring removed bh option
[  173.494705][ T8720] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.3574: mark_inode_dirty error
[  173.520324][ T8736] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  173.520933][ T8720] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3574: corrupted inode contents
[  173.541899][ T8720] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.3574: mark_inode_dirty error
[  173.566857][ T8720] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3574: corrupted inode contents
[  173.579802][ T2984] EXT4-fs (loop7): unmounting filesystem.
[  173.615142][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  173.636070][ T8099] usb 6-1: USB disconnect, device number 18
[  173.707268][ T8763] loop7: detected capacity change from 0 to 2048
[  173.737740][ T8763] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  173.775943][ T2984] EXT4-fs (loop7): unmounting filesystem.
[  174.128598][   T40] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  174.309670][   T40] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  174.319960][   T40] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  174.330125][   T40] usb 8-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  174.339269][   T40] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  174.347870][   T40] usb 8-1: SerialNumber: syz
[  174.528520][    T6] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  174.556060][   T40] usb 8-1: 0:2 : does not exist
[  174.562518][   T40] usb 8-1: USB disconnect, device number 24
[  174.709812][    T6] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  174.720775][    T6] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  174.730656][    T6] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  174.743683][    T6] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  174.752782][    T6] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.761817][    T6] usb 6-1: config 0 descriptor??
[  174.848664][  T305] usb 7-1: USB disconnect, device number 16
[  175.170080][    T6] plantronics 0003:047F:FFFF.0038: unknown main item tag 0x0
[  175.177760][    T6] plantronics 0003:047F:FFFF.0038: No inputs registered, leaving
[  175.186747][    T6] plantronics 0003:047F:FFFF.0038: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  175.230083][ T8865] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3639'.
[  175.239677][ T8865] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3639'.
[  175.248846][ T8865] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3639'.
[  175.358685][    T6] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  175.548497][    T6] usb 7-1: Using ep0 maxpacket: 16
[  175.554873][    T6] usb 7-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  175.563714][    T6] usb 7-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  175.573891][    T6] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  175.584484][    T6] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  175.593633][    T6] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.601821][    T6] usb 7-1: Product: syz
[  175.606162][    T6] usb 7-1: Manufacturer: syz
[  175.610826][    T6] usb 7-1: SerialNumber: syz
[  176.152565][ T8905] loop4: detected capacity change from 0 to 40427
[  176.160885][ T8905] F2FS-fs (loop4): invalid crc value
[  176.167916][ T8905] F2FS-fs (loop4): Found nat_bits in checkpoint
[  176.207701][ T8905] F2FS-fs (loop4): Start checkpoint disabled!
[  176.214713][ T8905] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  176.222555][    T6] usb 7-1: 0:2 : does not exist
[  176.229010][    T6] usb 7-1: USB disconnect, device number 17
[  176.265625][ T8905] F2FS-fs (loop4): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  176.309712][  T312] kworker/u4:3: attempt to access beyond end of device
[  176.309712][  T312] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  176.749457][ T8915] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3658'.
[  176.759023][ T8915] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3658'.
[  176.768349][ T8915] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3658'.
[  176.779728][ T8915] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check.
[  176.832863][ T8924] loop6: detected capacity change from 0 to 1024
[  176.849828][ T8924] EXT4-fs: Ignoring removed bh option
[  176.857395][ T8930] loop7: detected capacity change from 0 to 512
[  176.864620][ T8930] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  176.876880][ T8930] EXT4-fs (loop7): 1 truncate cleaned up
[  176.882998][ T8930] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  176.885171][ T8924] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  176.909794][ T2984] EXT4-fs (loop7): unmounting filesystem.
[  176.923748][ T5603] EXT4-fs (loop6): unmounting filesystem.
[  177.066848][ T8962] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3682'.
[  177.226672][ T8944] loop6: detected capacity change from 0 to 40427
[  177.241428][ T8944] F2FS-fs (loop6): invalid crc value
[  177.257852][ T8944] F2FS-fs (loop6): Found nat_bits in checkpoint
[  177.319306][ T8096] usb 6-1: USB disconnect, device number 19
[  177.350204][ T8944] F2FS-fs (loop6): Start checkpoint disabled!
[  177.351751][ T8984] loop5: detected capacity change from 0 to 1024
[  177.363507][ T8984] EXT4-fs: Ignoring removed bh option
[  177.369443][ T8944] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  177.380588][ T8984] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  177.410021][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  177.459243][ T8944] F2FS-fs (loop6): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  177.516669][   T43] kworker/u4:2: attempt to access beyond end of device
[  177.516669][   T43] loop6: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  177.561279][ T9007] loop7: detected capacity change from 0 to 256
[  177.583907][ T9007] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  177.606879][ T9007] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  177.628725][ T9007] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  177.671128][ T9011] kvm [9010]: vcpu0, guest rIP: 0xfff0 unimplemented MMIO_CONF_BASE wrmsr: 0x95
[  177.684999][ T9014] input: syz1 as /devices/virtual/input/input41
[  177.716260][ T9016] 9pnet: p9_errstr2errno: server reported unknown error �@�L��	O00000000000000000005
[  177.777380][ T9022] loop4: detected capacity change from 0 to 512
[  177.785821][ T9022] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  177.809298][ T9022] EXT4-fs (loop4): 1 truncate cleaned up
[  177.814993][ T9022] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  177.861564][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  177.957298][ T9018] loop6: detected capacity change from 0 to 40427
[  177.969173][ T9018] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  177.979374][ T9018] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  178.002454][ T9018] F2FS-fs (loop6): Found nat_bits in checkpoint
[  178.038180][ T9018] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  178.057638][ T9018] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  178.064956][ T9018] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  178.346949][ T9059] input: syz0 as /devices/virtual/input/input42
[  178.423603][ T9070] SELinux:  Context system_u:object_r:dhcpd_initrc_exec_t:s0 is not valid (left unmapped).
[  178.439427][ T9072] loop4: detected capacity change from 0 to 256
[  178.456078][   T28] kauditd_printk_skb: 70 callbacks suppressed
[  178.456096][   T28] audit: type=1400 audit(2000000025.020:5068): avc:  denied  { relabelto } for  pid=9069 comm="syz.3.3725" name="TCPv6" dev="sockfs" ino=51323 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=tcp_socket permissive=1 trawcon="system_u:object_r:dhcpd_initrc_exec_t:s0"
[  178.456415][ T9072] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  178.559074][ T9072] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  178.561085][ T9053] loop5: detected capacity change from 0 to 40427
[  178.586259][ T9072] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  178.600990][ T9053] F2FS-fs (loop5): invalid crc value
[  178.608536][   T28] audit: type=1326 audit(2000000025.170:5069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9078 comm="syz.3.3730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7ffc0000
[  178.650830][ T9053] F2FS-fs (loop5): Found nat_bits in checkpoint
[  178.669039][ T9055] loop7: detected capacity change from 0 to 40427
[  178.675662][   T28] audit: type=1326 audit(2000000025.170:5070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9078 comm="syz.3.3730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fc30ff8e969 code=0x7ffc0000
[  178.731340][   T28] audit: type=1326 audit(2000000025.180:5071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9078 comm="syz.3.3730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7ffc0000
[  178.755664][ T9055] F2FS-fs (loop7): Found nat_bits in checkpoint
[  178.776548][ T9053] F2FS-fs (loop5): Start checkpoint disabled!
[  178.784203][ T9094] SELinux: failed to load policy
[  178.798549][   T28] audit: type=1400 audit(2000000025.200:5072): avc:  denied  { map } for  pid=9071 comm="syz.4.3727" path="/128/file0/blkio.bfq.io_serviced_recursive" dev="loop4" ino=1048757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  178.825988][ T9053] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  178.844249][ T9055] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  178.907417][   T28] audit: type=1400 audit(2000000025.200:5073): avc:  denied  { execute } for  pid=9071 comm="syz.4.3727" path="/128/file0/blkio.bfq.io_serviced_recursive" dev="loop4" ino=1048757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  178.988520][   T28] audit: type=1326 audit(2000000025.210:5074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9078 comm="syz.3.3730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc30ff8e969 code=0x7ffc0000
[  179.012163][ T9053] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  179.026684][ T9093] loop6: detected capacity change from 0 to 40427
[  179.039268][ T9093] F2FS-fs (loop6): fault_injection options not supported
[  179.068587][ T9093] F2FS-fs (loop6): invalid crc value
[  179.079137][ T9116] loop4: detected capacity change from 0 to 512
[  179.086418][ T9093] F2FS-fs (loop6): Found nat_bits in checkpoint
[  179.130230][ T9116] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  179.141801][ T9116] ext4 filesystem being mounted at /132/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  179.153554][ T9093] F2FS-fs (loop6): Start checkpoint disabled!
[  179.165004][ T9116] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3742: corrupted inode contents
[  179.177065][ T9093] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  179.179178][  T312] kworker/u4:3: attempt to access beyond end of device
[  179.179178][  T312] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  179.206085][ T5603] syz-executor: attempt to access beyond end of device
[  179.206085][ T5603] loop6: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  179.220994][ T9116] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.3742: mark_inode_dirty error
[  179.268927][ T9116] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3742: corrupted inode contents
[  179.281012][ T5603] syz-executor: attempt to access beyond end of device
[  179.281012][ T5603] loop6: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  179.324353][ T9116] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.3742: mark_inode_dirty error
[  179.368974][  T312] kworker/u4:3: attempt to access beyond end of device
[  179.368974][  T312] loop6: rw=2049, sector=40960, nr_sectors = 32 limit=40427
[  179.389205][ T9116] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3742: corrupted inode contents
[  179.444373][ T9116] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #2: comm syz.4.3742: mark_inode_dirty error
[  179.471881][ T9116] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3742: corrupted inode contents
[  179.504156][ T9130] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #2: comm syz.4.3742: corrupted inode contents
[  179.532947][ T9130] EXT4-fs error (device loop4): ext4_setent:3695: inode #2: comm syz.4.3742: mark_inode_dirty error
[  179.591705][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  179.630269][ T9137] 9pnet: p9_errstr2errno: server reported unknown error �@00000000000000000005
[  179.639756][ T9139] netlink: 96 bytes leftover after parsing attributes in process `syz.4.3751'.
[  179.677428][   T28] audit: type=1400 audit(2000000026.240:5075): avc:  denied  { unmount } for  pid=4058 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  179.729406][   T43] tipc: Left network mode
[  179.823290][ T9149] SELinux: failed to load policy
[  180.054900][ T9147] loop5: detected capacity change from 0 to 40427
[  180.063356][ T9147] F2FS-fs (loop5): invalid crc value
[  180.071298][ T9147] F2FS-fs (loop5): Found nat_bits in checkpoint
[  180.134071][ T9147] F2FS-fs (loop5): Start checkpoint disabled!
[  180.142395][ T9147] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  180.164140][ T9167] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.171338][ T9167] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.179046][ T9167] device bridge_slave_0 entered promiscuous mode
[  180.186272][ T9167] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.193397][ T9167] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.201230][ T9167] device bridge_slave_1 entered promiscuous mode
[  180.208539][ T9147] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  180.265629][  T523] kworker/u4:5: attempt to access beyond end of device
[  180.265629][  T523] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  180.280653][   T43] device bridge_slave_1 left promiscuous mode
[  180.286827][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.294902][   T43] device bridge_slave_0 left promiscuous mode
[  180.301336][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.309590][   T43] device veth1_macvtap left promiscuous mode
[  180.315632][   T43] device veth0_vlan left promiscuous mode
[  180.503465][ T9186] loop5: detected capacity change from 0 to 128
[  180.511795][ T9186] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  180.520630][ T9186] ext4 filesystem being mounted at /383/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  180.573888][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  180.588593][  T305] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  180.601259][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  180.613440][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  180.629004][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  180.638291][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  180.649434][  T316] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.656489][  T316] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.666542][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  180.680956][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  180.689580][  T316] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.696628][  T316] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.717307][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  180.725497][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  180.734709][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  180.744131][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  180.752770][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  180.773309][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  180.782698][  T305] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  180.794350][  T305] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  180.806795][ T9167] device veth0_vlan entered promiscuous mode
[  180.814233][  T305] usb 8-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  180.823591][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  180.838784][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  180.847045][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  180.854994][  T305] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  180.863409][  T305] usb 8-1: SerialNumber: syz
[  180.873517][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  180.890612][ T9167] device veth1_macvtap entered promiscuous mode
[  180.912570][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  180.931212][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  180.950285][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  180.967970][  T316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  180.993228][ T9206] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3781'.
[  181.081116][  T305] usb 8-1: 0:2 : does not exist
[  181.086081][  T305] usb 8-1: unit 2 not found!
[  181.100120][  T305] usb 8-1: USB disconnect, device number 25
[  181.133993][ T9214] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3785'.
[  181.144480][ T9214] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3785'.
[  181.258584][ T8096] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  181.297488][ T9224] loop0: detected capacity change from 0 to 512
[  181.304333][ T9224] EXT4-fs: Ignoring removed nobh option
[  181.314129][ T9224] fscrypt (loop0, inode 2): Error -61 getting encryption context
[  181.321985][ T9224] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[  181.330420][ T9224] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #13: comm syz.0.3790: casefold flag without casefold feature
[  181.343562][ T9224] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.3790: couldn't read orphan inode 13 (err -117)
[  181.368759][ T9224] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  181.400306][ T9224] EXT4-fs: Ignoring removed orlov option
[  181.406047][ T9224] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  181.422096][ T9224] EXT4-fs error (device loop0): __ext4_remount:6598: comm syz.0.3790: Abort forced by user
[  181.432599][ T9224] EXT4-fs (loop0): Remounting filesystem read-only
[  181.439494][ T9224] EXT4-fs (loop0): re-mounted. Quota mode: writeback.
[  181.460104][ T8096] usb 6-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  181.473408][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  181.479243][ T8096] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  181.498741][ T8096] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  181.519120][ T8096] usb 6-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  181.538498][ T8096] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.99
[  181.557795][ T8096] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.568786][ T8096] usb 6-1: invalid MIDI out EP 0
[  181.580299][ T8096] snd-usb-audio: probe of 6-1:27.0 failed with error -22
[  181.596661][   T28] audit: type=1400 audit(2000000028.160:5076): avc:  denied  { remount } for  pid=9230 comm="syz.0.3792" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  181.670138][ T9240] netlink: 360 bytes leftover after parsing attributes in process `syz.7.3797'.
[  181.679701][ T9240] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3797'.
[  181.764974][ T9253] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3803'.
[  181.786637][ T8096] usb 6-1: USB disconnect, device number 20
[  181.812453][ T9261] device ip6tnl1 entered promiscuous mode
[  181.862251][ T9270] loop0: detected capacity change from 0 to 1024
[  181.869789][ T9270] EXT4-fs: Ignoring removed oldalloc option
[  181.875811][ T9270] EXT4-fs: Ignoring removed bh option
[  181.881693][ T9270] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  181.900993][ T9270] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  181.911610][ T9270] EXT4-fs (loop0): unmounting filesystem.
[  181.985619][ T9276] loop0: detected capacity change from 0 to 256
[  181.994861][ T9276] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  182.039915][   T28] audit: type=1400 audit(2000000028.610:5077): avc:  denied  { write } for  pid=9281 comm="syz.7.3814" name="snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  182.039931][ T9282] random: crng reseeded on system resumption
[  182.059693][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  182.063157][ T4991] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  182.333580][ T9301] loop4: detected capacity change from 0 to 512
[  182.351355][ T9301] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  182.360466][ T9301] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.383197][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  182.388576][ T8096] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  182.568517][ T8096] usb 1-1: Using ep0 maxpacket: 8
[  182.578158][ T8096] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  182.607638][ T8096] usb 1-1: New USB device found, idVendor=056a, idProduct=0017, bcdDevice= 0.00
[  182.640480][ T8096] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.676534][ T8096] usb 1-1: config 0 descriptor??
[  182.831842][ T9342] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3843'.
[  182.846587][ T9344] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  182.853612][ T9340] loop7: detected capacity change from 0 to 1024
[  182.884271][ T9344] bridge0: port 2(bridge_slave_1) entered disabled state
[  182.884329][ T9340] EXT4-fs: Ignoring removed nobh option
[  182.891676][ T9344] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.907340][ T9340] EXT4-fs: Ignoring removed bh option
[  182.927866][ T9340] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  182.973620][ T9340] EXT4-fs error (device loop7): ext4_orphan_get:1426: comm syz.7.3842: bad orphan inode 32767
[  183.000298][ T9340] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  183.077691][ T9340] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:3841: comm syz.7.3842: Allocating blocks 449-513 which overlap fs metadata
[  183.106687][ T9339] EXT4-fs (loop7): pa ffff88810d848888: logic 48, phys. 177, len 21
[  183.114851][ T9339] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 4
[  183.130097][ T8096] wacom 0003:056A:0017.0039: Unknown device_type for 'HID 056a:0017'. Assuming pen.
[  183.147607][ T2984] EXT4-fs (loop7): unmounting filesystem.
[  183.153683][ T8096] wacom 0003:056A:0017.0039: hidraw0: USB HID v1.01 Device [HID 056a:0017] on usb-dummy_hcd.0-1/input0
[  183.182694][ T8096] input: Wacom BambooFun 4x5 Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:056A:0017.0039/input/input43
[  183.369400][  T305] usb 1-1: USB disconnect, device number 9
[  183.475570][   T28] kauditd_printk_skb: 19 callbacks suppressed
[  183.475587][   T28] audit: type=1400 audit(2000000030.040:5097): avc:  denied  { read write } for  pid=9381 comm="syz.7.3856" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  183.505485][   T28] audit: type=1400 audit(2000000030.040:5098): avc:  denied  { open } for  pid=9381 comm="syz.7.3856" path="/dev/raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  183.532212][   T28] audit: type=1400 audit(2000000030.040:5099): avc:  denied  { ioctl } for  pid=9381 comm="syz.7.3856" path="/dev/raw-gadget" dev="devtmpfs" ino=258 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  183.546092][ T9386] loop5: detected capacity change from 0 to 512
[  183.564930][ T9386] EXT4-fs: Ignoring removed nobh option
[  183.576276][   T28] audit: type=1400 audit(2000000030.130:5100): avc:  denied  { mounton } for  pid=9385 comm="syz.5.3859" path="/399/file0" dev="tmpfs" ino=2127 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  183.599289][   T28] audit: type=1400 audit(2000000030.140:5101): avc:  denied  { block_suspend } for  pid=9387 comm="syz.4.3861" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  183.599985][ T9386] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  183.621107][   T28] audit: type=1400 audit(2000000030.140:5102): avc:  denied  { setopt } for  pid=9391 comm="syz.3.3863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  183.649183][ T9386] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.3859: invalid indirect mapped block 2683928664 (level 1)
[  183.663755][ T9386] EXT4-fs (loop5): 1 truncate cleaned up
[  183.669875][ T9386] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  183.681365][   T28] audit: type=1400 audit(2000000030.250:5103): avc:  denied  { mount } for  pid=9385 comm="syz.5.3859" name="/" dev="loop5" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  183.702382][ T9386] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:477: comm syz.5.3859: Invalid block bitmap block 3 in block_group 0
[  183.703625][   T28] audit: type=1400 audit(2000000030.250:5104): avc:  denied  { write } for  pid=9385 comm="syz.5.3859" name="file0" dev="loop5" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  183.718826][ T9386] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.3859: invalid indirect mapped block 480848489 (level 1)
[  183.738983][   T28] audit: type=1400 audit(2000000030.250:5105): avc:  denied  { add_name } for  pid=9385 comm="syz.5.3859" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  183.774806][ T8096] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  183.775955][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  183.788907][   T28] audit: type=1400 audit(2000000030.250:5106): avc:  denied  { create } for  pid=9385 comm="syz.5.3859" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  183.905979][ T9412] tipc: Enabling of bearer <ib:vcan0> rejected, media not registered
[  183.950198][ T9414] loop4: detected capacity change from 0 to 1024
[  183.953393][ T9418] netlink: 145 bytes leftover after parsing attributes in process `syz.0.3876'.
[  183.957380][ T9414] EXT4-fs: Ignoring removed orlov option
[  183.971847][ T8096] usb 8-1: Using ep0 maxpacket: 8
[  183.978061][ T8096] usb 8-1: config 179 has an invalid interface number: 65 but max is 0
[  183.986786][ T8096] usb 8-1: config 179 has no interface number 0
[  183.993410][ T8096] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  184.005668][ T9414] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  184.021866][ T8096] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  184.053087][ T8096] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  184.077872][ T8096] usb 8-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  184.108517][ T8096] usb 8-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  184.123873][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  184.138633][ T8096] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.158990][ T9382] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  184.298719][ T8090] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  184.405182][ T8096] usb 8-1: USB disconnect, device number 26
[  184.411189][    C0] xpad 8-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  184.411231][    C0] xpad 8-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  184.448523][ T2399] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  184.479744][ T8090] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  184.490029][ T8090] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  184.499607][ T8090] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  184.508785][ T8090] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  184.516791][ T8090] usb 6-1: SerialNumber: syz
[  184.629634][ T2399] usb 1-1: config 0 has no interfaces?
[  184.637238][ T2399] usb 1-1: language id specifier not provided by device, defaulting to English
[  184.647469][ T2399] usb 1-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.40
[  184.661587][ T2399] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.669684][ T2399] usb 1-1: Product: syz
[  184.673858][ T2399] usb 1-1: Manufacturer: 靰ﻥ傖ᅅ㞴岼먊ߧᚨ筨鴴㝮렃舊陌睬ٶ寥淴駖켧ἲ㯩譅㯂֫凑ᶜ鎣䟒ᣇ邛྽ⰨꢅŦꂙ섾倞ࡢᅗ힋䒺⿰挱
[  184.690955][ T2399] usb 1-1: SerialNumber: syz
[  184.696188][ T2399] usb 1-1: config 0 descriptor??
[  184.727859][ T8090] usb 6-1: 0:2 : does not exist
[  184.732871][ T8090] usb 6-1: unit 2 not found!
[  184.738694][ T8090] usb 6-1: USB disconnect, device number 21
[  184.906432][ T2399] usb 1-1: USB disconnect, device number 10
[  185.317354][ T9456] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3889'.
[  185.327376][ T9456] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3889'.
[  185.457988][ T9481] loop5: detected capacity change from 0 to 1024
[  185.465562][ T9481] EXT4-fs: Ignoring removed orlov option
[  185.496542][ T9481] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  185.564502][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  185.650931][ T9499] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3909'.
[  185.748526][    T6] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  185.929701][    T6] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  185.939848][    T6] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  185.949651][    T6] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  185.958789][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  185.966830][    T6] usb 1-1: SerialNumber: syz
[  186.174658][    T6] usb 1-1: 0:2 : does not exist
[  186.179602][    T6] usb 1-1: unit 2 not found!
[  186.185286][    T6] usb 1-1: USB disconnect, device number 11
[  186.767194][ T9518] loop4: detected capacity change from 0 to 128
[  186.781450][ T9518] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  186.797093][ T9518] ext4 filesystem being mounted at /168/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  186.859705][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  186.997454][ T9513] loop0: detected capacity change from 0 to 40427
[  187.005485][ T9513] F2FS-fs (loop0): invalid crc value
[  187.011816][ T9513] F2FS-fs (loop0): Found nat_bits in checkpoint
[  187.050251][ T9513] F2FS-fs (loop0): Start checkpoint disabled!
[  187.056996][ T9513] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  187.102089][ T9513] F2FS-fs (loop0): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  187.140116][   T43] kworker/u4:2: attempt to access beyond end of device
[  187.140116][   T43] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  187.157782][ T9525] loop5: detected capacity change from 0 to 512
[  187.160067][ T9528] loop7: detected capacity change from 0 to 1024
[  187.171298][ T9528] EXT4-fs: Ignoring removed orlov option
[  187.180499][ T9528] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  187.190118][ T9525] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  187.207612][ T9525] ext4 filesystem being mounted at /412/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  187.249273][ T9525] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.3918: corrupted inode contents
[  187.288936][ T9535] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3934'.
[  187.309137][ T9525] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #2: comm syz.5.3918: mark_inode_dirty error
[  187.328726][ T9525] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.3918: corrupted inode contents
[  187.348199][ T9525] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #2: comm syz.5.3918: mark_inode_dirty error
[  187.366598][ T9525] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.3918: corrupted inode contents
[  187.379150][ T9525] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #2: comm syz.5.3918: mark_inode_dirty error
[  187.390743][ T9525] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.3918: corrupted inode contents
[  187.406451][ T9525] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.3918: corrupted inode contents
[  187.418555][ T9525] EXT4-fs error (device loop5): ext4_setent:3695: inode #2: comm syz.5.3918: mark_inode_dirty error
[  187.422088][ T9533] EXT4-fs (loop7): unmounting filesystem.
[  187.440250][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  187.588580][ T8090] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  187.647526][ T9559] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.654898][ T9559] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.662784][ T9559] device bridge_slave_0 entered promiscuous mode
[  187.670766][ T9559] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.677872][ T9559] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.685598][ T9559] device bridge_slave_1 entered promiscuous mode
[  187.693758][ T9565] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  187.702678][ T9565] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3943'.
[  187.745278][ T9572] loop0: detected capacity change from 0 to 128
[  187.762834][ T9572] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  187.772058][ T9572] ext4 filesystem being mounted at /32/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  187.805680][ T8090] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  187.831926][ T8090] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  187.851294][ T9559] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.858410][ T9559] bridge0: port 2(bridge_slave_1) entered forwarding state
[  187.862437][ T8090] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  187.865775][ T9559] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.881844][ T9559] bridge0: port 1(bridge_slave_0) entered forwarding state
[  187.888932][ T8090] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  187.898793][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  187.904717][ T8090] usb 5-1: SerialNumber: syz
[  187.927485][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  187.935630][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.943882][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.964056][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  187.973004][  T312] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.980085][  T312] bridge0: port 1(bridge_slave_0) entered forwarding state
[  187.987849][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  187.996584][  T312] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.003644][  T312] bridge0: port 2(bridge_slave_1) entered forwarding state
[  188.020226][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  188.028868][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  188.044035][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  188.057656][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  188.067052][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  188.075330][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  188.085384][ T9559] device veth0_vlan entered promiscuous mode
[  188.098518][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  188.107838][ T9559] device veth1_macvtap entered promiscuous mode
[  188.116235][ T8090] usb 5-1: 0:2 : does not exist
[  188.121276][ T8090] usb 5-1: unit 2 not found!
[  188.122667][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  188.127409][ T8090] usb 5-1: USB disconnect, device number 13
[  188.158814][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  188.421594][ T9587] 9pnet: p9_errstr2errno: server reported unknown error �@00000000000000000005
[  188.450906][ T9593] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3937'.
[  188.472489][ T9595] loop0: detected capacity change from 0 to 512
[  188.490856][ T9595] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  188.500319][ T9595] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  188.523386][ T9595] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.3938: corrupted inode contents
[  188.541967][ T9595] EXT4-fs error (device loop0): ext4_dirty_inode:6120: inode #2: comm syz.0.3938: mark_inode_dirty error
[  188.555987][   T28] kauditd_printk_skb: 76 callbacks suppressed
[  188.556003][   T28] audit: type=1400 audit(2000000035.120:5183): avc:  denied  { create } for  pid=9603 comm="syz.9.3942" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  188.583309][   T28] audit: type=1400 audit(2000000035.120:5184): avc:  denied  { link } for  pid=9603 comm="syz.9.3942" name="file1" dev="tmpfs" ino=34 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  188.595011][ T9595] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.3938: corrupted inode contents
[  188.620384][ T9595] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.3938: mark_inode_dirty error
[  188.638492][   T28] audit: type=1400 audit(2000000035.200:5185): avc:  denied  { unlink } for  pid=9559 comm="syz-executor" name="file0" dev="tmpfs" ino=34 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  188.687585][   T28] audit: type=1400 audit(2000000035.240:5186): avc:  denied  { write } for  pid=9606 comm="syz.9.3944" name="001" dev="devtmpfs" ino=167 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  188.718403][   T28] audit: type=1400 audit(2000000035.250:5187): avc:  denied  { write } for  pid=9611 comm="syz.4.3947" name="mcfilter6" dev="proc" ino=4026532663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  188.745353][   T28] audit: type=1400 audit(2000000035.310:5188): avc:  denied  { connect } for  pid=9613 comm="syz.4.3950" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  188.770408][ T9595] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.3938: corrupted inode contents
[  188.782110][   T28] audit: type=1400 audit(2000000035.310:5189): avc:  denied  { write } for  pid=9613 comm="syz.4.3950" laddr=fe80::a8aa:aaff:feaa:aaaa lport=58 faddr=ff03::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  188.810088][ T9595] EXT4-fs error (device loop0): ext4_dirty_inode:6120: inode #2: comm syz.0.3938: mark_inode_dirty error
[  188.821837][   T28] audit: type=1400 audit(2000000035.340:5190): avc:  denied  { create } for  pid=9617 comm="syz.9.3952" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  188.842263][ T9595] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.3938: corrupted inode contents
[  188.855996][ T9605] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.3938: corrupted inode contents
[  188.869140][ T9605] EXT4-fs error (device loop0): ext4_setent:3695: inode #2: comm syz.0.3938: mark_inode_dirty error
[  188.902908][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  189.103788][ T9645] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3966'.
[  189.127743][   T28] audit: type=1400 audit(2000000035.690:5191): avc:  denied  { wake_alarm } for  pid=9646 comm="syz.3.3968" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  189.303719][ T9662] 9pnet: p9_errstr2errno: server reported unknown error �@�L�
[  189.313890][   T28] audit: type=1400 audit(2000000035.880:5192): avc:  denied  { create } for  pid=9663 comm="syz.3.3974" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  189.495773][ T9674] loop0: detected capacity change from 0 to 40427
[  189.503933][ T9674] F2FS-fs (loop0): fault_injection options not supported
[  189.511897][ T9674] F2FS-fs (loop0): invalid crc value
[  189.518564][ T9674] F2FS-fs (loop0): Found nat_bits in checkpoint
[  189.547879][ T9674] F2FS-fs (loop0): Start checkpoint disabled!
[  189.555136][ T9674] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  189.597556][ T9674] F2FS-fs (loop0): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  189.606337][ T9687] loop5: detected capacity change from 0 to 512
[  189.619280][ T9687] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[  189.627228][ T9687] System zones: 0-2, 18-18, 34-34
[  189.633561][ T9687] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #3: comm syz.5.3985: corrupted inode contents
[  189.645677][ T9687] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #3: comm syz.5.3985: mark_inode_dirty error
[  189.657702][ T9687] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #3: comm syz.5.3985: corrupted inode contents
[  189.663644][  T316] kworker/u4:4: attempt to access beyond end of device
[  189.663644][  T316] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  189.670360][ T9687] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #3: comm syz.5.3985: mark_inode_dirty error
[  189.683890][  T316] kworker/u4:4: attempt to access beyond end of device
[  189.683890][  T316] loop0: rw=2049, sector=41000, nr_sectors = 8 limit=40427
[  189.708973][ T9687] EXT4-fs error (device loop5): ext4_acquire_dquot:6789: comm syz.5.3985: Failed to acquire dquot type 0
[  189.729730][ T9687] EXT4-fs (loop5): 1 orphan inode deleted
[  189.748632][ T9687] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  189.748762][   T43] EXT4-fs error (device loop5): ext4_release_dquot:6825: comm kworker/u4:2: Failed to release dquot type 1
[  189.778916][ T9687] ext4 filesystem being mounted at /425/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.783213][ T9691] loop9: detected capacity change from 0 to 16
[  189.802102][ T9691] erofs: (device loop9): mounted with root inode @ nid 36.
[  189.915704][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  189.953363][ T9712] xt_CT: You must specify a L4 protocol and not use inversions on it
[  190.006230][ T9716] SELinux: ebitmap: start bit 0 comes after start bit 0
[  190.017976][ T9716] SELinux: failed to load policy
[  190.070494][ T9733] I/O error, dev loop19, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  190.079918][ T9733] FAT-fs (loop19): unable to read boot sector
[  190.208697][  T305] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  190.389863][  T305] usb 6-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  190.399165][  T305] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.407723][  T305] usb 6-1: config 0 descriptor??
[  190.498556][ T8096] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  190.689645][ T8096] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.701477][ T8096] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.711440][ T8096] usb 10-1: New USB device found, idVendor=2505, idProduct=0220, bcdDevice= 0.00
[  190.720622][ T8096] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.729364][ T8096] usb 10-1: config 0 descriptor??
[  190.779410][ T9754] 9pnet_fd: Insufficient options for proto=fd
[  190.849507][ T9762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4016'.
[  190.912598][ T9767] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9767 comm=syz.0.4019
[  191.137229][ T8096] usb 10-1: string descriptor 0 read error: -71
[  191.153636][ T8096] usbhid 10-1:0.0: can't add hid device: -71
[  191.159991][ T8096] usbhid: probe of 10-1:0.0 failed with error -71
[  191.167492][ T8096] usb 10-1: USB disconnect, device number 5
[  191.617077][  T305] usb 6-1: Cannot set autoneg
[  191.622185][  T305] MOSCHIP usb-ethernet driver: probe of 6-1:0.0 failed with error -71
[  191.638918][  T305] usb 6-1: USB disconnect, device number 22
[  191.678516][ T9800] device batadv_slave_1 entered promiscuous mode
[  191.686140][ T9799] device batadv_slave_1 left promiscuous mode
[  191.694920][ T9798] loop9: detected capacity change from 0 to 2048
[  191.749062][ T9798]  loop9: p1 < > p4
[  191.756558][ T9798] loop9: p4 size 8388608 extends beyond EOD, truncated
[  192.081602][ T9853] loop9: detected capacity change from 0 to 1024
[  192.111085][ T9853] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  192.119804][ T9853] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.157587][ T9853] EXT4-fs error (device loop9): ext4_map_blocks:745: inode #15: block 1: comm syz.9.4059: lblock 1 mapped to illegal pblock 1 (length 3)
[  192.175551][ T9853] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 3 with error 117
[  192.188568][ T9853] EXT4-fs (loop9): This should not happen!! Data will be lost
[  192.188568][ T9853] 
[  192.243845][   T43] EXT4-fs error (device loop9): ext4_map_blocks:745: inode #15: block 4: comm kworker/u4:2: lblock 4 mapped to illegal pblock 4 (length 4)
[  192.259301][   T43] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 4 with error 117
[  192.282377][   T43] EXT4-fs (loop9): This should not happen!! Data will be lost
[  192.282377][   T43] 
[  192.295506][ T9559] EXT4-fs (loop9): unmounting filesystem.
[  192.746504][ T9939] device sit0 entered promiscuous mode
[  192.759775][ T9939] netlink: 'syz.5.4093': attribute type 1 has an invalid length.
[  192.764603][ T9940] xt_CT: You must specify a L4 protocol and not use inversions on it
[  192.767637][ T9939] netlink: 1 bytes leftover after parsing attributes in process `syz.5.4093'.
[  192.998547][   T40] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  193.179910][   T40] usb 10-1: config 0 has an invalid interface number: 64 but max is 0
[  193.188193][   T40] usb 10-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  193.198591][   T40] usb 10-1: config 0 has no interface number 0
[  193.207755][   T40] usb 10-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  193.216951][   T40] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.225103][   T40] usb 10-1: Product: syz
[  193.229383][   T40] usb 10-1: Manufacturer: syz
[  193.234051][   T40] usb 10-1: SerialNumber: syz
[  193.239333][   T40] usb 10-1: config 0 descriptor??
[  193.646323][   T40] usb 10-1: Found UVC 0.00 device syz (046d:0823)
[  193.653011][   T40] usb 10-1: No valid video chain found.
[  193.852124][   T40] usb 10-1: USB disconnect, device number 6
[  194.402230][ T9951] SELinux: ebitmap: start bit 0 comes after start bit 0
[  194.410994][ T9951] SELinux: failed to load policy
[  194.472474][ T9962] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9962 comm=syz.5.4105
[  194.644213][   T28] kauditd_printk_skb: 46 callbacks suppressed
[  194.644229][   T28] audit: type=1400 audit(2000000002.160:5236): avc:  denied  { sqpoll } for  pid=9983 comm="syz.9.4115" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  194.675809][   T28] audit: type=1326 audit(2000000002.190:5237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9976 comm="syz.5.4114" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c81d8e969 code=0x0
[  194.766928][   T28] audit: type=1326 audit(2000000002.280:5238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf8f8e969 code=0x7ffc0000
[  194.790574][   T28] audit: type=1326 audit(2000000002.280:5239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf8f2ab39 code=0x7ffc0000
[  194.814414][   T28] audit: type=1326 audit(2000000002.280:5240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf8f2ab39 code=0x7ffc0000
[  194.838596][   T28] audit: type=1326 audit(2000000002.280:5241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf8f2ab39 code=0x7ffc0000
[  194.862465][   T28] audit: type=1326 audit(2000000002.280:5242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf8f2ab39 code=0x7ffc0000
[  194.886481][   T28] audit: type=1326 audit(2000000002.280:5243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf8f2ab39 code=0x7ffc0000
[  194.910131][   T28] audit: type=1326 audit(2000000002.280:5244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf8f2ab39 code=0x7ffc0000
[  194.933677][   T28] audit: type=1326 audit(2000000002.280:5245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10002 comm="syz.4.4123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf8f2ab39 code=0x7ffc0000
[  195.018505][ T2399] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  195.038486][   T40] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  195.076330][T10009] incfs: Options parsing error. -22
[  195.082106][T10009] incfs: mount failed -22
[  195.199624][ T2399] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  195.210759][ T2399] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.221148][ T2399] usb 1-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  195.230376][ T2399] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.239429][   T40] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  195.249802][   T40] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  195.260972][ T2399] usb 1-1: config 0 descriptor??
[  195.268821][   T40] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  195.278196][   T40] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.286699][   T40] usb 6-1: Product: syz
[  195.291397][   T40] usb 6-1: Manufacturer: syz
[  195.296199][   T40] usb 6-1: SerialNumber: syz
[  195.690093][ T2399] elo 0003:04E7:0030.003A: item fetching failed at offset 5/7
[  195.705614][ T2399] elo 0003:04E7:0030.003A: parse failed
[  195.711763][ T2399] elo: probe of 0003:04E7:0030.003A failed with error -22
[  195.731492][T10049] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4156'.
[  195.742735][T10051] tipc: Started in network mode
[  195.747666][T10051] tipc: Node identity 7f000001, cluster identity 4711
[  195.756132][T10051] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  195.805578][T10060] netlink: 20 bytes leftover after parsing attributes in process `syz.9.4147'.
[  195.835758][T10064] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4151'.
[  195.845036][T10064] device veth1_macvtap left promiscuous mode
[  195.876169][T10066] loop9: detected capacity change from 0 to 2048
[  195.890514][T10066] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  195.924477][ T8090] usb 1-1: USB disconnect, device number 12
[  195.937604][ T9559] EXT4-fs (loop9): unmounting filesystem.
[  196.084485][ T2399] hid-generic 0000:0000:0000.003B: unknown main item tag 0x0
[  196.095371][T10084] loop9: detected capacity change from 0 to 1024
[  196.102318][ T2399] hid-generic 0000:0000:0000.003B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  196.112576][T10084] EXT4-fs: Ignoring removed nomblk_io_submit option
[  196.119874][T10084] EXT4-fs: Mount option(s) incompatible with ext2
[  196.233290][T10090] binder: 10089:10090 ioctl c0306201 200000000480 returned -14
[  196.310273][T10098] loop4: detected capacity change from 0 to 256
[  196.316878][   T40] cdc_mbim 6-1:1.0: bind() failure
[  196.323348][   T40] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  196.333764][T10102] loop9: detected capacity change from 0 to 256
[  196.338525][   T40] cdc_ncm 6-1:1.1: bind() failure
[  196.344535][T10102] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  196.532115][  T305] usb 6-1: USB disconnect, device number 23
[  196.708699][T10127] wireguard: wg2: Could not create IPv6 socket
[  196.725845][T10127] device wg2 entered promiscuous mode
[  196.832475][T10134] input: syz1 as /devices/virtual/input/input46
[  197.074603][T10149] loop0: detected capacity change from 0 to 1024
[  197.107168][T10149] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  197.115863][T10149] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.133787][T10149] netlink: 104 bytes leftover after parsing attributes in process `syz.0.4188'.
[  197.162040][T10157] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4191'.
[  197.185444][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  197.245204][T10173] incfs: Options parsing error. -22
[  197.251670][T10173] incfs: mount failed -22
[  197.310649][T10193] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4219'.
[  197.594082][T10229] loop0: detected capacity change from 0 to 2048
[  197.610201][T10229] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  197.739850][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  197.748494][ T2399] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  197.758532][ T8090] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  197.800865][T10239] loop4: detected capacity change from 0 to 128
[  197.807371][T10239] EXT4-fs: Ignoring removed nobh option
[  197.814570][T10239] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  197.823675][T10239] ext4 filesystem being mounted at /225/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  197.844956][T10239] EXT4-fs error (device loop4): __ext4_remount:6598: comm syz.4.4228: Abort forced by user
[  197.855367][T10239] EXT4-fs (loop4): Remounting filesystem read-only
[  197.861996][T10239] EXT4-fs (loop4): re-mounted. Quota mode: none.
[  197.875980][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  197.929596][ T2399] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.940754][ T2399] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  197.951093][ T2399] usb 6-1: New USB device found, idVendor=2505, idProduct=0220, bcdDevice= 0.00
[  197.960413][ T2399] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.975424][ T2399] usb 6-1: config 0 descriptor??
[  197.977740][ T8090] usb 10-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  197.997825][ T8090] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 2
[  198.006908][ T8090] usb 10-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  198.029917][ T8090] usb 10-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[  198.043396][ T8090] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.051593][ T8090] usb 10-1: Product: syz
[  198.055910][ T8090] usb 10-1: Manufacturer: syz
[  198.060667][ T8090] usb 10-1: SerialNumber: syz
[  198.066100][ T8090] usb 10-1: config 0 descriptor??
[  198.079062][ T8090] usb 10-1: Found UVC 34.00 device syz (8086:0b5b)
[  198.085641][ T8090] usb 10-1: No valid video chain found.
[  198.280455][ T8090] usb 10-1: USB disconnect, device number 7
[  198.390340][ T2399] usb 6-1: string descriptor 0 read error: -71
[  198.398100][ T2399] usbhid 6-1:0.0: can't add hid device: -71
[  198.404089][ T2399] usbhid: probe of 6-1:0.0 failed with error -71
[  198.411395][ T2399] usb 6-1: USB disconnect, device number 24
[  198.810570][T10262] loop9: detected capacity change from 0 to 512
[  198.879199][T10262] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  198.888796][T10262] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.919056][T10262] EXT4-fs error (device loop9): ext4_do_update_inode:5255: inode #2: comm syz.9.4235: corrupted inode contents
[  198.922835][T10278] 9pnet: p9_errstr2errno: server reported unknown error �<jqz�PL�������<�p�� �#���v�g�B�B���[R����e�ve
[  198.922835][T10278] 
[  198.939745][T10262] EXT4-fs error (device loop9): ext4_dirty_inode:6120: inode #2: comm syz.9.4235: mark_inode_dirty error
[  198.961112][T10262] EXT4-fs error (device loop9): ext4_do_update_inode:5255: inode #2: comm syz.9.4235: corrupted inode contents
[  198.973299][T10262] EXT4-fs error (device loop9): __ext4_ext_dirty:202: inode #2: comm syz.9.4235: mark_inode_dirty error
[  198.986975][T10283] EXT4-fs error (device loop9): ext4_do_update_inode:5255: inode #2: comm syz.9.4235: corrupted inode contents
[  198.999111][T10283] EXT4-fs error (device loop9): ext4_dirty_inode:6120: inode #2: comm syz.9.4235: mark_inode_dirty error
[  199.032746][T10283] EXT4-fs error (device loop9): ext4_do_update_inode:5255: inode #2: comm syz.9.4235: corrupted inode contents
[  199.061097][T10262] EXT4-fs error (device loop9): ext4_do_update_inode:5255: inode #2: comm syz.9.4235: corrupted inode contents
[  199.083479][T10262] EXT4-fs error (device loop9): ext4_setent:3695: inode #2: comm syz.9.4235: mark_inode_dirty error
[  199.130516][ T9559] EXT4-fs (loop9): unmounting filesystem.
[  199.167707][T10304] loop5: detected capacity change from 0 to 512
[  199.178162][T10304] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.4254: casefold flag without casefold feature
[  199.191931][T10304] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.4254: couldn't read orphan inode 15 (err -117)
[  199.207064][T10304] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  199.236935][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  199.306669][T10319] random: crng reseeded on system resumption
[  199.608569][  T305] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  199.799729][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  199.810747][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  199.820603][  T305] usb 1-1: New USB device found, idVendor=2505, idProduct=0220, bcdDevice= 0.00
[  199.829688][  T305] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.838228][  T305] usb 1-1: config 0 descriptor??
[  199.920731][T10342] can0: slcan on ttyS3.
[  199.948613][T10341] can0 (unregistered): slcan off ttyS3.
[  200.002066][   T28] kauditd_printk_skb: 760 callbacks suppressed
[  200.002090][   T28] audit: type=1400 audit(2000000007.520:6006): avc:  denied  { setopt } for  pid=10355 comm="syz.5.4278" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  200.037850][T10359] loop5: detected capacity change from 0 to 512
[  200.050223][T10359] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  200.059368][T10359] ext4 filesystem being mounted at /469/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.074053][T10359] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.4279: corrupted inode contents
[  200.086220][T10359] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #2: comm syz.5.4279: mark_inode_dirty error
[  200.097864][T10359] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.4279: corrupted inode contents
[  200.110014][T10359] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #2: comm syz.5.4279: mark_inode_dirty error
[  200.128316][T10359] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.4279: corrupted inode contents
[  200.140489][T10359] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #2: comm syz.5.4279: mark_inode_dirty error
[  200.152231][T10359] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.4279: corrupted inode contents
[  200.166854][T10359] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #2: comm syz.5.4279: corrupted inode contents
[  200.179053][T10359] EXT4-fs error (device loop5): ext4_setent:3695: inode #2: comm syz.5.4279: mark_inode_dirty error
[  200.200473][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  200.216407][   T28] audit: type=1400 audit(2000000007.730:6007): avc:  denied  { create } for  pid=10364 comm="syz.5.4281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  200.246029][  T305] usb 1-1: string descriptor 0 read error: -71
[  200.249166][   T28] audit: type=1400 audit(2000000007.730:6008): avc:  denied  { setopt } for  pid=10364 comm="syz.5.4281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  200.271961][   T28] audit: type=1400 audit(2000000007.760:6009): avc:  denied  { ioctl } for  pid=10364 comm="syz.5.4281" path="socket:[56809]" dev="sockfs" ino=56809 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  200.299451][  T305] usbhid 1-1:0.0: can't add hid device: -71
[  200.309844][  T305] usbhid: probe of 1-1:0.0 failed with error -71
[  200.317519][   T28] audit: type=1400 audit(2000000007.760:6010): avc:  denied  { bind } for  pid=10364 comm="syz.5.4281" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  200.344042][  T305] usb 1-1: USB disconnect, device number 13
[  200.744287][   T28] audit: type=1400 audit(2000000008.260:6011): avc:  denied  { mounton } for  pid=10383 comm="syz.3.4289" path=2F313236342FE91F7189591E9233614B dev="tmpfs" ino=6641 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  200.802380][T10390] input: syz0 as /devices/virtual/input/input47
[  200.854643][T10399] loop0: detected capacity change from 0 to 512
[  200.870477][T10399] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  200.879581][T10399] ext4 filesystem being mounted at /109/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.894718][T10399] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.4294: corrupted inode contents
[  200.913910][T10399] EXT4-fs error (device loop0): ext4_dirty_inode:6120: inode #2: comm syz.0.4294: mark_inode_dirty error
[  200.925631][T10399] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.4294: corrupted inode contents
[  200.937771][T10399] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.4294: mark_inode_dirty error
[  200.956863][T10399] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.4294: corrupted inode contents
[  200.969082][T10399] EXT4-fs error (device loop0): ext4_dirty_inode:6120: inode #2: comm syz.0.4294: mark_inode_dirty error
[  200.987715][T10399] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.4294: corrupted inode contents
[  201.023359][T10399] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #2: comm syz.0.4294: corrupted inode contents
[  201.035582][T10399] EXT4-fs error (device loop0): ext4_setent:3695: inode #2: comm syz.0.4294: mark_inode_dirty error
[  201.062412][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  201.076073][T10412] device wireguard0 entered promiscuous mode
[  201.086959][T10415] futex_wake_op: syz.0.4301 tries to shift op by -1; fix this program
[  201.163539][T10419] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  201.165452][   T28] audit: type=1400 audit(2000000008.680:6012): avc:  denied  { write } for  pid=10418 comm="syz.4.4303" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  201.199568][T10421] loop4: detected capacity change from 0 to 2048
[  201.201250][   T28] audit: type=1400 audit(2000000008.680:6013): avc:  denied  { open } for  pid=10418 comm="syz.4.4303" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  201.211692][T10423] xt_bpf: check failed: parse error
[  201.236377][T10421] EXT4-fs: Mount option(s) incompatible with ext2
[  201.313428][T10429] loop5: detected capacity change from 0 to 8192
[  201.424312][   T28] audit: type=1400 audit(2000000008.940:6014): avc:  denied  { ioctl } for  pid=10441 comm="syz.5.4312" path="socket:[55910]" dev="sockfs" ino=55910 ioctlcmd=0x48d4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  201.488550][   T28] audit: type=1400 audit(2000000008.990:6015): avc:  denied  { getopt } for  pid=10445 comm="syz.5.4314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  201.581368][T10458] netlink: 164 bytes leftover after parsing attributes in process `syz.3.4320'.
[  201.595234][T10458] netlink: 164 bytes leftover after parsing attributes in process `syz.3.4320'.
[  201.604731][T10458] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4320'.
[  201.672110][T10469] SELinux: failed to load policy
[  201.698366][T10467] device sit0 left promiscuous mode
[  201.782347][T10467] device bridge2 left promiscuous mode
[  201.801840][T10474] netlink: 43 bytes leftover after parsing attributes in process `syz.3.4339'.
[  202.017302][T10508] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4342'.
[  202.030735][T10510] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4343'.
[  202.040128][T10510] netem: change failed
[  202.167195][T10532] syzkaller0: tun_chr_ioctl cmd 1074812117
[  202.770988][T10557] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4362'.
[  202.969903][T10572] loop9: detected capacity change from 0 to 2048
[  203.012448][T10572] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  203.079043][ T9559] EXT4-fs (loop9): unmounting filesystem.
[  203.265704][T10596] input: syz1 as /devices/virtual/input/input48
[  203.504571][T10603] loop5: detected capacity change from 0 to 40427
[  203.515792][T10603] F2FS-fs (loop5): Insane cp_payload (553648128 >= 504)
[  203.522886][T10603] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  203.532176][T10603] F2FS-fs (loop5): invalid crc value
[  203.539219][T10603] F2FS-fs (loop5): Found nat_bits in checkpoint
[  203.584909][T10603] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  203.592205][T10603] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  203.636111][T10603] syz.5.4381: attempt to access beyond end of device
[  203.636111][T10603] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  203.658522][  T305] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  203.848657][  T305] usb 5-1: Using ep0 maxpacket: 32
[  203.862209][  T305] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  203.885240][  T305] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  203.901165][  T305] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  203.910628][  T305] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.920149][  T305] usb 5-1: config 0 descriptor??
[  204.240977][T10626] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4387'.
[  204.266881][T10632] loop5: detected capacity change from 0 to 512
[  204.301414][T10632] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  204.312603][T10632] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  204.327863][T10632] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[  204.338748][T10632] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  204.346834][T10632] System zones: 0-2, 18-18, 34-34
[  204.352189][  T305] kone 0003:1E7D:2CED.003C: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.4-1/input0
[  204.364100][T10632] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1087: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  204.384817][T10646] loop9: detected capacity change from 0 to 1024
[  204.385509][T10632] EXT4-fs (loop5): 1 truncate cleaned up
[  204.397141][T10632] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  204.409946][T10646] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  204.426196][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  204.435145][ T9559] Trying to write to read-only block-device loop9
[  204.441769][ T9559] Trying to write to read-only block-device loop9
[  204.448323][ T9559] Trying to write to read-only block-device loop9
[  204.455055][ T9559] Trying to write to read-only block-device loop9
[  204.461635][ T9559] Trying to write to read-only block-device loop9
[  204.468194][ T9559] Trying to write to read-only block-device loop9
[  204.475443][ T9559] Trying to write to read-only block-device loop9
[  204.486900][ T9559] Trying to write to read-only block-device loop9
[  204.494149][ T9559] Trying to write to read-only block-device loop9
[  204.501532][ T9559] EXT4-fs (loop9): unmounting filesystem.
[  204.508029][ T9559] Trying to write to read-only block-device loop9
[  204.537582][  T305] kone 0003:1E7D:2CED.003C: couldn't init struct kone_device
[  204.545146][  T305] kone 0003:1E7D:2CED.003C: couldn't install mouse
[  204.557586][  T305] kone: probe of 0003:1E7D:2CED.003C failed with error -5
[  204.567221][  T305] usb 5-1: USB disconnect, device number 14
[  205.063865][T10676] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4413'.
[  205.081847][   T28] kauditd_printk_skb: 10 callbacks suppressed
[  205.081864][   T28] audit: type=1400 audit(2000000012.600:6026): avc:  denied  { relabelfrom } for  pid=10678 comm="syz.4.4414" name="TCPv6" dev="sockfs" ino=57427 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  205.113608][   T28] audit: type=1400 audit(2000000012.600:6027): avc:  denied  { relabelto } for  pid=10678 comm="syz.4.4414" name="TCPv6" dev="sockfs" ino=57427 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=tcp_socket permissive=1 trawcon="system_u:object_r:login_exec_t:s0"
[  205.236255][T10702] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4427'.
[  205.640684][T10737] loop5: detected capacity change from 0 to 40427
[  205.648743][T10737] F2FS-fs (loop5): invalid crc value
[  205.656581][T10737] F2FS-fs (loop5): Found nat_bits in checkpoint
[  205.668545][ T8096] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  205.698245][T10737] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  205.746109][ T4058] syz-executor: attempt to access beyond end of device
[  205.746109][ T4058] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  205.859782][ T8096] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  205.870729][ T8096] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  205.881706][ T8096] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.891476][ T8096] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  205.905423][ T8096] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  205.914572][ T8096] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  205.922693][ T8096] usb 5-1: Manufacturer: syz
[  205.927756][ T8096] usb 5-1: config 0 descriptor??
[  206.069359][T10772] 9pnet: p9_errstr2errno: server reported unknown error �@00000000000000000005
[  206.336103][ T8096] appleir 0003:05AC:8243.003D: unknown main item tag 0x0
[  206.346865][ T8096] appleir 0003:05AC:8243.003D: No inputs registered, leaving
[  206.357942][ T8096] appleir 0003:05AC:8243.003D: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  206.394623][T10784] 9pnet: p9_errstr2errno: server reported unknown error ���l0�&I��0��(|9ʒ�0%c޻���$�Q��M�-
[  206.428602][   T28] audit: type=1400 audit(2000000013.940:6028): avc:  denied  { read } for  pid=10789 comm="syz.0.4465" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  206.547018][   T28] audit: type=1400 audit(2000000014.060:6029): avc:  denied  { append } for  pid=10726 comm="syz.4.4437" name="hiddev0" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  206.861200][ T8102] usb 5-1: USB disconnect, device number 15
[  206.883682][T10804] loop5: detected capacity change from 0 to 512
[  206.890930][T10804] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  206.901719][T10804] EXT4-fs (loop5): orphan cleanup on readonly fs
[  206.908327][T10804] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:511: comm syz.5.4471: Block bitmap for bg 0 marked uninitialized
[  206.921874][T10804] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  206.931461][T10804] EXT4-fs (loop5): 1 orphan inode deleted
[  206.937202][T10804] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  206.994555][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  207.379835][T10826] xt_hashlimit: size too large, truncated to 1048576
[  207.392293][T10820] loop0: detected capacity change from 0 to 40427
[  207.418815][T10820] F2FS-fs (loop0): invalid crc value
[  207.450965][T10820] F2FS-fs (loop0): Found nat_bits in checkpoint
[  207.509075][   T28] audit: type=1400 audit(2000000015.030:6030): avc:  denied  { mounton } for  pid=10838 comm="syz.9.4485" path="/proc/219/task" dev="proc" ino=58485 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  207.545449][T10820] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  207.553104][ T8096] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  207.760409][T10820] syz.0.4476: attempt to access beyond end of device
[  207.760409][T10820] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  207.819621][ T8096] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  207.836032][ T8096] usb 6-1: New USB device found, idVendor=046d, idProduct=c50c, bcdDevice= 0.00
[  207.867151][ T8096] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.881405][ T8096] usb 6-1: config 0 descriptor??
[  207.907043][T10849] 9pnet_fd: Insufficient options for proto=fd
[  209.713291][ T8096] logitech 0003:046D:C50C.003E: unbalanced collection at end of report description
[  209.728683][ T8096] logitech 0003:046D:C50C.003E: parse failed
[  209.743721][ T8096] logitech: probe of 0003:046D:C50C.003E failed with error -22
[  209.762546][   T28] audit: type=1400 audit(2000000017.280:6031): avc:  denied  { map } for  pid=10874 comm="syz.0.4500" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  209.809988][T10883] loop9: detected capacity change from 0 to 2048
[  209.816811][T10883] /dev/loop9: Can't open blockdev
[  209.881705][T10886] 9pnet: p9_errstr2errno: server reported unknown error ���l0�&I��0��(|9ʒ�0%c޻���$�Q��M�-
[  209.920128][ T8096] usb 6-1: USB disconnect, device number 25
[  210.058507][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  210.058514][ T4991] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  210.950271][T10899] 9pnet: p9_errstr2errno: server reported unknown error �@00000000000000000005
[  211.001985][T10908] SELinux: failed to load policy
[  211.131541][T10921] loop0: detected capacity change from 0 to 2048
[  211.150258][T10921] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  211.163901][T10921] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  211.188345][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  211.201819][  T523] Bluetooth: hci0: Frame reassembly failed (-84)
[  211.221101][T10929] 9pnet: p9_errstr2errno: server reported unknown error ���l0�&I��0��(|9ʒ�0%c޻���$�Q��M�-
[  213.258556][  T517] Bluetooth: hci0: command 0x1003 tx timeout
[  213.258563][ T4991] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  213.379683][T10948] loop4: detected capacity change from 0 to 8192
[  213.387328][T10948] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  213.435061][T10940] loop9: detected capacity change from 0 to 40427
[  213.550919][   T28] audit: type=1400 audit(2000000021.070:6032): avc:  denied  { mount } for  pid=10950 comm="syz.0.4531" name="/" dev="cgroup" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  213.595494][   T28] audit: type=1400 audit(2000000021.070:6033): avc:  denied  { unmount } for  pid=9167 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  213.621813][T10961] loop0: detected capacity change from 0 to 256
[  213.630939][T10965] __nla_validate_parse: 3 callbacks suppressed
[  213.630960][T10965] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4538'.
[  213.636548][T10964] loop4: detected capacity change from 0 to 2048
[  213.701796][T10973] xt_hashlimit: size too large, truncated to 1048576
[  213.718030][T10964] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  213.739371][T10964] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  213.798298][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  215.613643][T11025] netlink: 96 bytes leftover after parsing attributes in process `syz.9.4564'.
[  215.658942][ T2399] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  215.676818][T11042] 9pnet_fd: Insufficient options for proto=fd
[  215.732002][T11046] loop5: detected capacity change from 0 to 128
[  215.740352][T11046] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  215.749452][T11046] ext4 filesystem being mounted at /526/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.778044][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  215.849625][ T2399] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  215.859784][ T2399] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  215.869447][ T2399] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  215.878590][ T2399] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  215.886570][ T2399] usb 1-1: SerialNumber: syz
[  216.038486][   T40] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  216.093698][ T2399] usb 1-1: 0:2 : does not exist
[  216.100018][ T2399] usb 1-1: USB disconnect, device number 14
[  216.219728][   T40] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  216.228460][   T40] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  216.238709][   T40] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  216.247834][   T40] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  216.258797][   T40] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  216.269746][   T40] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  216.278992][   T40] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  216.287070][   T40] usb 5-1: Product: syz
[  216.291318][   T40] usb 5-1: Manufacturer: syz
[  216.297231][   T40] cdc_wdm 5-1:1.0: skipping garbage
[  216.302992][   T40] cdc_wdm 5-1:1.0: skipping garbage
[  216.308935][   T40] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  216.480003][   T28] audit: type=1326 audit(2000000024.000:6034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11035 comm="syz.9.4567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa08838e969 code=0x7fc00000
[  216.518647][   T40] usb 5-1: USB disconnect, device number 16
[  216.541785][   T28] audit: type=1400 audit(2000000024.060:6035): avc:  denied  { bpf } for  pid=11061 comm="syz.3.4576" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  216.565392][   T28] audit: type=1400 audit(2000000024.070:6036): avc:  denied  { map_create } for  pid=11060 comm="syz.9.4573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  216.584986][   T28] audit: type=1400 audit(2000000024.070:6037): avc:  denied  { map_read map_write } for  pid=11060 comm="syz.9.4573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  216.605680][   T28] audit: type=1400 audit(2000000024.070:6038): avc:  denied  { prog_load } for  pid=11060 comm="syz.9.4573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  216.625057][   T28] audit: type=1400 audit(2000000024.070:6039): avc:  denied  { perfmon } for  pid=11060 comm="syz.9.4573" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  216.646260][   T28] audit: type=1400 audit(2000000024.070:6040): avc:  denied  { prog_run } for  pid=11060 comm="syz.9.4573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  216.666308][   T28] audit: type=1400 audit(2000000024.080:6041): avc:  denied  { read write } for  pid=4058 comm="syz-executor" name="loop5" dev="devtmpfs" ino=123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  216.885072][T11094] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4592'.
[  216.962044][T11108] loop0: detected capacity change from 0 to 512
[  216.969639][T11108] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  216.982902][T11108] EXT4-fs (loop0): 1 truncate cleaned up
[  216.988729][T11108] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  217.012161][T11112] loop5: detected capacity change from 0 to 256
[  217.019176][T11112] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  217.019451][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  217.030101][T11112] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  217.046562][T11112] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  217.048600][   T40] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  217.095376][T11116] loop5: detected capacity change from 0 to 4096
[  217.104550][T11116] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  217.163139][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  217.248571][   T40] usb 10-1: Using ep0 maxpacket: 32
[  217.255052][   T40] usb 10-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  217.266249][   T40] usb 10-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  217.277234][   T40] usb 10-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  217.286480][   T40] usb 10-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  217.295224][   T40] usb 10-1: Product: syz
[  217.299578][   T40] usb 10-1: Manufacturer: syz
[  217.305897][   T40] hub 10-1:4.0: USB hub found
[  217.448501][ T2399] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  217.458538][  T305] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  217.507005][   T40] hub 10-1:4.0: config failed, hub doesn't have any ports! (err -19)
[  217.629843][ T2399] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  217.641533][ T2399] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  217.651770][ T2399] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  217.664955][ T2399] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  217.674054][ T2399] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.682504][  T305] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  217.692765][  T305] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  217.701904][ T2399] usb 1-1: config 0 descriptor??
[  217.708376][  T305] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  217.717476][  T305] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  217.725585][  T305] usb 6-1: SerialNumber: syz
[  217.933008][  T305] usb 6-1: 0:2 : does not exist
[  217.939486][  T305] usb 6-1: USB disconnect, device number 26
[  218.111045][ T2399] plantronics 0003:047F:FFFF.003F: unknown main item tag 0x0
[  218.118779][ T2399] plantronics 0003:047F:FFFF.003F: No inputs registered, leaving
[  218.127634][ T2399] plantronics 0003:047F:FFFF.003F: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  218.456942][T11130] loop5: detected capacity change from 0 to 512
[  218.464190][T11130] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  218.484363][T11130] EXT4-fs (loop5): 1 truncate cleaned up
[  218.490189][T11130] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  218.512876][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  218.530934][T11139] loop5: detected capacity change from 0 to 512
[  218.560454][T11139] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  218.569696][T11139] ext4 filesystem being mounted at /541/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.596339][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  219.482314][T11148] loop4: detected capacity change from 0 to 512
[  219.510874][T11148] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  219.520150][T11148] ext4 filesystem being mounted at /295/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  219.535195][   T28] kauditd_printk_skb: 61 callbacks suppressed
[  219.535211][   T28] audit: type=1400 audit(2000000027.050:6103): avc:  denied  { setattr } for  pid=11147 comm="syz.4.4612" path="/295/bus/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  219.547400][T11148] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #18: comm syz.4.4612: corrupted inode contents
[  219.576782][T11148] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #18: comm syz.4.4612: mark_inode_dirty error
[  219.588613][T11148] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #18: comm syz.4.4612: corrupted inode contents
[  219.600795][T11148] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2963: inode #18: comm syz.4.4612: mark_inode_dirty error
[  219.612999][T11148] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2966: inode #18: comm syz.4.4612: mark inode dirty (error -117)
[  219.625777][T11148] EXT4-fs warning (device loop4): ext4_evict_inode:299: xattr delete (err -117)
[  219.653411][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  219.676336][   T28] audit: type=1400 audit(2000000027.190:6104): avc:  denied  { create } for  pid=11155 comm="syz.5.4617" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  219.696224][   T28] audit: type=1400 audit(2000000027.190:6105): avc:  denied  { map } for  pid=11155 comm="syz.5.4617" path="socket:[58129]" dev="sockfs" ino=58129 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  219.719500][   T28] audit: type=1400 audit(2000000027.190:6106): avc:  denied  { read } for  pid=11155 comm="syz.5.4617" path="socket:[58129]" dev="sockfs" ino=58129 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  219.819619][   T28] audit: type=1400 audit(2000000027.340:6107): avc:  denied  { name_bind } for  pid=11163 comm="syz.9.4620" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  219.858537][   T28] audit: type=1400 audit(2000000027.340:6108): avc:  denied  { node_bind } for  pid=11163 comm="syz.9.4620" saddr=::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  219.880431][   T28] audit: type=1400 audit(2000000027.370:6109): avc:  denied  { map } for  pid=11163 comm="syz.9.4620" path="socket:[58142]" dev="sockfs" ino=58142 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  219.908574][T10480] usb 10-1: USB disconnect, device number 8
[  219.926128][   T28] audit: type=1400 audit(2000000027.440:6110): avc:  denied  { write } for  pid=11157 comm="syz.4.4614" name="001" dev="devtmpfs" ino=185 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  219.963442][T11158] usb usb8: usbfs: process 11158 (syz.4.4614) did not claim interface 0 before use
[  220.010732][T11173] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4624'.
[  220.038074][   T28] audit: type=1400 audit(2000000027.550:6111): avc:  denied  { execmem } for  pid=11159 comm="syz.5.4621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  220.090298][   T28] audit: type=1400 audit(2000000027.610:6112): avc:  denied  { bind } for  pid=11181 comm="syz.5.4627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  220.180410][T11198] syz.4.4635[11198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.180486][T11198] syz.4.4635[11198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.198970][T11198] netem: change failed
[  220.212201][T11200] loop0: detected capacity change from 0 to 2048
[  220.229274][ T8096] usb 1-1: USB disconnect, device number 15
[  220.241826][T11200] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  220.329950][T11213] loop4: detected capacity change from 0 to 1024
[  220.345664][T11213] EXT4-fs: Ignoring removed nobh option
[  220.351945][T11213] EXT4-fs: Ignoring removed bh option
[  220.358943][T11213] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  220.396294][T11213] EXT4-fs error (device loop4): ext4_orphan_get:1426: comm syz.4.4642: bad orphan inode 32767
[  220.408687][T11213] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  220.439530][T11206] loop5: detected capacity change from 0 to 40427
[  220.449467][T11206] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  220.457021][T11213] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 15: block 161:freeing already freed block (bit 10); block bitmap corrupt.
[  220.457377][T11206] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  220.482525][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  220.482934][T11206] F2FS-fs (loop5): Found nat_bits in checkpoint
[  220.516451][T11206] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  220.528639][T11206] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  220.535679][T11206] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  220.576857][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  220.609095][T11224] tipc: Cannot configure node identity twice
[  220.802658][T11222] loop4: detected capacity change from 0 to 40427
[  220.815297][T11222] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  220.820304][T11237] loop0: detected capacity change from 0 to 256
[  220.828238][T11222] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  220.843942][T11222] F2FS-fs (loop4): invalid crc value
[  220.884585][T11222] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  220.988806][T11222] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  220.995884][T11222] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  221.075055][T11222] syz.4.4653: attempt to access beyond end of device
[  221.075055][T11222] loop4: rw=2049, sector=53248, nr_sectors = 2048 limit=40427
[  221.110481][T11222] syz.4.4653: attempt to access beyond end of device
[  221.110481][T11222] loop4: rw=2049, sector=55296, nr_sectors = 2048 limit=40427
[  221.132709][T11222] syz.4.4653: attempt to access beyond end of device
[  221.132709][T11222] loop4: rw=2049, sector=57344, nr_sectors = 8 limit=40427
[  221.184574][ T7308] syz-executor: attempt to access beyond end of device
[  221.184574][ T7308] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  221.201260][T11252] loop5: detected capacity change from 0 to 1024
[  221.208017][T11252] EXT4-fs: Ignoring removed nobh option
[  221.214830][T11252] EXT4-fs: Ignoring removed bh option
[  221.227342][T11252] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  221.268018][T11252] EXT4-fs error (device loop5): ext4_orphan_get:1426: comm syz.5.4655: bad orphan inode 32767
[  221.284135][T11252] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  221.333230][T11252] EXT4-fs error (device loop5): mb_free_blocks:1815: group 0, inode 15: block 161:freeing already freed block (bit 10); block bitmap corrupt.
[  221.405387][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  221.670427][T11269] loop5: detected capacity change from 0 to 1024
[  221.729722][T11269] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  221.789466][T11279] netlink: 44 bytes leftover after parsing attributes in process `syz.9.4665'.
[  221.799123][T11269] EXT4-fs (loop5): shut down requested (1)
[  221.848252][T11279] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.855586][T11279] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.868973][ T4058] EXT4-fs (loop5): unmounting filesystem.
[  221.900295][T11280] netlink: 44 bytes leftover after parsing attributes in process `syz.9.4665'.
[  222.061615][T11292] loop4: detected capacity change from 0 to 128
[  222.079129][T11292] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[  222.112897][T11292] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  222.183164][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  222.188726][T11284] loop9: detected capacity change from 0 to 40427
[  222.234309][T11297] SELinux:  unknown common 2
[  222.246821][T11297] SELinux: failed to load policy
[  222.248289][T11299] loop5: detected capacity change from 0 to 512
[  222.259165][T11299] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  222.269263][T11299] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  222.279175][T11299] EXT4-fs (loop5): group descriptors corrupted!
[  222.285166][T11301] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4677'.
[  222.836183][T11366] syz.3.4703[11366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  222.836266][T11366] syz.3.4703[11366] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  222.855316][T11369] loop9: detected capacity change from 0 to 2048
[  222.874648][T11369] EXT4-fs: Ignoring removed bh option
[  222.880656][T11369] /dev/loop9: Can't open blockdev
[  222.888548][   T19] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  223.079716][   T19] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.090715][   T19] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  223.100644][   T19] usb 5-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[  223.109714][   T19] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.118210][   T19] usb 5-1: config 0 descriptor??
[  223.526151][   T19] hid-led 0003:04D8:F372.0040: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.4-1/input0
[  223.541400][   T19] hid-led 0003:04D8:F372.0040: Greynut Luxafor initialized
[  223.727013][   T19] usb 5-1: USB disconnect, device number 17
[  223.733635][ T8096] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[  223.741923][ T8096] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[  223.750344][ T8096] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[  223.758407][ T8096] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[  223.766861][ T8096] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[  223.775234][ T8096] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[  223.783412][ T8096] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[  223.791650][ T8096] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[  223.800010][ T8096] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[  223.808069][ T8096] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[  223.816295][ T8096] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[  223.825563][ T8095] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[  223.833813][ T8096] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[  223.842268][ T8096] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[  223.850749][ T8096] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[  223.858881][ T8096] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[  223.867077][ T8096] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[  223.875486][ T8096] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[  224.504534][T11401] loop4: detected capacity change from 0 to 40427
[  224.512332][T11401] F2FS-fs (loop4): invalid crc value
[  224.518529][ T8094] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  224.518824][T11401] F2FS-fs (loop4): Found nat_bits in checkpoint
[  224.554772][T11401] F2FS-fs (loop4): Start checkpoint disabled!
[  224.561044][   T19] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  224.567670][T11401] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  224.593311][   T28] kauditd_printk_skb: 27 callbacks suppressed
[  224.593328][   T28] audit: type=1400 audit(2000000032.110:6140): avc:  denied  { ioctl } for  pid=11400 comm="syz.4.4719" path="/317/bus/file0" dev="loop4" ino=10 ioctlcmd=0xf50d scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  224.608562][ T2399] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  224.637492][   T28] audit: type=1400 audit(2000000032.150:6141): avc:  denied  { mount } for  pid=11404 comm="syz.3.4721" name="/" dev="cgroup" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  224.650344][  T316] kworker/u4:4: attempt to access beyond end of device
[  224.650344][  T316] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  224.729670][ T8094] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.740761][ T8094] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.750704][ T8094] usb 6-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  224.758636][   T19] usb 1-1: Using ep0 maxpacket: 32
[  224.759870][ T8094] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.765975][   T19] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  224.773788][ T8094] usb 6-1: config 0 descriptor??
[  224.788571][   T19] usb 1-1: config 0 has no interface number 0
[  224.794687][   T19] usb 1-1: config 0 interface 184 has no altsetting 0
[  224.803132][   T19] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  224.812395][   T19] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.820558][   T19] usb 1-1: Product: syz
[  224.824830][   T19] usb 1-1: Manufacturer: syz
[  224.832988][ T2399] usb 10-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b
[  224.834459][   T19] usb 1-1: SerialNumber: syz
[  224.844332][ T2399] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.852884][   T19] usb 1-1: config 0 descriptor??
[  224.856438][ T2399] usb 10-1: config 0 descriptor??
[  224.866129][   T19] smsc75xx v1.0.0
[  224.899718][   T28] audit: type=1400 audit(2000000032.420:6142): avc:  denied  { create } for  pid=11412 comm="syz.3.4724" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  224.921413][   T28] audit: type=1400 audit(2000000032.420:6143): avc:  denied  { link } for  pid=11412 comm="syz.3.4724" name="file1" dev="tmpfs" ino=7178 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  224.950692][   T28] audit: type=1400 audit(2000000032.440:6144): avc:  denied  { unlink } for  pid=285 comm="syz-executor" name="file0" dev="tmpfs" ino=7178 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  224.983531][   T28] audit: type=1400 audit(2000000032.500:6145): avc:  denied  { write } for  pid=11417 comm="syz.4.4726" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  225.010065][   T28] audit: type=1400 audit(2000000032.500:6146): avc:  denied  { open } for  pid=11417 comm="syz.4.4726" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  225.211995][ T8094] elo 0003:04E7:0030.0041: item fetching failed at offset 5/7
[  225.219909][ T8094] elo 0003:04E7:0030.0041: parse failed
[  225.225524][ T8094] elo: probe of 0003:04E7:0030.0041 failed with error -22
[  225.431448][ T8094] usb 6-1: USB disconnect, device number 27
[  225.468853][   T19] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  225.480055][   T19] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  225.498017][ T2399] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  225.508274][ T2399] asix: probe of 10-1:0.0 failed with error -71
[  225.515917][ T2399] usb 10-1: USB disconnect, device number 9
[  225.890841][   T19] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000010: -71
[  225.902110][   T19] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write HW_CFG: -71
[  225.911849][   T19] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  225.921423][   T19] smsc75xx: probe of 1-1:0.184 failed with error -71
[  225.929469][   T19] usb 1-1: USB disconnect, device number 16
[  225.947468][T11428] device batadv_slave_1 entered promiscuous mode
[  225.954882][T11426] device batadv_slave_1 left promiscuous mode
[  226.061032][T11434] loop5: detected capacity change from 0 to 256
[  226.228762][T11445] xt_hashlimit: size too large, truncated to 1048576
[  226.319468][T11441] loop9: detected capacity change from 0 to 40427
[  226.484470][   T28] audit: type=1400 audit(2000000034.000:6147): avc:  denied  { create } for  pid=11455 comm="syz.9.4744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  226.505068][   T28] audit: type=1400 audit(2000000034.000:6148): avc:  denied  { write } for  pid=11455 comm="syz.9.4744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  226.508515][   T19] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  226.559021][T11471] loop9: detected capacity change from 0 to 256
[  226.572044][   T28] audit: type=1400 audit(2000000034.090:6149): avc:  denied  { read } for  pid=11473 comm="syz.4.4758" name="uinput" dev="devtmpfs" ino=262 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  226.729669][   T19] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  226.746299][   T19] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.769204][   T19] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  226.779139][   T19] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  226.793104][   T19] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  226.802290][   T19] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  226.810553][   T19] usb 6-1: Manufacturer: syz
[  226.825548][   T19] usb 6-1: config 0 descriptor??
[  226.848510][ T8095] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  227.029575][ T8095] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  227.039817][ T8095] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  227.049608][ T8095] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  227.058711][ T8095] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  227.066709][ T8095] usb 5-1: SerialNumber: syz
[  227.249854][   T19] appleir 0003:05AC:8243.0042: unknown main item tag 0x0
[  227.257207][   T19] appleir 0003:05AC:8243.0042: No inputs registered, leaving
[  227.265891][   T19] appleir 0003:05AC:8243.0042: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  227.278076][ T8095] usb 5-1: 0:2 : does not exist
[  227.285464][ T8095] usb 5-1: USB disconnect, device number 18
[  227.310814][T11513] loop0: detected capacity change from 0 to 2048
[  227.329203][T11513]  loop0: p1 < > p4
[  227.333713][T11513] loop0: p4 size 8388608 extends beyond EOD, truncated
[  229.065986][T11549] loop5: detected capacity change from 0 to 2048
[  229.098907][T11549]  loop5: p1 < > p4
[  229.103233][T11549] loop5: p4 size 8388608 extends beyond EOD, truncated
[  229.121454][T11557] loop4: detected capacity change from 0 to 256
[  229.157686][T11555] kvm [11553]: vcpu0, guest rIP: 0xfff0 unimplemented MMIO_CONF_BASE wrmsr: 0x95
[  229.194896][   T43] Bluetooth: hci0: Frame reassembly failed (-84)
[  229.242490][T11571] 9pnet: p9_errstr2errno: server reported unknown error �@�L��	O00000000000000000005
[  229.369832][ T8095] usb 6-1: USB disconnect, device number 28
[  229.376086][T11590] loop9: detected capacity change from 0 to 1024
[  229.384436][T11590] EXT4-fs: Ignoring removed nomblk_io_submit option
[  229.396026][T11590] /dev/loop9: Can't open blockdev
[  229.410390][T11594] loop0: detected capacity change from 0 to 2048
[  229.458831][T11594]  loop0: p1 < > p4
[  229.463218][T11594] loop0: p4 size 8388608 extends beyond EOD, truncated
[  229.644232][T11610] loop9: detected capacity change from 0 to 4096
[  229.651386][T11610] /dev/loop9: Can't open blockdev
[  229.713203][T11624] loop4: detected capacity change from 0 to 512
[  229.721753][T11624] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  229.743692][T11624] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #3: comm syz.4.4823: corrupted inode contents
[  229.755907][T11624] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #3: comm syz.4.4823: mark_inode_dirty error
[  229.767857][T11624] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #3: comm syz.4.4823: corrupted inode contents
[  229.780018][T11624] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #3: comm syz.4.4823: mark_inode_dirty error
[  229.791672][T11624] __quota_error: 11 callbacks suppressed
[  229.791694][T11624] Quota error (device loop4): write_blk: dquota write failed
[  229.804988][T11624] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  229.815056][T11624] EXT4-fs error (device loop4): ext4_acquire_dquot:6789: comm syz.4.4823: Failed to acquire dquot type 0
[  229.818504][   T40] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  229.827032][T11624] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.4823: corrupted inode contents
[  229.846253][T11624] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #16: comm syz.4.4823: mark_inode_dirty error
[  229.857865][T11624] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.4823: corrupted inode contents
[  229.870036][T11624] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.4823: mark_inode_dirty error
[  229.883177][T11624] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.4823: corrupted inode contents
[  229.895368][T11624] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  229.904200][T11624] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.4823: corrupted inode contents
[  229.916373][T11624] EXT4-fs error (device loop4): ext4_truncate:4314: inode #16: comm syz.4.4823: mark_inode_dirty error
[  229.927700][T11624] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  229.937305][T11624] EXT4-fs (loop4): 1 truncate cleaned up
[  229.943099][T11624] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  229.952182][T11624] ext4 filesystem being mounted at /338/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.995542][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  230.008539][   T40] usb 1-1: Using ep0 maxpacket: 8
[  230.015486][   T40] usb 1-1: unable to get BOS descriptor or descriptor too short
[  230.024808][   T40] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  230.035061][   T40] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3
[  230.045616][   T40] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  230.054851][   T40] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.062950][   T40] usb 1-1: Product: syz
[  230.067125][   T40] usb 1-1: Manufacturer: syz
[  230.071739][   T40] usb 1-1: SerialNumber: syz
[  230.284852][ T8095] usb 1-1: USB disconnect, device number 17
[  230.819043][   T28] audit: type=1400 audit(2000000038.340:6161): avc:  denied  { bind } for  pid=11644 comm="syz.9.4820" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  230.858561][   T28] audit: type=1400 audit(2000000038.340:6162): avc:  denied  { name_bind } for  pid=11644 comm="syz.9.4820" src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  230.865277][T11646] loop4: detected capacity change from 0 to 8192
[  230.898528][   T28] audit: type=1400 audit(2000000038.340:6163): avc:  denied  { node_bind } for  pid=11644 comm="syz.9.4820" src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  230.919677][   T28] audit: type=1400 audit(2000000038.360:6164): avc:  denied  { connect } for  pid=11644 comm="syz.9.4820" lport=512 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  231.108480][   T40] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  231.119329][T11667] overlayfs: failed to clone upperpath
[  232.509034][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  232.509925][ T4991] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  232.524838][T11568] Bluetooth: hci0: Opcode 0x0c20 failed: -4
[  232.543959][   T28] audit: type=1400 audit(2000000040.060:6165): avc:  denied  { name_bind } for  pid=11669 comm="syz.4.4842" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  232.603086][T11676] device wireguard0 entered promiscuous mode
[  232.658244][T11687] loop4: detected capacity change from 0 to 1024
[  232.662079][T11683] loop5: detected capacity change from 0 to 2048
[  232.672236][   T28] audit: type=1400 audit(2000000040.190:6166): avc:  denied  { read } for  pid=11688 comm="syz.0.4838" name="rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  232.674657][T11689] rtc_cmos 00:00: Alarms can be up to one day in the future
[  232.703071][T11683] EXT4-fs: Mount option(s) incompatible with ext2
[  232.705732][   T40] usb 10-1: New USB device found, idVendor=093a, idProduct=2476, bcdDevice= d.5b
[  232.718862][   T28] audit: type=1400 audit(2000000040.190:6167): avc:  denied  { open } for  pid=11688 comm="syz.0.4838" path="/dev/rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  232.718936][   T28] audit: type=1400 audit(2000000040.190:6168): avc:  denied  { ioctl } for  pid=11688 comm="syz.0.4838" path="/dev/rtc0" dev="devtmpfs" ino=263 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  232.742837][   T40] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.776335][   T40] usb 10-1: Product: syz
[  232.788603][   T40] usb 10-1: Manufacturer: syz
[  232.799033][   T40] usb 10-1: SerialNumber: syz
[  232.804880][T11687] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  232.813492][T11687] ext4 filesystem being mounted at /345/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  232.842538][T11687] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  232.857582][T11687] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[  232.870215][T11687] EXT4-fs (loop4): This should not happen!! Data will be lost
[  232.870215][T11687] 
[  232.880117][T11687] EXT4-fs (loop4): Total free blocks count 0
[  232.886233][T11687] EXT4-fs (loop4): Free/Dirty block details
[  232.892559][T11687] EXT4-fs (loop4): free_blocks=4293918720
[  232.899292][T11687] EXT4-fs (loop4): dirty_blocks=64
[  232.904426][T11687] EXT4-fs (loop4): Block reservation details
[  232.910613][T11687] EXT4-fs (loop4): i_reserved_data_blocks=4
[  232.963718][ T7308] EXT4-fs (loop4): unmounting filesystem.
[  233.029105][   T40] usb 10-1: Found UVC 0.00 device syz (093a:2476)
[  233.040438][   T40] usb 10-1: No valid video chain found.
[  233.052575][   T40] usb 10-1: USB disconnect, device number 10
[  233.099430][T11728] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4854'.
[  233.108612][T11728] netem: change failed
[  233.258518][ T8095] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  233.360909][T11742] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.368212][T11742] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.439751][ T8095] usb 5-1: config 0 has an invalid interface number: 101 but max is 0
[  233.447979][ T8095] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  233.466331][ T8095] usb 5-1: config 0 has no interface number 0
[  233.472512][ T8095] usb 5-1: config 0 interface 101 has no altsetting 0
[  233.487626][ T8095] usb 5-1: New USB device found, idVendor=12d1, idProduct=1c1f, bcdDevice=ef.18
[  233.501953][ T8095] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.515311][ T8095] usb 5-1: Product: syz
[  233.522757][ T8095] usb 5-1: Manufacturer: syz
[  233.530660][ T8095] usb 5-1: SerialNumber: syz
[  233.546577][ T8095] usb 5-1: config 0 descriptor??
[  233.559548][T10482] rtc_cmos 00:00: Alarms can be up to one day in the future
[  233.567569][ T8095] usb 5-1: bad CDC descriptors
[  233.575814][T10482] rtc_cmos 00:00: Alarms can be up to one day in the future
[  233.596004][T10482] rtc_cmos 00:00: Alarms can be up to one day in the future
[  233.607793][T11747] loop9: detected capacity change from 0 to 1024
[  233.643031][T11747] /dev/loop9: Can't open blockdev
[  233.656429][T10482] rtc_cmos 00:00: Alarms can be up to one day in the future
[  233.677578][T10482] rtc rtc0: __rtc_set_alarm: err=-22
[  233.775457][T11710] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  233.788671][T11710] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  233.801934][T11710] netlink: 43 bytes leftover after parsing attributes in process `syz.4.4857'.
[  233.812232][T11748] usb 5-1: USB disconnect, device number 19
[  233.847135][T11757] loop0: detected capacity change from 0 to 512
[  233.870986][T11757] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  233.897573][T11760] netlink: 20 bytes leftover after parsing attributes in process `syz.9.4869'.
[  233.913566][ T9167] EXT4-fs (loop0): unmounting filesystem.
[  234.229173][ T8094] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  234.229855][T11778] I/O error, dev loop11, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  234.246232][T11778] FAT-fs (loop11): unable to read boot sector
[  234.409836][ T8094] usb 10-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  234.419205][ T8094] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.427777][ T8094] usb 10-1: config 0 descriptor??
[  234.538448][    C0] ==================================================================
[  234.546574][    C0] BUG: KASAN: use-after-free in __run_timers+0x32b/0x9a0
[  234.553634][    C0] Write of size 8 at addr ffff88811a0cca00 by task syz-executor/4058
[  234.561721][    C0] 
[  234.564063][    C0] CPU: 0 PID: 4058 Comm: syz-executor Tainted: G        W          6.1.138-syzkaller-00046-gdb710ea87c32 #0
[  234.575532][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  234.585804][    C0] Call Trace:
[  234.589105][    C0]  <IRQ>
[  234.591951][    C0]  __dump_stack+0x21/0x24
[  234.596310][    C0]  dump_stack_lvl+0xee/0x150
[  234.601015][    C0]  ? __cfi_dump_stack_lvl+0x8/0x8
[  234.606063][    C0]  ? update_rq_clock+0x536/0x5c0
[  234.611004][    C0]  ? __run_timers+0x32b/0x9a0
[  234.615692][    C0]  print_address_description+0x71/0x210
[  234.621239][    C0]  print_report+0x4a/0x60
[  234.625586][    C0]  kasan_report+0x122/0x150
[  234.630095][    C0]  ? __run_timers+0x32b/0x9a0
[  234.634789][    C0]  __asan_report_store8_noabort+0x17/0x20
[  234.640537][    C0]  __run_timers+0x32b/0x9a0
[  234.645069][    C0]  ? sched_clock+0x9/0x10
[  234.649409][    C0]  ? sched_clock_cpu+0x6e/0x250
[  234.654279][    C0]  ? calc_index+0x200/0x200
[  234.658809][    C0]  ? kvm_sched_clock_read+0x18/0x40
[  234.664035][    C0]  run_timer_softirq+0x6a/0xf0
[  234.668818][    C0]  handle_softirqs+0x1d7/0x600
[  234.673611][    C0]  ? irqtime_account_irq+0xc4/0x240
[  234.678846][    C0]  __irq_exit_rcu+0x52/0xf0
[  234.683501][    C0]  irq_exit_rcu+0x9/0x10
[  234.688079][    C0]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  234.693730][    C0]  </IRQ>
[  234.696701][    C0]  <TASK>
[  234.699661][    C0]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  234.705745][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x1/0x80
[  234.712639][    C0] Code: 10 48 89 74 11 18 48 89 44 11 20 5d c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 b8 80 f8 fd 6f 55 <48> 89 e5 48 8b 45 08 65 48 8b 0d e0 77 92 7e 65 8b 15 e1 77 92 7e
[  234.732278][    C0] RSP: 0018:ffffc900007b7690 EFLAGS: 00000246
[  234.738365][    C0] RAX: 1ffffd400097d5f1 RBX: 0000000000000000 RCX: ffff888132383cc0
[  234.746446][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  234.754426][    C0] RBP: ffffc900007b7950 R08: dffffc0000000000 R09: fffff94000a2f626
[  234.762397][    C0] R10: fffff94000a2f626 R11: 1ffffd4000a2f625 R12: 0000000000000000
[  234.770374][    C0] R13: 800000012fabe007 R14: 0000000000000000 R15: ffffea0004beaf80
[  234.778381][    C0]  ? copy_page_range+0x10e0/0x2850
[  234.783538][    C0]  ? __cfi_copy_page_range+0x10/0x10
[  234.788867][    C0]  copy_mm+0xf04/0x1a10
[  234.793061][    C0]  ? copy_signal+0x630/0x630
[  234.797685][    C0]  ? _raw_spin_lock+0x8e/0xe0
[  234.802421][    C0]  ? __cfi__raw_spin_lock+0x10/0x10
[  234.807626][    C0]  ? __init_rwsem+0x12c/0x240
[  234.812322][    C0]  ? copy_signal+0x4ea/0x630
[  234.816945][    C0]  copy_process+0x12a8/0x3470
[  234.821667][    C0]  ? idle_dummy+0x10/0x10
[  234.826028][    C0]  ? __count_memcg_events+0x8f/0xe0
[  234.831445][    C0]  kernel_clone+0x23a/0x810
[  234.835982][    C0]  ? __cfi_kernel_clone+0x10/0x10
[  234.838182][ T8094] hid-generic 0003:04F3:0755.0043: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.9-1/input0
[  234.841036][    C0]  __x64_sys_clone+0x168/0x1b0
[  234.841074][    C0]  ? __cfi___x64_sys_clone+0x10/0x10
[  234.862660][    C0]  ? fpregs_assert_state_consistent+0xb1/0xe0
[  234.868749][    C0]  x64_sys_call+0x990/0x9a0
[  234.873275][    C0]  do_syscall_64+0x4c/0xa0
[  234.877711][    C0]  ? clear_bhb_loop+0x15/0x70
[  234.882385][    C0]  ? clear_bhb_loop+0x15/0x70
[  234.887069][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  234.892983][    C0] RIP: 0033:0x7f0c81d851d3
[  234.897506][    C0] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[  234.917131][    C0] RSP: 002b:00007fff5e827cd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  234.925560][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0c81d851d3
[  234.933560][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  234.941741][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[  234.949723][    C0] R10: 0000555585ec27d0 R11: 0000000000000246 R12: 0000000000000001
[  234.957722][    C0] R13: 00000000000927c0 R14: 0000000000039403 R15: 00007fff5e827e70
[  234.965751][    C0]  </TASK>
[  234.968782][    C0] 
[  234.971109][    C0] Allocated by task 11568:
[  234.975514][    C0]  kasan_set_track+0x4b/0x70
[  234.980123][    C0]  kasan_save_alloc_info+0x25/0x30
[  234.985235][    C0]  __kasan_kmalloc+0x95/0xb0
[  234.989850][    C0]  __kmalloc+0xb1/0x1e0
[  234.994035][    C0]  hci_alloc_dev_priv+0x27/0x1bd0
[  234.999069][    C0]  hci_uart_tty_ioctl+0x3d6/0xa20
[  235.004096][    C0]  tty_ioctl+0x8ef/0xc60
[  235.008350][    C0]  __se_sys_ioctl+0x12f/0x1b0
[  235.013035][    C0]  __x64_sys_ioctl+0x7b/0x90
[  235.017647][    C0]  x64_sys_call+0x58b/0x9a0
[  235.022169][    C0]  do_syscall_64+0x4c/0xa0
[  235.026612][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  235.032648][    C0] 
[  235.034976][    C0] Freed by task 11568:
[  235.039048][    C0]  kasan_set_track+0x4b/0x70
[  235.043659][    C0]  kasan_save_free_info+0x31/0x50
[  235.048712][    C0]  ____kasan_slab_free+0x132/0x180
[  235.053830][    C0]  __kasan_slab_free+0x11/0x20
[  235.058607][    C0]  slab_free_freelist_hook+0xc2/0x190
[  235.064004][    C0]  __kmem_cache_free+0xb7/0x1b0
[  235.068855][    C0]  kfree+0x6f/0xf0
[  235.072582][    C0]  hci_release_dev+0x13ad/0x1500
[  235.077578][    C0]  bt_host_release+0x82/0x90
[  235.082182][    C0]  device_release+0xa4/0x1d0
[  235.086777][    C0]  kobject_put+0x19d/0x280
[  235.091199][    C0]  put_device+0x1f/0x30
[  235.095371][    C0]  hci_dev_cmd+0x265/0x720
[  235.096399][T11803] tipc: Enabling of bearer <ib:vcan0> rejected, media not registered
[  235.099802][    C0]  hci_sock_ioctl+0x41e/0x7f0
[  235.099827][    C0]  sock_do_ioctl+0x101/0x310
[  235.099848][    C0]  sock_ioctl+0x4d8/0x6e0
[  235.121472][    C0]  __se_sys_ioctl+0x12f/0x1b0
[  235.126172][    C0]  __x64_sys_ioctl+0x7b/0x90
[  235.130783][    C0]  x64_sys_call+0x58b/0x9a0
[  235.135296][    C0]  do_syscall_64+0x4c/0xa0
[  235.139726][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  235.145631][    C0] 
[  235.147954][    C0] Last potentially related work creation:
[  235.153668][    C0]  kasan_save_stack+0x3a/0x60
[  235.158349][    C0]  __kasan_record_aux_stack+0xb6/0xc0
[  235.163715][    C0]  kasan_record_aux_stack_noalloc+0xb/0x10
[  235.169557][    C0]  insert_work+0x51/0x300
[  235.173900][    C0]  __queue_work+0x9b1/0xd30
[  235.178417][    C0]  queue_work_on+0xd2/0x140
[  235.182932][    C0]  __hci_cmd_sync_sk+0xa3e/0xcf0
[  235.187882][    C0]  hci_cmd_sync_status+0x53/0x120
[  235.192911][    C0]  hci_dev_cmd+0x628/0x720
[  235.197332][    C0]  hci_sock_ioctl+0x41e/0x7f0
[  235.202015][    C0]  sock_do_ioctl+0x101/0x310
[  235.206612][    C0]  sock_ioctl+0x4d8/0x6e0
[  235.210960][    C0]  __se_sys_ioctl+0x12f/0x1b0
[  235.215651][    C0]  __x64_sys_ioctl+0x7b/0x90
[  235.220359][    C0]  x64_sys_call+0x58b/0x9a0
[  235.224879][    C0]  do_syscall_64+0x4c/0xa0
[  235.229320][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  235.235244][    C0] 
[  235.237578][    C0] Second to last potentially related work creation:
[  235.244160][    C0]  kasan_save_stack+0x3a/0x60
[  235.249018][    C0]  __kasan_record_aux_stack+0xb6/0xc0
[  235.254405][    C0]  kasan_record_aux_stack_noalloc+0xb/0x10
[  235.260233][    C0]  insert_work+0x51/0x300
[  235.264682][    C0]  __queue_work+0x9b1/0xd30
[  235.269202][    C0]  queue_work_on+0xd2/0x140
[  235.273756][    C0]  hci_cmd_timeout+0x191/0x200
[  235.278621][    C0]  process_one_work+0x71f/0xc40
[  235.283486][    C0]  worker_thread+0xa29/0x11f0
[  235.288177][    C0]  kthread+0x281/0x320
[  235.292254][    C0]  ret_from_fork+0x1f/0x30
[  235.296697][    C0] 
[  235.299026][    C0] The buggy address belongs to the object at ffff88811a0cc000
[  235.299026][    C0]  which belongs to the cache kmalloc-8k of size 8192
[  235.313076][    C0] The buggy address is located 2560 bytes inside of
[  235.313076][    C0]  8192-byte region [ffff88811a0cc000, ffff88811a0ce000)
[  235.326582][    C0] 
[  235.328925][    C0] The buggy address belongs to the physical page:
[  235.335350][    C0] page:ffffea0004683200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11a0c8
[  235.345591][    C0] head:ffffea0004683200 order:3 compound_mapcount:0 compound_pincount:0
[  235.353928][    C0] flags: 0x4000000000010200(slab|head|zone=1)
[  235.360014][    C0] raw: 4000000000010200 0000000000000000 dead000000000122 ffff888100043500
[  235.368704][    C0] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[  235.377315][    C0] page dumped because: kasan: bad access detected
[  235.383833][    C0] page_owner tracks the page as allocated
[  235.389724][    C0] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 11568, tgid 11566 (syz.5.4784), ts 229194255502, free_ts 226909558590
[  235.412690][    C0]  post_alloc_hook+0x1f5/0x210
[  235.417482][    C0]  prep_new_page+0x1c/0x110
[  235.422063][    C0]  get_page_from_freelist+0x2c6e/0x2ce0
[  235.427647][    C0]  __alloc_pages+0x19e/0x3a0
[  235.432266][    C0]  alloc_slab_page+0x6e/0xf0
[  235.436899][    C0]  new_slab+0x98/0x3d0
[  235.440983][    C0]  ___slab_alloc+0x6f6/0xb50
[  235.445589][    C0]  __slab_alloc+0x5e/0xa0
[  235.449928][    C0]  __kmem_cache_alloc_node+0x203/0x2c0
[  235.455409][    C0]  __kmalloc+0xa1/0x1e0
[  235.459588][    C0]  hci_alloc_dev_priv+0x27/0x1bd0
[  235.464621][    C0]  hci_uart_tty_ioctl+0x3d6/0xa20
[  235.469647][    C0]  tty_ioctl+0x8ef/0xc60
[  235.473880][    C0]  __se_sys_ioctl+0x12f/0x1b0
[  235.478569][    C0]  __x64_sys_ioctl+0x7b/0x90
[  235.483177][    C0]  x64_sys_call+0x58b/0x9a0
[  235.487810][    C0] page last free stack trace:
[  235.492616][    C0]  free_unref_page_prepare+0x742/0x750
[  235.498101][    C0]  free_unref_page+0x8f/0x530
[  235.502834][    C0]  __free_pages+0x67/0x100
[  235.507262][    C0]  __vunmap+0x9af/0xb70
[  235.511487][    C0]  vfree+0x61/0x90
[  235.515249][    C0]  packet_set_ring+0x1931/0x2470
[  235.520214][    C0]  packet_release+0x737/0xcb0
[  235.524911][    C0]  sock_close+0xf1/0x290
[  235.529176][    C0]  __fput+0x1fc/0x8f0
[  235.533276][    C0]  ____fput+0x15/0x20
[  235.537265][    C0]  task_work_run+0x1db/0x240
[  235.541873][    C0]  exit_to_user_mode_loop+0x9b/0xb0
[  235.547221][    C0]  exit_to_user_mode_prepare+0x5a/0xa0
[  235.552701][    C0]  syscall_exit_to_user_mode+0x1a/0x30
[  235.558437][    C0]  do_syscall_64+0x58/0xa0
[  235.562887][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  235.568809][    C0] 
[  235.571138][    C0] Memory state around the buggy address:
[  235.576773][    C0]  ffff88811a0cc900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.584857][    C0]  ffff88811a0cc980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.592911][    C0] >ffff88811a0cca00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.600975][    C0]                    ^
[  235.605028][    C0]  ffff88811a0cca80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.613073][    C0]  ffff88811a0ccb00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.621114][    C0] ==================================================================
[  235.629172][    C0] Disabling lock debugging due to kernel taint
[  235.635387][    C0] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  235.636244][ T8094] usb 10-1: USB disconnect, device number 11
[  235.647115][    C0] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  235.647140][    C0] CPU: 0 PID: 4058 Comm: syz-executor Tainted: G    B   W          6.1.138-syzkaller-00046-gdb710ea87c32 #0
[  235.647162][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  235.647173][    C0] RIP: 0010:__queue_work+0x575/0xd30
[  235.647204][    C0] Code: 39 2b 0f 84 b9 00 00 00 e8 f8 d2 28 00 4c 89 ff e8 c0 c6 a8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 5c 2b 6d 00 49 8b 7d 00 e8 a3 c2
[  235.708081][    C0] RSP: 0018:ffffc90000007c70 EFLAGS: 00010046
[  235.714153][    C0] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888132383cc0
[  235.722158][    C0] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  235.730156][    C0] RBP: ffffc90000007d08 R08: fffffffffffffffb R09: 0000000000000007
[  235.738302][    C0] R10: ffffed1023419939 R11: 1ffff11023419939 R12: dffffc0000000000
[  235.746791][    C0] R13: 0000000000000000 R14: ffff88811a0cc9c8 R15: 0000000000000008
[  235.754758][    C0] FS:  0000555585ec2500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  235.763698][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  235.770297][    C0] CR2: 00007f0c82ae56c0 CR3: 0000000138b5a000 CR4: 00000000003506b0
[  235.778265][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000008000
[  235.786314][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  235.794276][    C0] Call Trace:
[  235.797554][    C0]  <IRQ>
[  235.800398][    C0]  delayed_work_timer_fn+0x61/0x80
[  235.805603][    C0]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  235.811416][    C0]  call_timer_fn+0x46/0x2a0
[  235.815920][    C0]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  235.821745][    C0]  __run_timers+0x667/0x9a0
[  235.826250][    C0]  ? calc_index+0x200/0x200
[  235.830755][    C0]  ? kvm_sched_clock_read+0x18/0x40
[  235.835956][    C0]  run_timer_softirq+0x6a/0xf0
[  235.840719][    C0]  handle_softirqs+0x1d7/0x600
[  235.845483][    C0]  ? irqtime_account_irq+0xc4/0x240
[  235.850794][    C0]  __irq_exit_rcu+0x52/0xf0
[  235.855315][    C0]  irq_exit_rcu+0x9/0x10
[  235.859577][    C0]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  235.865231][    C0]  </IRQ>
[  235.868156][    C0]  <TASK>
[  235.871079][    C0]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  235.877072][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x1/0x80
[  235.883848][    C0] Code: 10 48 89 74 11 18 48 89 44 11 20 5d c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 b8 80 f8 fd 6f 55 <48> 89 e5 48 8b 45 08 65 48 8b 0d e0 77 92 7e 65 8b 15 e1 77 92 7e
[  235.903463][    C0] RSP: 0018:ffffc900007b7690 EFLAGS: 00000246
[  235.909564][    C0] RAX: 1ffffd400097d5f1 RBX: 0000000000000000 RCX: ffff888132383cc0
[  235.917539][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  235.925510][    C0] RBP: ffffc900007b7950 R08: dffffc0000000000 R09: fffff94000a2f626
[  235.933480][    C0] R10: fffff94000a2f626 R11: 1ffffd4000a2f625 R12: 0000000000000000
[  235.941507][    C0] R13: 800000012fabe007 R14: 0000000000000000 R15: ffffea0004beaf80
[  235.949486][    C0]  ? copy_page_range+0x10e0/0x2850
[  235.954634][    C0]  ? __cfi_copy_page_range+0x10/0x10
[  235.959941][    C0]  copy_mm+0xf04/0x1a10
[  235.964122][    C0]  ? copy_signal+0x630/0x630
[  235.968714][    C0]  ? _raw_spin_lock+0x8e/0xe0
[  235.973398][    C0]  ? __cfi__raw_spin_lock+0x10/0x10
[  235.978619][    C0]  ? __init_rwsem+0x12c/0x240
[  235.983397][    C0]  ? copy_signal+0x4ea/0x630
[  235.987992][    C0]  copy_process+0x12a8/0x3470
[  235.992678][    C0]  ? idle_dummy+0x10/0x10
[  235.997011][    C0]  ? __count_memcg_events+0x8f/0xe0
[  236.002218][    C0]  kernel_clone+0x23a/0x810
[  236.006727][    C0]  ? __cfi_kernel_clone+0x10/0x10
[  236.011764][    C0]  __x64_sys_clone+0x168/0x1b0
[  236.016537][    C0]  ? __cfi___x64_sys_clone+0x10/0x10
[  236.021841][    C0]  ? fpregs_assert_state_consistent+0xb1/0xe0
[  236.027920][    C0]  x64_sys_call+0x990/0x9a0
[  236.032427][    C0]  do_syscall_64+0x4c/0xa0
[  236.036854][    C0]  ? clear_bhb_loop+0x15/0x70
[  236.041532][    C0]  ? clear_bhb_loop+0x15/0x70
[  236.046229][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  236.052151][    C0] RIP: 0033:0x7f0c81d851d3
[  236.056568][    C0] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[  236.076192][    C0] RSP: 002b:00007fff5e827cd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  236.084608][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0c81d851d3
[  236.092613][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  236.100602][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001
[  236.108588][    C0] R10: 0000555585ec27d0 R11: 0000000000000246 R12: 0000000000000001
[  236.116558][    C0] R13: 00000000000927c0 R14: 0000000000039403 R15: 00007fff5e827e70
[  236.124533][    C0]  </TASK>
[  236.127554][    C0] Modules linked in:
[  236.131446][    C0] ---[ end trace 0000000000000000 ]---
[  236.136905][    C0] RIP: 0010:__queue_work+0x575/0xd30
[  236.142213][    C0] Code: 39 2b 0f 84 b9 00 00 00 e8 f8 d2 28 00 4c 89 ff e8 c0 c6 a8 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 5c 2b 6d 00 49 8b 7d 00 e8 a3 c2
[  236.161992][    C0] RSP: 0018:ffffc90000007c70 EFLAGS: 00010046
[  236.168066][    C0] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888132383cc0
[  236.176078][    C0] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  236.184079][    C0] RBP: ffffc90000007d08 R08: fffffffffffffffb R09: 0000000000000007
[  236.192048][    C0] R10: ffffed1023419939 R11: 1ffff11023419939 R12: dffffc0000000000
[  236.200023][    C0] R13: 0000000000000000 R14: ffff88811a0cc9c8 R15: 0000000000000008
[  236.208171][    C0] FS:  0000555585ec2500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  236.217101][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  236.223701][    C0] CR2: 00007f0c82ae56c0 CR3: 0000000138b5a000 CR4: 00000000003506b0
[  236.231670][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000008000
[  236.239659][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  236.247636][    C0] Kernel panic - not syncing: Fatal exception in interrupt
[  236.263415][    C0] Kernel Offset: disabled
[  236.267766][    C0] Rebooting in 86400 seconds..