last executing test programs:

2m54.040247404s ago: executing program 32 (id=158):
r0 = gettid()
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4, @tid=r0}, &(0x7f0000044000))
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0)

2m44.029865339s ago: executing program 33 (id=412):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f0000000200))

2m23.592489316s ago: executing program 34 (id=963):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
close(r0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
connect$can_bcm(r1, &(0x7f0000000380), 0x10)

2m23.081492624s ago: executing program 35 (id=964):
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r0, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="1e4e", 0x2, 0x1, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000040)={&(0x7f0000006000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000340)=""/218, 0xda, 0x0, 0x0}, &(0x7f0000000080)=0x40)

2m22.881744247s ago: executing program 36 (id=974):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)

2m22.815163538s ago: executing program 37 (id=977):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000014f000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0x14, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000005740)={{0x1, 0x0, 0x80, {0x4, 0x4000}}, "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", "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"})

2m22.659830841s ago: executing program 38 (id=976):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x34, 0x24, 0x7be4c344329a9c4b, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004}, 0x40010)

2m22.593520922s ago: executing program 39 (id=986):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

2m22.438043465s ago: executing program 40 (id=978):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a000000000000d74619edc70000", @ANYBLOB="0eac729bc0d6587f9ccebdc163a5b130f1dfb3f6866563e8"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e"], 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

2m22.301231627s ago: executing program 41 (id=983):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000001080)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r1, &(0x7f0000001700)={&(0x7f0000000080)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000280)="f3366665ceda122411c40726e99592fd3518a17a03348a54bd7540886c8594002470807d6dfab18d36ef5bb3ad733a77ee2ba0b6688e022a70cbe583a3c7da68faa3db7c1b1b252c7c307ff3d703f48948dc9b533a4d27dc2dad4764020b418d12707f41fbf6d651f2908cd0894cab02", 0x70}, {&(0x7f0000001740)="dd4d2b0d6d6f971f16a579382735d01ea2c8bd931b5b6c7b47b2b1ba9ccc121af9ccd0337e5fdc262cdb7fd8e99de326f51f26f3", 0x34}, {&(0x7f0000000500)="21ba294d03fbe1f42abbe1388fccd013b66ee4cffc012dbc06313b8d899172ccf1542501fe62c1f5e8b0dc90ff75fab040bbd90849a27daf226fcee96998021b359f21cd0da09f04b3651dce99abf6f30abb89a6366b8a36f275f4d22b628f290b328f9af6d8227efa80f196d7c090ba5a59570f7196b6538ef565e6c942dbb9a0350ac7c224fef58a0f5d9c37f3f3ef7a59b050f9dcecbf776803b71da640c9bdb937f304cd59b5ea91694435359aef3701a72868", 0xb5}, {&(0x7f0000000440)="7df7fbc0f6c5df0e74c1c9393af7f8d6fc89398b74dba8f95705cbf34e4365a77e2260df7a7e096422ea20cc235d3958d5cbcf63e7c996175291086628aea7baafb85685a7eb26a6e744cde52828c36882b2c4e6df65a45c22c8f129da9773a834051deb880bc46117dc3b67f7382d1415e713b078b118f9c0b21b3ce91bd534ce2532386481a129bd3bbe15c4d8d5ed9bd5945ce30c2a9325e457062ee6eee7a721a7e25cc68e732a96b800"/181, 0xb5}, {&(0x7f00000000c0)="554af6b31b8a77fa84a287388d8a7d8058dce5f67ec6eefcd273370dfa759ed049f27cc61829eedd49ffb56da6e12be4248553c7bb4d16a70a6b08c30a27464861a4f3f31b310141e5adabd3fcfdf043b49c31858bdf9a6b7a9c41402f5105408128d3e5c86e37486f7406630ee77a0c67fa116a875e9803881c0e9097b00ebdb1666ca267697c5fcb7dc6ea1186166eab4181", 0x93}, {&(0x7f0000000340)="5ce91e3f19902cf405c63739ba2b3301c95be0669c83440bb321b4c00b00f0efe13166f2ad7c2cf2bb3ecef1fa45068981c9c5f194c79f0f2d2379c93d71f96cc86a3135d410ce13a32d14eb326466e688fe1950677f8250ba026639e11121a859c0183978acadce83ae8a414ce1a64417a81040c75c4ce05552872e1eda976cbb3a90e3b800143a1b699ae6c4ca155f458b24f3bbfcf981c0cdd2c929d428d0545c279cb02118b64e696880746cb60983883b476321a9806f5be5aa699d3d33", 0xc0}, {&(0x7f0000000900)="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", 0x2d8}], 0x7}, 0x0)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)

2m0.788484951s ago: executing program 42 (id=1662):
r0 = inotify_init1(0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000640)='./bus\x00', 0x1200840, &(0x7f0000000880)=ANY=[@ANYBLOB="757466383d312c636865636b3d7374726963742c73686f72746e616d653d6d697865642c6e6f6e756d7461696c3d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c696f636861727365743d73703836322c696f636861727365743d63703433372c73686f72746e616d653d77696e39352c756e695f786c6174653d312c756e695f786c6174653d302c757466383d302c756e695f786c6174653d302c003c24d06816418f4be78ed4fbfe47efc82f966a602a8db43ad053c978bbd3501706515140ef63c2a58653ced497550b22917b09702604bc162c57e05beec5bb0c11fc2f9238b25e4527e24bab534e9ba458d92a597c3fee89f57053a4a1535771c9877b3ab101fb26937779cff75a95a296fafddf11280fafeb9bd5f2da4a88b43f3e4d5b1a9aed1f659d88f914548fba990603b0d4f14adda86d459c62701d3d6f007c7e50da9608a03eff58"], 0x3, 0x377, &(0x7f00000002c0)="$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")
inotify_add_watch(r0, &(0x7f0000000140)='.\x00', 0x40000022)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
read$eventfd(r1, &(0x7f0000000100), 0xfffffd79)

1m31.620336261s ago: executing program 43 (id=2351):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

1m9.312397099s ago: executing program 44 (id=2842):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x2c, r2, 0x301, 0x0, 0x3, {0x1c}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}]}, 0x2c}}, 0x40006)

1m7.799291414s ago: executing program 45 (id=2869):
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0xfffffffffffffffd}, 0x0)
setitimer(0x2, &(0x7f0000000040)={{0x0, 0x2710}, {0x0, 0x2710}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x204010, &(0x7f0000000000), 0x0, 0x65e, &(0x7f00000004c0)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c00000000010300000000000000000000000000300001"], 0x4c}, 0x1, 0x0, 0x0, 0x48000840}, 0x40080)

1m7.642333217s ago: executing program 46 (id=2874):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x4008032, 0xffffffffffffffff, 0xffffe000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregs(0xc, r0, 0xa77, &(0x7f0000000280)=""/215)

1m6.448796146s ago: executing program 47 (id=2899):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="30000000010101020000000000000000020000080c0019"], 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x20008000)

54.08271431s ago: executing program 8 (id=3317):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='mnt/encrypted_dir\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0xa1)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000180)=@v2={0x2, @aes256, 0x0, '\x00', @auto="2af2ce3a73e7759850e44bc6c12c3b0c"})
getdents64(r0, &(0x7f0000000080)=""/131, 0x83)

54.035118271s ago: executing program 8 (id=3319):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000007100000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000780)=r3, 0x4)
sendmsg$unix(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r3, @ANYBLOB='0'], 0x48}, 0x20000000)

53.996297961s ago: executing program 8 (id=3322):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
getitimer(0x2, &(0x7f0000000040))

53.995616851s ago: executing program 8 (id=3324):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x562, &(0x7f0000000440)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x2, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')

53.899200163s ago: executing program 8 (id=3325):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x10, 0x4, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

53.746689675s ago: executing program 8 (id=3328):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000380)='sys_enter\x00', r1}, 0x10)
getpriority(0x2, 0x0)

53.723455376s ago: executing program 48 (id=3328):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000380)='sys_enter\x00', r1}, 0x10)
getpriority(0x2, 0x0)

43.587143882s ago: executing program 7 (id=3696):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='batadv0\x00', 0x10)
sendmmsg$inet6(r0, &(0x7f0000000240)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="236fec4e316424", 0x7}], 0x1}}], 0x1, 0x4000c000)
sendto$inet6(r0, &(0x7f00000002c0)="f658", 0x2, 0x0, 0x0, 0x0)

43.538660133s ago: executing program 7 (id=3697):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000006c0)=[{{0x0, 0x0, &(0x7f0000002e40)=[{&(0x7f0000000340)=""/25, 0x19}, {&(0x7f0000000380)=""/93, 0x5d}, {&(0x7f0000000540)=""/137, 0x89}], 0x3}, 0xc}, {{0x0, 0x0, 0x0}, 0x9}], 0x2, 0x40000000, 0x0)
socket$inet6(0xa, 0x80803, 0x87)
syz_emit_ethernet(0x5e, &(0x7f0000000540)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd603000bb00282b00fc020000000000000000000000000000fe8000000000000000000000000000aa87"], 0x0)

42.739995897s ago: executing program 7 (id=3691):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x200, 0x0, 0x0)

42.725314327s ago: executing program 7 (id=3692):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000940)=ANY=[@ANYBLOB="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", @ANYRES8], 0x1, 0x11dc, &(0x7f0000001280)="$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")
r0 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000180)={0xa0, 0xfffffffffffffffe, 0x0, {{0x3, 0x1, 0x5, 0x6, 0x5, 0x1, {0x1, 0x2d203ae5, 0x6, 0x1, 0x2, 0xd615, 0x5, 0x800001, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3fa, 0x1}}, {0x0, 0x1f}}}, 0xa0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sendfile(r0, r0, &(0x7f0000000080), 0x7f01)

42.365345113s ago: executing program 7 (id=3710):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x800448f0, &(0x7f0000000100))

42.198672495s ago: executing program 7 (id=3717):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='page_pool_state_release\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

42.172711336s ago: executing program 49 (id=3717):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='page_pool_state_release\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

34.445709353s ago: executing program 2 (id=3899):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000000)={0x6, {{0x2, 0xfffc, @multicast1}}}, 0x88)
getsockopt(0xffffffffffffffff, 0x200000000114, 0x2710, 0x0, &(0x7f0000000000))
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000001300)={0xa, {{0x2, 0x0, @multicast2}}}, 0x88)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000000)=""/4091, &(0x7f0000001000)=0xffb)

34.423698743s ago: executing program 2 (id=3902):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0104000000000a0000001c000000180001801400020076657468305f766c616e"], 0x2c}}, 0x40006)

34.397074194s ago: executing program 2 (id=3905):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000080)={0x2, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
recvmmsg(r1, &(0x7f0000000740)=[{{&(0x7f00000005c0)=@tipc, 0x80, &(0x7f0000000800)=[{&(0x7f0000001740)=""/4081, 0xff1}, {&(0x7f0000000640)=""/251, 0xfb}, {&(0x7f0000000300)=""/52, 0x34}, {&(0x7f0000000180)=""/51, 0x33}, {&(0x7f0000000240)=""/140, 0x8c}], 0x5}}], 0x4000000000000b7, 0x2, 0x0)

34.325237725s ago: executing program 2 (id=3908):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000980)='./file2\x00', 0x41, &(0x7f0000000a00), 0x64, 0x50b, &(0x7f0000000200)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f00000000c0)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x9, 0x3a, '+i', 0x3a, '', 0x3a, './file1', 0x3a, [0x46]}, 0x2a)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

34.00347559s ago: executing program 2 (id=3913):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
listen(0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f6400947e570028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e0fff0004fcff", 0x58}], 0x1)

33.834679893s ago: executing program 2 (id=3923):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x3c53, 0x1, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf79d}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10)

33.830435893s ago: executing program 50 (id=3923):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x3c53, 0x1, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf79d}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10)

30.040334096s ago: executing program 5 (id=4091):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ftruncate(r0, 0x2c)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000500)='./file0/file0\x00', 0x1310000, 0x0, 0x0, 0x0, &(0x7f0000000000))
fdatasync(r0)

29.972602147s ago: executing program 5 (id=4093):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000180)={r1, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000140)={r1, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000580)={r1, 0x1, 0x6, @local}, 0x10)

29.887803088s ago: executing program 5 (id=4095):
pipe2$9p(&(0x7f00000001c0), 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80", @ANYRES16=r0], 0x44}}, 0x0)

29.814514719s ago: executing program 5 (id=4097):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file2\x00', 0x0, &(0x7f0000006180)=ANY=[@ANYBLOB="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", @ANYRESHEX, @ANYRES64], 0x43, 0x5552, &(0x7f0000000580)="$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")
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

29.538839414s ago: executing program 5 (id=4105):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000770000000e000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x52d, &(0x7f0000001500)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

29.218755129s ago: executing program 5 (id=4116):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000140)='./file1\x00', 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB='dots,check=normal,nodots,nodots,nodots,dots,nodots,quiet,nodots,nodots,nodots,dots,dots,umask=00000000000000000077777,nfs,dots,tz=UTC,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6e6f646f74732c646f74732c646f74732c666c7573682c0098d386c0c55f3b3c602b508e324cf6bc1dbb969e0a0ff0c09855832911b537be0b579abe755f055eab52f994706ea41ff34a82ff422c05fda1dcd404104d9ce9955385ae2218995853492655e42469502584c8ee4efc08f504b1b2d6"], 0xfd, 0x1bf, &(0x7f0000000840)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
fallocate(r0, 0x0, 0x800, 0x2000402)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

29.18375444s ago: executing program 51 (id=4116):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000140)='./file1\x00', 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB='dots,check=normal,nodots,nodots,nodots,dots,nodots,quiet,nodots,nodots,nodots,dots,dots,umask=00000000000000000077777,nfs,dots,tz=UTC,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6e6f646f74732c646f74732c646f74732c666c7573682c0098d386c0c55f3b3c602b508e324cf6bc1dbb969e0a0ff0c09855832911b537be0b579abe755f055eab52f994706ea41ff34a82ff422c05fda1dcd404104d9ce9955385ae2218995853492655e42469502584c8ee4efc08f504b1b2d6"], 0xfd, 0x1bf, &(0x7f0000000840)="$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")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
fallocate(r0, 0x0, 0x800, 0x2000402)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

23.400669155s ago: executing program 3 (id=4332):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000300)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000001c0)={{}, {}, [], {}, [], {0x10, 0x3}}, 0x24, 0x0)

23.287680637s ago: executing program 3 (id=4336):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
readahead(0xffffffffffffffff, 0x80000000, 0x5)

23.267622087s ago: executing program 3 (id=4339):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x81, @mcast2, 0x5}, 0x1c)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x3d, &(0x7f0000000340)=""/67, &(0x7f00000002c0)=0x43)

23.174256089s ago: executing program 3 (id=4342):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000140)='./file0\x00', 0x81c00a, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2cf, &(0x7f0000002080)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)

23.10908841s ago: executing program 3 (id=4344):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

22.914567533s ago: executing program 3 (id=4354):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001b80)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r2}, 0x57)

22.873291693s ago: executing program 52 (id=4354):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001b80)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r2}, 0x57)

2.165638915s ago: executing program 1 (id=5129):
r0 = io_uring_setup(0x177a, &(0x7f00000002c0)={0x0, 0x698c, 0x80, 0x2, 0xfffffffe})
close_range(r0, r0, 0x200000000000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x2000000e, 0x0)

1.958720118s ago: executing program 1 (id=5139):
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000640)={@remote, @private0, @empty, 0x40000, 0x40, 0x5, 0x100, 0x0, 0x40180043, r3})

1.923636109s ago: executing program 1 (id=5141):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd30, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8, 0x2, 0xfff}}]}, 0x38}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0xd0f, 0x70bd25, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffe0, 0xa}, {0x0, 0x10}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

1.891338069s ago: executing program 1 (id=5143):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000480)={0x1c, r1, 0x62c21a4ade68aba1, 0x0, 0x0, {{0x32}, {@val={0x8, 0x117, 0x56}, @void, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.84499384s ago: executing program 1 (id=5145):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x20048810)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000"], 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

1.788400931s ago: executing program 1 (id=5146):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000751c0110e60f00979ad1010203010902240001000000000904290202b48cbb0009050402100000fa000905820240"], 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

740.959678ms ago: executing program 9 (id=5162):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x1000001, 0x3032, 0xffffffffffffffff, 0x44000)
r1 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x18, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

658.9397ms ago: executing program 4 (id=5167):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

655.04959ms ago: executing program 9 (id=5168):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000005a80)=ANY=[], 0x1, 0x550b, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')

619.48548ms ago: executing program 4 (id=5169):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
close(r1)

599.930191ms ago: executing program 4 (id=5171):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x5, 0x0)
read(r2, &(0x7f0000000340)=""/246, 0xf6)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000000)="8b", 0x1}], 0x1)

456.463833ms ago: executing program 4 (id=5174):
syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000001b40)='./file1\x00', 0x208008de, &(0x7f0000000b40)=ANY=[], 0x80, 0x150a, &(0x7f0000002080)="$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")
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x8, r2, 0x15}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000140)="845adc6f382819ad9dc965a4eefcfdc5b7227fa6", 0x14}], 0x1}}], 0x1, 0x10)

386.716594ms ago: executing program 4 (id=5177):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r2, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0x46, &(0x7f0000000580)={@local, @multicast, @void, {@ipv6={0x86dd, @dccp_packet={0x2, 0x6, "9ab48f", 0x10, 0x21, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, {[], {{0x4e20, 0x4e20, 0x4, 0x1, 0x9, 0x0, 0x0, 0x1, 0x7, "7b0596", 0x4, "1e4e28"}}}}}}}, 0x0)

386.262034ms ago: executing program 0 (id=5178):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = open$dir(&(0x7f0000000140)='./file0\x00', 0x2, 0x0)
r1 = epoll_create1(0x0)
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x30000009})

386.065345ms ago: executing program 0 (id=5179):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x214004, &(0x7f0000000880)=ANY=[@ANYRES32=0x0, @ANYRES16=0x0, @ANYRES32, @ANYRESHEX, @ANYBLOB="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", @ANYRES8], 0x4, 0x2eb, &(0x7f00000004c0)="$eJzs3E1PE10UwPHTF0pbAmXx5DGaGG50o5sJVNdKYyAxNpEgNb4kJgNMtenYkpkGU2NEV26NH8IFYcmORPkCbNzpxo07NiYuZGEc0+kMhTKAlNIi/H8JmcPce6b3zgzk3AnD+r23T4t5W8vrFQnHlYRERDZEBiUsvpC3DbtxTLZ6JZf7fnw+f+f+g1uZbHZsUqnxzNSVtFJqYOjDsxcJr9tKr6wNPlr/nv629v/a2fXfU08KtirYqlSuKF1Nl79W9GnTULMFu6gpNWEaum2oQsk2rHp7ud6eN8tzc1Wll2b7k3OWYdtKL1VV0aiqSllVrKqKPNYLJaVpmupPCvaTW5yc1DMtJs+0eTA4IpaV0SMiktjRklvsyoAAAEBXNdf/YVHtrP+XLqxW+u4uD3j1/0osqP6/+qV+rG31f1xEAut///MD63/9YPX/zorodDlU/Y/jYSi2Y1eoEdYarYye9H5+Xa8fLg27AfU/AAAAAAAAAAAAAAAAAAAAAAD/gg3HSTmOk/K3/leviMRFxP8+IDUiIte7MGS00SGuP06Axot70QER8818bj5X33odVkXEFEOGJSW/3PvBU4v9N49UzaB8NBe8/IX5XMRtyeSl4OaPSKpHmvMdZ/xmdmxE1W3P75Hk1vy0pOS/4Px0YH5MLl3ckq9JSj7NSFlMmXXH0ch/OaLUjdvZpvyE2w8AAAAAgJNAU5sC1++atlt7PX9zfd38fCDSWF8PB67Po3Iu2t25AwAAAABwWtjV50XdNA1rjyAh+/dpPYge0ZH9Gf5tlv+3DEc30z0C/8O3NcW9nW0/LaEDnJZdgrC0kjVUm4067Cz8x0a79ZGJ0c5fQTc48+79z/Yd8NpyfJ+Zth5E9r4Bejr2CwgAAABAxzSKfn/PaHcHBAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAKdSJ/47W7TkCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx8WfAAAA//+SWQVN")
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="020a0600060000002abd7000ffdbdf250400"], 0x30}}, 0x44880)

381.930564ms ago: executing program 4 (id=5180):
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010002000000406d0493c2000000000001090224000100001000090400000103005ea2e8da"], 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="f800000016008502000000000000000020010000000000000000000000000002a600000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032"], 0xf8}}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x134}}, 0x0)

339.520585ms ago: executing program 0 (id=5182):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="04010000100007000000000000000000fc010000000000000000ad0000000001fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="00000000000000000000000000000000000011003c000000fe8000000000000000000000000000bb00000000000000000700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000a00"], 0x104}}, 0x0)

249.159567ms ago: executing program 9 (id=5185):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000200), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x5, 0x0, 0x0, {0x77359400}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "5f4731e5de939cbc"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="050000000508"], 0x80}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x7, 0x0, 0x0, {}, {0x0, 0xea60}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "b97055b0fee1b227"}}, 0x48}}, 0x0)

248.939867ms ago: executing program 0 (id=5186):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x10)
setitimer(0x0, 0x0, 0x0)

224.677847ms ago: executing program 0 (id=5188):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000000c0)='generic_add_lease\x00', r1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x88040, 0x15)
fcntl$setlease(r2, 0x400, 0x0)

146.614548ms ago: executing program 0 (id=5190):
r0 = socket$inet6(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0xfffffefffffbffaf, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000001600)='\b', 0xfffffffffffffd68, 0x4004095, 0x0, 0xd56888b5705b13c6)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000040)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f000001a640)=""/102400, 0x19000, 0x1, 0x0}, &(0x7f00000008c0)=0x40)

136.172248ms ago: executing program 9 (id=5192):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
clock_nanosleep(0x9, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

100.131189ms ago: executing program 6 (id=5193):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
clock_adjtime(0x0, 0x0)

88.280869ms ago: executing program 6 (id=5194):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000000000)=""/29, 0x1d}], 0x1, 0x0, 0x0)

77.308249ms ago: executing program 6 (id=5195):
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f0000002780)=""/4096, 0x4}, 0x20)
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x800448f0, &(0x7f0000002400)={0xfffffffffffffffb, 0x7, 0x2, 0x1, 0x3, [0x4, 0xe, 0xe, 0x9]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r1, 0x58}, 0x10)

64.86593ms ago: executing program 6 (id=5196):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, 0x0, 0x0)

60.93323ms ago: executing program 9 (id=5197):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000180)="63eced8e46dcd5837fa70bfb5700", 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

36.70311ms ago: executing program 6 (id=5198):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x40)
setresuid(0xee01, 0x0, 0xffffffffffffffff)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
statfs(&(0x7f0000002340)='./file0\x00', &(0x7f0000002380)=""/12)

36.22803ms ago: executing program 6 (id=5199):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_delete(0x0)

0s ago: executing program 9 (id=5200):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@loopback, 0x800, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x380000, @loopback}, 0x1c)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000001c0)={@dev, 0x800, 0x1, 0x0, 0x0, 0x1}, 0x20)

kernel console output (not intermixed with test programs):

rch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.298655][   T28] audit: type=1326 audit(2000000000.400:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.336197][   T28] audit: type=1326 audit(2000000000.400:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.374739][   T28] audit: type=1326 audit(2000000000.400:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.449849][   T28] audit: type=1326 audit(2000000000.400:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.502222][   T28] audit: type=1326 audit(2000000000.400:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.549855][   T28] audit: type=1326 audit(2000000000.400:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.599879][   T28] audit: type=1326 audit(2000000000.400:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8667 comm="syz.6.3465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  157.629560][ T8672] loop6: detected capacity change from 0 to 40427
[  157.646991][ T8672] F2FS-fs (loop6): fault_injection options not supported
[  157.664860][ T8672] F2FS-fs (loop6): invalid crc value
[  157.675242][ T8672] F2FS-fs (loop6): Found nat_bits in checkpoint
[  157.763853][ T8672] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  157.789910][  T296] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  157.809140][ T7346] syz-executor: attempt to access beyond end of device
[  157.809140][ T7346] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  157.997150][ T8708] netlink: 116 bytes leftover after parsing attributes in process `syz.6.3480'.
[  158.006163][  T296] usb 5-1: Using ep0 maxpacket: 8
[  158.012455][  T296] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  158.022422][  T296] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  158.033819][  T296] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  158.042818][  T296] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.051155][  T296] usb 5-1: Product: syz
[  158.055230][  T296] usb 5-1: Manufacturer: syz
[  158.059609][  T296] usb 5-1: SerialNumber: syz
[  158.268043][  T296] cdc_ncm 5-1:1.0: bind() failure
[  158.273987][  T296] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  158.280781][  T296] cdc_ncm 5-1:1.1: bind() failure
[  158.286301][  T296] usb 5-1: USB disconnect, device number 4
[  158.804128][ T8732] loop6: detected capacity change from 0 to 512
[  158.827203][ T8732] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  158.860052][ T8732] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  158.881089][ T8732] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2186: inode #15: comm syz.6.3490: corrupted in-inode xattr
[  158.896221][ T8743] input: syz0 as /devices/virtual/input/input30
[  158.898533][ T8722] loop7: detected capacity change from 0 to 40427
[  158.904567][ T8732] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.3490: couldn't read orphan inode 15 (err -117)
[  158.922130][ T8722] F2FS-fs (loop7): fault_injection options not supported
[  158.923070][ T8732] EXT4-fs mount: 2 callbacks suppressed
[  158.923090][ T8732] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  158.929974][ T8722] F2FS-fs (loop7): invalid crc value
[  158.962606][ T8722] F2FS-fs (loop7): Found nat_bits in checkpoint
[  158.969054][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  159.065611][ T8722] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  159.103539][ T8766] loop4: detected capacity change from 0 to 256
[  159.119207][ T8766] exfat: Deprecated parameter 'utf8'
[  159.124557][ T8766] exfat: Deprecated parameter 'namecase'
[  159.130165][ T8766] exfat: Bad value for 'allow_utime'
[  159.135586][ T7406] syz-executor: attempt to access beyond end of device
[  159.135586][ T7406] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  159.315290][ T8776] loop6: detected capacity change from 0 to 1024
[  159.322805][ T8776] EXT4-fs: Ignoring removed nobh option
[  159.334669][ T8776] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  159.376715][ T8776] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  159.394801][ T8787] loop7: detected capacity change from 0 to 1024
[  159.402551][ T8776] EXT4-fs (loop6): shut down requested (0)
[  159.417048][ T8787] EXT4-fs: Ignoring removed orlov option
[  159.423445][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  159.429509][ T8787] EXT4-fs: Ignoring removed nomblk_io_submit option
[  159.461606][  T438] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  159.475789][ T8787] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  159.519912][ T7406] EXT4-fs (loop7): unmounting filesystem.
[  159.531436][ T8799] overlayfs: missing 'lowerdir'
[  159.549899][  T430] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  159.624336][ T8809] loop7: detected capacity change from 0 to 1024
[  159.631659][ T8809] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  159.660979][  T438] usb 5-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config
[  159.673139][ T8809] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  159.689890][ T8809] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.700643][  T438] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  159.720265][  T438] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  159.729849][  T430] usb 6-1: Using ep0 maxpacket: 8
[  159.736055][  T430] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  159.756261][ T8809] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  159.771209][  T438] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  159.779371][  T438] usb 5-1: SerialNumber: syz
[  159.784436][  T430] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  159.804805][ T8809] EXT4-fs (loop7): Remounting filesystem read-only
[  159.813299][  T430] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  159.830382][  T430] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.839344][  T438] usb 5-1: 0:2 : does not exist
[  159.848597][  T438] usb 5-1: unit 48 not found!
[  159.862695][ T7406] EXT4-fs (loop7): unmounting filesystem.
[  159.878515][  T430] usb 6-1: Product: syz
[  159.883298][  T430] usb 6-1: Manufacturer: syz
[  159.887727][  T430] usb 6-1: SerialNumber: syz
[  159.911281][ T8817] tmpfs: Unknown parameter 'nolazytimeun'
[  159.970247][ T8819] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3527'.
[  160.040597][ T8815] overlayfs: failed to resolve './file0': -2
[  160.043746][  T299] usb 5-1: USB disconnect, device number 5
[  160.111866][  T430] cdc_ncm 6-1:1.0: bind() failure
[  160.118079][  T430] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  160.137412][  T430] cdc_ncm 6-1:1.1: bind() failure
[  160.143490][  T430] usb 6-1: USB disconnect, device number 6
[  160.335071][ T8807] loop6: detected capacity change from 0 to 131072
[  160.342155][ T8807] F2FS-fs (loop6): Test dummy encryption mode enabled
[  160.350125][ T8807] F2FS-fs (loop6): invalid crc value
[  160.356843][ T8807] F2FS-fs (loop6): Found nat_bits in checkpoint
[  160.392109][ T8807] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  160.509828][  T438] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  160.691184][  T438] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  160.701257][  T438] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  160.710966][  T438] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  160.719919][  T438] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  160.727727][  T438] usb 2-1: SerialNumber: syz
[  160.780363][ T8868] netlink: 'syz.6.3547': attribute type 1 has an invalid length.
[  160.787994][ T8868] netlink: 'syz.6.3547': attribute type 2 has an invalid length.
[  160.796894][ T8868] netlink: 'syz.6.3547': attribute type 1 has an invalid length.
[  160.804766][ T8868] netlink: 'syz.6.3547': attribute type 2 has an invalid length.
[  160.828880][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  160.828899][   T28] audit: type=1326 audit(2000000003.980:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  160.860522][ T8872] loop6: detected capacity change from 0 to 128
[  160.869404][   T28] audit: type=1326 audit(2000000003.980:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  160.873027][ T8874] netem: change failed
[  160.893632][   T28] audit: type=1326 audit(2000000004.010:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  160.927453][   T28] audit: type=1326 audit(2000000004.010:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb6a758e1a3 code=0x7ffc0000
[  160.951408][   T28] audit: type=1326 audit(2000000004.010:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb6a758cc1f code=0x7ffc0000
[  160.953881][  T438] usb 2-1: 0:2 : does not exist
[  160.974887][   T28] audit: type=1326 audit(2000000004.020:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fb6a758e1f7 code=0x7ffc0000
[  161.006445][  T438] usb 2-1: USB disconnect, device number 19
[  161.021191][   T28] audit: type=1326 audit(2000000004.020:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb6a758cad0 code=0x7ffc0000
[  161.045624][   T28] audit: type=1326 audit(2000000004.020:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb6a758dd6b code=0x7ffc0000
[  161.069387][   T28] audit: type=1326 audit(2000000004.020:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb6a758cdca code=0x7ffc0000
[  161.093400][   T28] audit: type=1326 audit(2000000004.020:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8871 comm="syz.6.3549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb6a758cdca code=0x7ffc0000
[  161.125553][ T8888] loop6: detected capacity change from 0 to 128
[  161.131022][ T8886] incfs: Options parsing error. -22
[  161.136898][ T8886] incfs: mount failed -22
[  161.160280][ T8892] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  161.230919][ T8901] netlink: 'syz.4.3561': attribute type 1 has an invalid length.
[  161.238662][ T8901] netlink: 'syz.4.3561': attribute type 2 has an invalid length.
[  161.247074][ T8901] netlink: 'syz.4.3561': attribute type 1 has an invalid length.
[  161.254949][ T8901] netlink: 'syz.4.3561': attribute type 2 has an invalid length.
[  161.539860][  T438] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  161.588245][ T8923] netlink: 116 bytes leftover after parsing attributes in process `syz.4.3568'.
[  161.705326][ T8937] netlink: 96 bytes leftover after parsing attributes in process `syz.4.3581'.
[  161.729873][  T438] usb 8-1: Using ep0 maxpacket: 8
[  161.735970][  T438] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  161.745919][  T438] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  161.768238][  T438] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  161.778155][  T438] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.786075][  T438] usb 8-1: Product: syz
[  161.792111][  T438] usb 8-1: Manufacturer: syz
[  161.799995][  T438] usb 8-1: SerialNumber: syz
[  161.865251][ T8953] netlink: 116 bytes leftover after parsing attributes in process `syz.1.3587'.
[  161.989824][   T39] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  162.011020][  T438] cdc_ncm 8-1:1.0: bind() failure
[  162.019518][  T438] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  162.026423][  T438] cdc_ncm 8-1:1.1: bind() failure
[  162.032395][  T438] usb 8-1: USB disconnect, device number 7
[  162.200974][   T39] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  162.211067][   T39] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  162.220586][   T39] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  162.229433][   T39] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  162.237341][   T39] usb 5-1: SerialNumber: syz
[  162.329889][   T24] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  162.444415][   T39] usb 5-1: 0:2 : does not exist
[  162.450442][   T39] usb 5-1: USB disconnect, device number 6
[  162.528019][ T8984] loop7: detected capacity change from 0 to 128
[  162.540941][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  162.552262][   T24] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  162.578090][   T24] usb 6-1: New USB device found, idVendor=17ef, idProduct=60ee, bcdDevice= 0.00
[  162.587647][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.596463][   T24] usb 6-1: config 0 descriptor??
[  163.011082][   T24] lenovo 0003:17EF:60EE.0022: unknown main item tag 0x0
[  163.024471][   T24] lenovo 0003:17EF:60EE.0022: unknown main item tag 0x0
[  163.040403][   T24] lenovo 0003:17EF:60EE.0022: unknown main item tag 0x0
[  163.054902][   T24] lenovo 0003:17EF:60EE.0022: unknown main item tag 0x0
[  163.070075][   T24] lenovo 0003:17EF:60EE.0022: item fetching failed at offset 6/7
[  163.077957][ T9062] loop4: detected capacity change from 0 to 128
[  163.084865][   T24] lenovo 0003:17EF:60EE.0022: hid_parse failed
[  163.099869][   T24] lenovo: probe of 0003:17EF:60EE.0022 failed with error -22
[  163.192902][ T9072] loop6: detected capacity change from 0 to 512
[  163.209895][ T9072] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  163.216118][  T296] usb 6-1: USB disconnect, device number 7
[  163.240072][ T9072] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  163.252078][ T9072] ext4 filesystem being mounted at /161/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.308308][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  163.751840][ T9147] loop6: detected capacity change from 0 to 128
[  163.759343][ T9148] loop7: detected capacity change from 0 to 512
[  163.771531][ T9147] EXT4-fs (loop6): Test dummy encryption mode enabled
[  163.783266][ T9148] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  163.786290][ T9152] loop4: detected capacity change from 0 to 1024
[  163.799889][ T9147] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  163.822454][ T9152] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[  163.828992][ T9147] ext4 filesystem being mounted at /166/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  163.841706][ T9148] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  163.852803][ T9148] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  163.869135][ T9147] EXT4-fs (loop6): re-mounted. Quota mode: none.
[  163.879619][ T7406] EXT4-fs (loop7): unmounting filesystem.
[  163.886577][ T9147] EXT4-fs (loop6): re-mounted. Quota mode: none.
[  163.909044][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  164.289955][   T24] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  164.470969][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  164.482033][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  164.494739][   T24] usb 7-1: New USB device found, idVendor=17ef, idProduct=60ee, bcdDevice= 0.00
[  164.503924][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.512501][   T24] usb 7-1: config 0 descriptor??
[  164.903283][ T9194] loop7: detected capacity change from 0 to 8192
[  164.920625][   T24] lenovo 0003:17EF:60EE.0023: unknown main item tag 0x0
[  164.927440][   T24] lenovo 0003:17EF:60EE.0023: unknown main item tag 0x0
[  164.934741][   T24] lenovo 0003:17EF:60EE.0023: unknown main item tag 0x0
[  164.942155][   T24] lenovo 0003:17EF:60EE.0023: unknown main item tag 0x0
[  164.949187][   T24] lenovo 0003:17EF:60EE.0023: item fetching failed at offset 6/7
[  164.957779][   T24] lenovo 0003:17EF:60EE.0023: hid_parse failed
[  164.964470][   T24] lenovo: probe of 0003:17EF:60EE.0023 failed with error -22
[  165.046595][ T9203] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  165.123840][   T24] usb 7-1: USB disconnect, device number 7
[  165.623157][ T9243] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.638535][ T9243] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.653520][ T9243] device bridge_slave_0 entered promiscuous mode
[  165.677868][ T9243] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.697533][ T9243] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.706745][ T9243] device bridge_slave_1 entered promiscuous mode
[  165.755256][ T9257] loop6: detected capacity change from 0 to 4096
[  165.778825][ T9257] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  165.802714][ T1431] device gretap0 left promiscuous mode
[  165.830489][ T9214] loop4: detected capacity change from 0 to 131072
[  165.837841][ T9214] F2FS-fs (loop4): Test dummy encryption mode enabled
[  165.855381][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  165.866280][ T9214] F2FS-fs (loop4): invalid crc value
[  165.890966][ T9214] F2FS-fs (loop4): Found nat_bits in checkpoint
[  165.914119][ T9243] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.921018][ T9243] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.928129][ T9243] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.935054][ T9243] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.949960][ T9271] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3731'.
[  165.961231][ T1431] device bridge_slave_1 left promiscuous mode
[  165.967560][ T1431] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.975505][ T1431] device bridge_slave_0 left promiscuous mode
[  165.981856][ T1431] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.988791][ T9214] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  165.997158][ T1431] device veth1_macvtap left promiscuous mode
[  166.009997][ T1431] device veth0_vlan left promiscuous mode
[  166.200438][ T9276] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3734'.
[  166.210071][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  166.218005][  T379] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.228821][ T9274] loop5: detected capacity change from 0 to 40427
[  166.241509][  T379] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.248897][ T9274] F2FS-fs (loop5): Invalid SB checksum offset: 0
[  166.256446][ T9274] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  166.260330][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.273252][  T379] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.280135][  T379] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.288331][ T9274] F2FS-fs (loop5): invalid crc value
[  166.288358][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  166.303822][  T379] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.310707][  T379] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.322844][ T9274] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  166.336824][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  166.351313][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  166.364774][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  166.396301][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  166.401060][ T9274] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  166.408083][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  166.411534][ T9274] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  166.457482][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  166.475720][   T28] kauditd_printk_skb: 33 callbacks suppressed
[  166.475737][   T28] audit: type=1400 audit(2000000009.630:1081): avc:  denied  { map } for  pid=9273 comm="syz.5.3732" path="/52/file1/bus" dev="loop5" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  166.475780][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  166.511748][ T8363] syz-executor: attempt to access beyond end of device
[  166.511748][ T8363] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  166.537993][ T9243] device veth0_vlan entered promiscuous mode
[  166.545124][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  166.577747][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  166.602195][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  166.620392][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  166.652421][ T9243] device veth1_macvtap entered promiscuous mode
[  166.697253][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  166.705330][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  166.721417][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  166.747491][ T9298] loop5: detected capacity change from 0 to 4096
[  166.755293][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  166.771390][ T9298] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  166.789042][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  166.811304][ T8363] EXT4-fs (loop5): unmounting filesystem.
[  166.905455][ T9289] loop4: detected capacity change from 0 to 40427
[  166.916037][ T9310] hub 2-0:1.0: USB hub found
[  166.922945][ T9289] F2FS-fs (loop4): invalid crc value
[  166.930546][ T9310] hub 2-0:1.0: 1 port detected
[  166.941090][ T9289] F2FS-fs (loop4): Found nat_bits in checkpoint
[  167.014997][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.023739][ T9289] F2FS-fs (loop4): Start checkpoint disabled!
[  167.024226][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.037311][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.038741][ T9289] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  167.045251][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.060250][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.068268][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.075833][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.085018][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.092976][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.100266][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.107669][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.115451][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.122821][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.129393][ T9289] F2FS-fs (loop4): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  167.130147][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.157846][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.165321][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.172668][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.179954][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.187097][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.194423][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.201854][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.209247][ T9332] loop5: detected capacity change from 0 to 256
[  167.213626][ T9332] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d)
[  167.215467][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.234974][  T379] kworker/u4:5: attempt to access beyond end of device
[  167.234974][  T379] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  167.248799][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.256012][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.279857][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.287279][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.295038][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.302319][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.309465][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.317151][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.324409][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.331674][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.338882][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.346156][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.353348][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.360543][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.367706][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.375045][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.384655][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.391907][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.399048][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.406289][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.413992][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.421290][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.428429][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.433784][ T9338] loop4: detected capacity change from 0 to 4096
[  167.435689][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.449005][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.451581][ T9338] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  167.456672][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.472897][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.480388][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.487869][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.488502][ T7323] EXT4-fs (loop4): unmounting filesystem.
[  167.495835][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.507978][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.515382][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.522600][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.529832][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.536994][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.544244][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.551590][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.558780][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.566012][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.573401][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.580625][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.587804][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.595051][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.602234][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.609415][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.616733][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.624101][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.631315][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.638711][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.646615][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.653880][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.661053][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.668231][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.675468][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.682778][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.690008][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.697965][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.705212][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.713018][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.720597][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.727831][  T387] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  167.736412][  T387] hid-generic 0000:0000:0000.0024: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  167.788025][ T9349] hub 2-0:1.0: USB hub found
[  167.792642][ T9349] hub 2-0:1.0: 1 port detected
[  167.908254][ T9365] tipc: Started in network mode
[  167.919453][ T9365] tipc: Node identity ac14140f, cluster identity 4711
[  167.931849][ T9365] tipc: New replicast peer: 255.255.255.255
[  167.937981][ T9365] tipc: Enabled bearer <udp:syz2>, priority 10
[  168.022363][ T9380] hub 2-0:1.0: USB hub found
[  168.027212][ T9380] hub 2-0:1.0: 1 port detected
[  168.211504][ T9390] usb usb8: usbfs: process 9390 (syz.5.3779) did not claim interface 0 before use
[  168.294522][ T9395] loop5: detected capacity change from 0 to 256
[  168.304003][ T9395] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  168.316151][ T7039] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  168.476367][ T9403] loop5: detected capacity change from 0 to 40427
[  168.485007][ T9403] F2FS-fs (loop5): invalid crc value
[  168.491692][ T9403] F2FS-fs (loop5): Found nat_bits in checkpoint
[  168.501521][ T7039] usb 5-1: unable to get BOS descriptor or descriptor too short
[  168.510143][ T7039] usb 5-1: not running at top speed; connect to a high speed hub
[  168.518782][ T7039] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  168.529504][ T7039] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  168.540305][ T7039] usb 5-1: New USB device found, idVendor=1d7a, idProduct=0101, bcdDevice= 0.40
[  168.542531][ T9403] F2FS-fs (loop5): Start checkpoint disabled!
[  168.549236][ T7039] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.556525][ T9403] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  168.563536][ T7039] usb 5-1: Product: syz
[  168.575708][ T7039] usb 5-1: Manufacturer: syz
[  168.580256][ T7039] usb 5-1: SerialNumber: syz
[  168.610416][ T9403] F2FS-fs (loop5): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  168.649312][  T379] kworker/u4:5: attempt to access beyond end of device
[  168.649312][  T379] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  168.789724][ T7039] usb 5-1: MIDIStreaming interface descriptor not found
[  168.802299][ T9423] hub 2-0:1.0: USB hub found
[  168.806918][ T9423] hub 2-0:1.0: 1 port detected
[  168.813164][ T7039] usb 5-1: USB disconnect, device number 7
[  169.021719][ T9425] loop6: detected capacity change from 0 to 40427
[  169.029136][ T9425] F2FS-fs (loop6): Invalid SB checksum offset: 0
[  169.046787][ T9425] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  169.049924][ T7039] tipc: Node number set to 2886997007
[  169.063959][ T9425] F2FS-fs (loop6): invalid crc value
[  169.086855][ T9425] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  169.128035][ T9436] loop5: detected capacity change from 0 to 16
[  169.141475][ T9436] erofs: (device loop5): mounted with root inode @ nid 36.
[  169.154912][ T9425] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  169.164696][ T9425] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  169.196046][ T7346] syz-executor: attempt to access beyond end of device
[  169.196046][ T7346] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  169.395622][ T9449] loop6: detected capacity change from 0 to 40427
[  169.403501][ T9449] F2FS-fs (loop6): invalid crc value
[  169.410084][ T9449] F2FS-fs (loop6): Found nat_bits in checkpoint
[  169.450751][ T9449] F2FS-fs (loop6): Start checkpoint disabled!
[  169.457390][ T9449] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  169.497076][ T9449] F2FS-fs (loop6): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  169.520464][ T7039] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  169.539271][ T1431] kworker/u4:6: attempt to access beyond end of device
[  169.539271][ T1431] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  169.624349][ T9472] usb usb8: usbfs: process 9472 (syz.4.3808) did not claim interface 0 before use
[  169.647274][ T9475] loop4: detected capacity change from 0 to 16
[  169.655931][ T9475] erofs: (device loop4): mounted with root inode @ nid 36.
[  169.693078][   T28] audit: type=1400 audit(2000000012.850:1082): avc:  denied  { read write } for  pid=9478 comm="syz.1.3812" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  169.717578][ T7039] usb 6-1: Using ep0 maxpacket: 32
[  169.723996][ T7039] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[  169.741152][ T7039] usb 6-1: config 0 has no interface number 0
[  169.752462][   T28] audit: type=1400 audit(2000000012.890:1083): avc:  denied  { open } for  pid=9478 comm="syz.1.3812" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  169.779133][ T9483] x_tables: duplicate underflow at hook 4
[  169.787193][ T7039] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  169.796260][ T7039] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.804433][ T7039] usb 6-1: Product: syz
[  169.808480][ T7039] usb 6-1: Manufacturer: syz
[  169.814351][ T7039] usb 6-1: SerialNumber: syz
[  169.819098][ T9489] loop4: detected capacity change from 0 to 512
[  169.819623][ T7039] usb 6-1: config 0 descriptor??
[  169.832826][ T7039] smsc95xx v2.0.0
[  169.836784][ T9489] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  169.845379][ T9489] EXT4-fs (loop4): orphan cleanup on readonly fs
[  169.853795][ T9489] EXT4-fs warning (device loop4): ext4_enable_quotas:7017: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  169.868327][ T9489] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  169.876983][ T9489] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2925: inode #16: comm syz.4.3817: corrupted xattr block 31
[  169.889352][ T9489] EXT4-fs warning (device loop4): ext4_evict_inode:299: xattr delete (err -117)
[  169.898933][ T9489] EXT4-fs (loop4): 1 orphan inode deleted
[  169.900552][ T2078] Bluetooth: hci0: command 0x1003 tx timeout
[  169.905038][ T9489] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  169.910948][ T2223] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  169.958036][ T7323] EXT4-fs (loop4): unmounting filesystem.
[  169.964114][   T28] audit: type=1400 audit(2000000013.120:1084): avc:  denied  { setattr } for  pid=9499 comm="syz.2.3823" name=".pending_reads" dev="incremental-fs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  170.007416][ T9503] loop2: detected capacity change from 0 to 16
[  170.014382][ T9503] erofs: (device loop2): mounted with root inode @ nid 36.
[  170.021979][   T28] audit: type=1400 audit(2000000013.170:1085): avc:  denied  { map } for  pid=9505 comm="syz.6.3826" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  170.108497][ T9517] loop4: detected capacity change from 0 to 4096
[  170.116341][ T9517] EXT4-fs (loop4): Test dummy encryption mode enabled
[  170.126533][ T9517] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  170.146515][ T7323] EXT4-fs (loop4): unmounting filesystem.
[  170.246286][ T7039] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  170.256874][ T7039] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  170.667173][ T7039] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  170.677985][ T7039] smsc95xx: probe of 6-1:0.67 failed with error -71
[  170.685508][ T7039] usb 6-1: USB disconnect, device number 8
[  172.210198][   T45] Bluetooth: hci1: command 0x1003 tx timeout
[  172.210220][ T2078] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  172.210758][ T2079] Bluetooth: hci0: command 0x1003 tx timeout
[  172.216246][ T2223] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  172.264617][ T9548] loop6: detected capacity change from 0 to 16
[  172.280380][ T9548] erofs: (device loop6): mounted with root inode @ nid 36.
[  172.559465][   T28] audit: type=1400 audit(2000000015.710:1086): avc:  denied  { execstack } for  pid=9588 comm="syz.1.3861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  172.613362][ T9600] netlink: 'syz.2.3864': attribute type 3 has an invalid length.
[  172.635908][ T9600] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3864'.
[  172.884788][   T28] audit: type=1400 audit(2000000016.040:1087): avc:  denied  { getopt } for  pid=9646 comm="syz.6.3886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  172.963654][ T9652] loop6: detected capacity change from 0 to 1024
[  172.976919][ T9652] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  173.017877][ T9652] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  173.049932][ T9652] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[  173.068689][ T9652] EXT4-fs error (device loop6): ext4_get_journal_inode:5710: comm syz.6.3889: inode #1: comm syz.6.3889: iget: illegal inode #
[  173.104927][ T9652] EXT4-fs (loop6): no journal found
[  173.166057][ T9679] netlink: 68 bytes leftover after parsing attributes in process `syz.6.3900'.
[  173.224436][ T9692] loop5: detected capacity change from 0 to 128
[  173.234096][ T9692] FAT-fs (loop5): Directory bread(block 32) failed
[  173.241525][ T9692] FAT-fs (loop5): Directory bread(block 33) failed
[  173.248051][ T9692] FAT-fs (loop5): Directory bread(block 34) failed
[  173.266789][ T9694] loop6: detected capacity change from 0 to 128
[  173.273324][ T9692] FAT-fs (loop5): Directory bread(block 35) failed
[  173.280331][ T9692] FAT-fs (loop5): Directory bread(block 36) failed
[  173.282354][ T9696] loop2: detected capacity change from 0 to 512
[  173.294418][ T9692] FAT-fs (loop5): Directory bread(block 37) failed
[  173.301384][ T9692] FAT-fs (loop5): Directory bread(block 38) failed
[  173.308183][ T9692] FAT-fs (loop5): Directory bread(block 39) failed
[  173.315330][ T9694] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  173.324531][ T9692] FAT-fs (loop5): Directory bread(block 40) failed
[  173.330025][ T9694] ext4 filesystem being mounted at /213/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  173.331303][ T9692] FAT-fs (loop5): Directory bread(block 41) failed
[  173.368074][ T9696] EXT4-fs (loop2): orphan cleanup on readonly fs
[  173.378635][ T9696] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.3908: bg 0: block 248: padding at end of block bitmap is not set
[  173.393301][ T9696] Quota error (device loop2): write_blk: dquota write failed
[  173.401736][ T9696] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  173.412497][ T9696] EXT4-fs error (device loop2): ext4_acquire_dquot:6782: comm syz.2.3908: Failed to acquire dquot type 1
[  173.424590][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  173.430840][ T9696] EXT4-fs (loop2): 1 truncate cleaned up
[  173.438636][ T9696] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  173.462372][ T9692] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3906'.
[  173.475094][ T9696] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  173.486981][ T9702] loop6: detected capacity change from 0 to 128
[  173.504438][ T9702] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  173.513396][ T9696] Quota error (device loop2): write_blk: dquota write failed
[  173.524590][ T9696] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  173.536554][ T9696] EXT4-fs error (device loop2): ext4_acquire_dquot:6782: comm syz.2.3908: Failed to acquire dquot type 1
[  173.548962][ T9696] EXT4-fs warning (device loop2): ext4_enable_quotas:7017: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  173.587347][ T9696] syz.2.3908 (9696) used greatest stack depth: 19432 bytes left
[  173.595580][ T9243] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 12
[  173.614012][ T9243] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 12
[  173.679648][   T28] audit: type=1326 audit(2000000016.830:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9721 comm="syz.1.3919" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa50bb8e169 code=0x0
[  173.825426][ T9738] loop5: detected capacity change from 0 to 128
[  173.833609][ T9738] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  173.842289][ T9738] ext4 filesystem being mounted at /90/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  173.877454][   T28] audit: type=1400 audit(2000000017.030:1089): avc:  denied  { execute } for  pid=9737 comm="syz.5.3927" name="file1" dev="loop5" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  173.899621][   T28] audit: type=1400 audit(2000000017.050:1090): avc:  denied  { execute_no_trans } for  pid=9737 comm="syz.5.3927" path="/90/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop5" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  173.946357][ T8363] EXT4-fs (loop5): unmounting filesystem.
[  173.962734][ T9741] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.969733][ T9741] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.979017][ T9741] device bridge_slave_0 entered promiscuous mode
[  173.987574][ T9741] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.994599][ T9741] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.010379][ T9741] device bridge_slave_1 entered promiscuous mode
[  174.051240][   T28] audit: type=1400 audit(2000000017.210:1091): avc:  denied  { read write } for  pid=9750 comm="syz.5.3931" name="file1" dev="tmpfs" ino=510 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  174.127793][ T9741] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.134711][ T9741] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.141825][ T9741] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.148682][ T9741] bridge0: port 1(bridge_slave_0) entered forwarding state
[  174.218228][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  174.225991][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.233640][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.243138][ T9773] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3942'.
[  174.260822][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  174.269996][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.276884][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[  174.285071][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  174.294161][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.301087][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.329711][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  174.338917][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  174.347550][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  174.361487][ T1431] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  174.378908][ T1431] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  174.386826][ T1431] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  174.403702][ T9741] device veth0_vlan entered promiscuous mode
[  174.416771][ T1431] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  174.426930][ T9741] device veth1_macvtap entered promiscuous mode
[  174.439558][ T1431] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  174.461273][ T1431] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  174.534495][ T9783] loop5: detected capacity change from 0 to 40427
[  174.543620][ T9783] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  174.557139][ T9783] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  174.593524][ T9783] F2FS-fs (loop5): Found nat_bits in checkpoint
[  174.670120][ T9783] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  174.677294][ T9783] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  174.723830][  T379] device bridge_slave_1 left promiscuous mode
[  174.736588][  T379] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.756729][ T9836] loop6: detected capacity change from 0 to 1024
[  174.770051][  T379] device bridge_slave_0 left promiscuous mode
[  174.780242][ T9836] EXT4-fs: Ignoring removed orlov option
[  174.785838][  T379] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.797489][ T9836] EXT4-fs (loop6): Test dummy encryption mode enabled
[  174.809223][  T379] device veth1_macvtap left promiscuous mode
[  174.823712][  T379] device veth0_vlan left promiscuous mode
[  174.839094][ T9836] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  174.884679][ T9853] input: syz0 as /devices/virtual/input/input31
[  174.930211][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  175.004912][ T9865] netlink: 2 bytes leftover after parsing attributes in process `syz.6.3975'.
[  175.202520][ T9903] 9pnet: p9_errstr2errno: server reported unknown error ‌@يخ‚ح(ے0x0000000000000004
[  175.280599][ T9915] loop6: detected capacity change from 0 to 512
[  175.308497][ T9915] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  175.317403][ T9915] ext4 filesystem being mounted at /231/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.332405][ T9915] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3997'.
[  175.360426][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  175.408838][ T9924] loop9: detected capacity change from 0 to 1024
[  175.419148][ T9926] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  175.447970][ T9924] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  175.462962][ T9924] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.493493][ T9924] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  175.509010][ T9924] incfs: Can't find or create .index dir in ./file0
[  175.515748][ T9924] incfs: mount failed -28
[  175.531542][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  175.583556][ T9940] loop9: detected capacity change from 0 to 128
[  175.660916][ T9944] xt_TPROXY: Can be used only with -p tcp or -p udp
[  175.731550][ T9959] netem: incorrect gi model size
[  175.742918][ T9959] netem: change failed
[  175.824998][ T9965] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  175.882920][ T9967] loop9: detected capacity change from 0 to 128
[  175.897006][ T9967] EXT4-fs: Ignoring removed nobh option
[  175.913790][ T9967] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  175.934756][ T9967] ext4 filesystem being mounted at /22/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  175.961652][ T9972] loop4: detected capacity change from 0 to 256
[  175.998074][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  176.009192][ T9972] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  176.020030][ T9972] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  176.048062][ T9972] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  176.227451][ T9989] netlink: 116 bytes leftover after parsing attributes in process `syz.4.4030'.
[  176.276556][ T9993] loop9: detected capacity change from 0 to 128
[  176.372709][T10009] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.379627][T10009] bridge0: port 1(bridge_slave_0) entered forwarding state
[  176.596066][T10035] loop9: detected capacity change from 0 to 256
[  176.605109][ T9953] loop6: detected capacity change from 0 to 131072
[  176.614467][ T9953] F2FS-fs (loop6): Invalid segment/section count (31, 24 x 150994945)
[  176.624526][ T9953] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  176.640138][ T9953] F2FS-fs (loop6): invalid crc value
[  176.665052][ T9953] F2FS-fs (loop6): Found nat_bits in checkpoint
[  176.711942][ T9953] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  176.719329][ T9953] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  176.879889][T10064] input: syz0 as /devices/virtual/input/input32
[  176.885979][T10064] input: failed to attach handler leds to device input32, error: -6
[  176.905742][T10066] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  176.921105][T10066] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  177.005713][T10068] loop5: detected capacity change from 0 to 8192
[  177.192426][T10091] loop9: detected capacity change from 0 to 512
[  177.200373][T10091] EXT4-fs (loop9): orphan cleanup on readonly fs
[  177.207303][T10091] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.4077: bg 0: block 248: padding at end of block bitmap is not set
[  177.227181][T10091] EXT4-fs error (device loop9): ext4_acquire_dquot:6782: comm syz.9.4077: Failed to acquire dquot type 1
[  177.239236][T10091] EXT4-fs (loop9): 1 truncate cleaned up
[  177.245283][T10091] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  177.253952][T10094] loop6: detected capacity change from 0 to 256
[  177.261606][T10094] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  177.266436][T10091] EXT4-fs (loop9): warning: mounting fs with errors, running e2fsck is recommended
[  177.278784][T10094] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  177.292514][T10094] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  177.300730][T10091] EXT4-fs error (device loop9): ext4_acquire_dquot:6782: comm syz.9.4077: Failed to acquire dquot type 1
[  177.315961][T10091] EXT4-fs warning (device loop9): ext4_enable_quotas:7017: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  177.343805][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  177.366573][T10106] loop5: detected capacity change from 0 to 128
[  177.383914][T10106] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  177.392613][T10106] ext4 filesystem being mounted at /138/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  177.410237][T10112] SELinux:  Context system_u:object_r:var_lib_t:s0 is not valid (left unmapped).
[  177.495614][ T8363] EXT4-fs (loop5): unmounting filesystem.
[  177.508445][T10125] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4090'.
[  177.563757][T10129] loop5: detected capacity change from 0 to 256
[  177.570346][T10129] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  177.581356][T10129] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  177.597183][T10129] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  177.600353][T10132] loop6: detected capacity change from 0 to 512
[  177.622300][T10132] EXT4-fs error (device loop6): ext4_do_update_inode:5226: inode #3: comm syz.6.4092: corrupted inode contents
[  177.634628][T10132] EXT4-fs error (device loop6): ext4_dirty_inode:6091: inode #3: comm syz.6.4092: mark_inode_dirty error
[  177.652067][T10132] EXT4-fs error (device loop6): ext4_do_update_inode:5226: inode #3: comm syz.6.4092: corrupted inode contents
[  177.656509][T10139] device batadv_slave_1 entered promiscuous mode
[  177.664508][T10132] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #3: comm syz.6.4092: mark_inode_dirty error
[  177.674277][T10138] device batadv_slave_1 left promiscuous mode
[  177.682810][T10132] __quota_error: 25 callbacks suppressed
[  177.682832][T10132] Quota error (device loop6): write_blk: dquota write failed
[  177.700169][T10132] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  177.712001][T10132] EXT4-fs error (device loop6): ext4_acquire_dquot:6782: comm syz.6.4092: Failed to acquire dquot type 0
[  177.723802][T10132] EXT4-fs error (device loop6): ext4_do_update_inode:5226: inode #16: comm syz.6.4092: corrupted inode contents
[  177.740835][T10132] EXT4-fs error (device loop6): ext4_dirty_inode:6091: inode #16: comm syz.6.4092: mark_inode_dirty error
[  177.753025][T10132] EXT4-fs error (device loop6): ext4_do_update_inode:5226: inode #16: comm syz.6.4092: corrupted inode contents
[  177.765412][T10132] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #16: comm syz.6.4092: mark_inode_dirty error
[  177.776891][T10132] EXT4-fs error (device loop6): ext4_do_update_inode:5226: inode #16: comm syz.6.4092: corrupted inode contents
[  177.789019][T10132] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  177.797583][T10132] EXT4-fs error (device loop6): ext4_do_update_inode:5226: inode #16: comm syz.6.4092: corrupted inode contents
[  177.810872][T10132] EXT4-fs error (device loop6): ext4_truncate:4313: inode #16: comm syz.6.4092: mark_inode_dirty error
[  177.822205][T10132] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  177.831575][T10132] EXT4-fs (loop6): 1 truncate cleaned up
[  177.837111][T10132] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  177.845978][T10132] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.889163][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  177.937164][T10146] loop5: detected capacity change from 0 to 40427
[  177.946954][T10146] F2FS-fs (loop5): Invalid log blocks per segment (4278190089)
[  177.954747][T10146] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  177.963955][T10146] F2FS-fs (loop5): invalid crc value
[  177.964321][T10159] x_tables: unsorted entry at hook 2
[  177.971315][T10146] F2FS-fs (loop5): Found nat_bits in checkpoint
[  178.013077][T10146] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  178.020002][T10146] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  178.058854][ T8363] syz-executor: attempt to access beyond end of device
[  178.058854][ T8363] loop5: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  178.073030][ T8363] syz-executor: attempt to access beyond end of device
[  178.073030][ T8363] loop5: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  178.114811][  T319] kworker/u4:4: attempt to access beyond end of device
[  178.114811][  T319] loop5: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  178.181622][  T319] tipc: Disabling bearer <udp:syz2>
[  178.186995][  T319] tipc: Left network mode
[  178.270097][ T7039] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  178.349759][T10188] loop4: detected capacity change from 0 to 512
[  178.388183][T10188] EXT4-fs (loop4): orphan cleanup on readonly fs
[  178.399900][T10188] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.4115: bg 0: block 248: padding at end of block bitmap is not set
[  178.415726][T10188] Quota error (device loop4): write_blk: dquota write failed
[  178.423595][T10188] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  178.434937][T10188] EXT4-fs error (device loop4): ext4_acquire_dquot:6782: comm syz.4.4115: Failed to acquire dquot type 1
[  178.446937][T10188] EXT4-fs (loop4): 1 truncate cleaned up
[  178.460075][T10188] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  178.460994][ T7039] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  178.478866][ T7039] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  178.504545][ T7039] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  178.519047][T10188] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  178.523753][ T7039] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  178.536824][ T7039] usb 7-1: SerialNumber: syz
[  178.559576][T10188] Quota error (device loop4): write_blk: dquota write failed
[  178.570755][T10200] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4120'.
[  178.573426][T10188] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  178.589448][T10188] EXT4-fs error (device loop4): ext4_acquire_dquot:6782: comm syz.4.4115: Failed to acquire dquot type 1
[  178.603511][T10188] EXT4-fs warning (device loop4): ext4_enable_quotas:7017: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix.
[  178.632289][ T7323] EXT4-fs (loop4): unmounting filesystem.
[  178.684318][T10207] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4122'.
[  178.706923][T10198] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.730001][T10198] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.740621][T10198] device bridge_slave_0 entered promiscuous mode
[  178.749085][ T7039] usb 7-1: 0:2 : does not exist
[  178.761610][T10217] device wireguard0 entered promiscuous mode
[  178.770368][ T7039] usb 7-1: USB disconnect, device number 8
[  178.786627][T10198] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.795705][T10198] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.810628][T10198] device bridge_slave_1 entered promiscuous mode
[  178.881875][  T319] device bridge_slave_1 left promiscuous mode
[  178.888132][  T319] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.898209][  T319] device bridge_slave_0 left promiscuous mode
[  178.904468][  T319] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.916873][  T319] device veth1_macvtap left promiscuous mode
[  178.922869][  T319] device veth0_vlan left promiscuous mode
[  179.095308][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  179.113057][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  179.148283][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  179.157259][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  179.166004][  T379] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.172893][  T379] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.180912][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  179.189188][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  179.197649][  T379] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.204535][  T379] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.224300][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  179.236665][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  179.245070][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  179.265821][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  179.279333][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  179.296066][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  179.304588][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  179.315679][T10198] device veth0_vlan entered promiscuous mode
[  179.324368][T10253] loop6: detected capacity change from 0 to 128
[  179.336456][T10253] EXT4-fs: Ignoring removed nobh option
[  179.348673][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  179.358177][T10253] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  179.371275][T10198] device veth1_macvtap entered promiscuous mode
[  179.382462][T10253] ext4 filesystem being mounted at /251/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  179.412697][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  179.422372][T10255] loop9: detected capacity change from 0 to 8192
[  179.429181][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  179.440650][  T379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  179.510034][   T28] audit: type=1326 audit(2000000022.670:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10256 comm="syz.1.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa50bb8e169 code=0x7fc00000
[  179.738833][T10282] loop3: detected capacity change from 0 to 128
[  179.749852][  T387] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  179.796753][T10286] loop3: detected capacity change from 0 to 128
[  179.816609][T10286] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  179.830182][T10286] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  179.920463][T10198] EXT4-fs (loop3): unmounting filesystem.
[  179.941006][  T387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  179.960684][  T387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  179.987838][  T387] usb 7-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  180.009918][  T387] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.030563][  T387] usb 7-1: config 0 descriptor??
[  180.116360][T10311] loop4: detected capacity change from 0 to 128
[  180.171488][   T28] audit: type=1326 audit(2000000023.330:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10256 comm="syz.1.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa50bb2a359 code=0x7fc00000
[  180.535626][T10325] loop3: detected capacity change from 0 to 40427
[  180.548582][T10325] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  180.565115][T10325] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  180.600727][T10325] F2FS-fs (loop3): Found nat_bits in checkpoint
[  180.641560][  T387] usb 7-1: string descriptor 0 read error: -22
[  180.719827][T10325] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  180.726751][T10325] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  180.843636][  T387] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:256C:006D.0025/input/input33
[  180.881280][  T387] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:256C:006D.0025/input/input34
[  180.920481][  T387] input: HID 256c:006d Touch Strip as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:256C:006D.0025/input/input35
[  180.951003][  T387] input: HID 256c:006d Dial as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:256C:006D.0025/input/input36
[  180.991467][  T387] uclogic 0003:256C:006D.0025: input,hiddev96,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.6-1/input0
[  181.051021][  T430] usb 7-1: USB disconnect, device number 9
[  181.178738][T10378] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4194'.
[  181.189185][T10378] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4194'.
[  181.752789][T10410] loop6: detected capacity change from 0 to 40427
[  181.759694][T10410] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  181.773741][T10410] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  181.795891][   T28] audit: type=1326 audit(2000000024.950:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10417 comm="syz.3.4211" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ffbcab8e169 code=0x0
[  181.822881][   T28] audit: type=1400 audit(2000000024.970:1116): avc:  denied  { nlmsg_write } for  pid=10422 comm="syz.1.4212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  181.830469][T10410] F2FS-fs (loop6): Found nat_bits in checkpoint
[  181.909663][T10410] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  181.916682][T10410] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  182.156249][T10453] fuse: Bad value for 'fd'
[  182.244806][T10465] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.453777][T10494] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4246'.
[  182.496653][T10504] loop9: detected capacity change from 0 to 2048
[  182.521668][T10504] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  182.546547][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  182.882565][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  182.882582][   T28] audit: type=1326 audit(2000000026.040:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10520 comm="syz.3.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbcab8e169 code=0x7fc00000
[  182.942448][T10537] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4262'.
[  183.177583][T10559] overlayfs: failed to clone upperpath
[  183.466513][   T28] audit: type=1326 audit(2000000026.620:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10520 comm="syz.3.4256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ffbcab2a359 code=0x7fc00000
[  183.646910][T10614] TCP: tcp_parse_options: Illegal window scaling value 224 > 14 received
[  183.994708][T10659] sch_tbf: burst 0 is lower than device gretap0 mtu (1476) !
[  184.015444][T10661] loop6: detected capacity change from 0 to 512
[  184.037439][T10661] EXT4-fs: Ignoring removed oldalloc option
[  184.044769][T10661] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  184.071054][T10661] EXT4-fs (loop6): orphan cleanup on readonly fs
[  184.082763][T10661] Quota error (device loop6): do_check_range: Getting block 196613 out of range 1-5
[  184.110272][T10661] Quota error (device loop6): qtree_read_dquot: Can't read quota structure for id 0
[  184.120036][T10661] EXT4-fs error (device loop6): ext4_acquire_dquot:6782: comm syz.6.4320: Failed to acquire dquot type 1
[  184.132068][T10661] EXT4-fs (loop6): 1 truncate cleaned up
[  184.139183][T10661] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  184.238960][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  184.341299][T10696] device lo entered promiscuous mode
[  184.362301][T10696] device tunl0 entered promiscuous mode
[  184.379584][T10696] device gre0 entered promiscuous mode
[  184.427142][T10696] device erspan0 entered promiscuous mode
[  184.434704][T10696] device ip_vti0 entered promiscuous mode
[  184.444577][T10706] loop3: detected capacity change from 0 to 256
[  184.481120][T10198] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  184.501034][T10198] FAT-fs (loop3): Filesystem has been set read-only
[  184.503725][T10710] netlink: '+}[@': attribute type 13 has an invalid length.
[  184.514787][T10198] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  184.563510][T10710] gretap0: refused to change device tx_queue_len
[  184.590081][T10710] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  184.763935][T10726] SELinux: security_context_str_to_sid (u) failed with errno=-22
[  184.790703][T10736] netlink: 'syz.6.4359': attribute type 5 has an invalid length.
[  184.798953][   T28] audit: type=1326 audit(2000000027.950:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.9.4360" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2c44f8e169 code=0x0
[  184.951827][T10743] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.960527][T10743] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.973144][T10743] device bridge_slave_0 entered promiscuous mode
[  185.005536][T10743] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.015510][T10743] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.023786][T10743] device bridge_slave_1 entered promiscuous mode
[  185.037366][T10771] incfs: Options parsing error. -22
[  185.056694][T10771] incfs: mount failed -22
[  185.207460][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  185.220229][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  185.243369][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  185.257059][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  185.279901][  T319] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.286983][  T319] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.307387][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  185.330633][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  185.342158][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  185.361779][  T319] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.368666][  T319] bridge0: port 2(bridge_slave_1) entered forwarding state
[  185.390280][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  185.405911][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  185.422825][ T1431] device bridge_slave_1 left promiscuous mode
[  185.428804][ T1431] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.441142][T10781] loop6: detected capacity change from 0 to 40427
[  185.447961][ T1431] device bridge_slave_0 left promiscuous mode
[  185.458233][T10781] F2FS-fs (loop6): Small segment_count (9 < 1 * 24)
[  185.460575][ T1431] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.467807][T10781] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  185.499932][ T1431] device veth1_macvtap left promiscuous mode
[  185.505885][ T1431] device veth0_vlan left promiscuous mode
[  185.519365][T10781] F2FS-fs (loop6): Found nat_bits in checkpoint
[  185.583087][T10781] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  185.593588][T10781] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  185.707803][ T7346] syz-executor: attempt to access beyond end of device
[  185.707803][ T7346] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  185.752893][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  185.807748][T10743] device veth0_vlan entered promiscuous mode
[  185.820429][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  185.840373][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  185.857444][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  185.888008][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  185.912052][T10743] device veth1_macvtap entered promiscuous mode
[  185.933830][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  185.947967][  T319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  186.192895][T10840] syz.6.4403[10840] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  186.192988][T10840] syz.6.4403[10840] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  186.252812][T10844] loop6: detected capacity change from 0 to 128
[  186.273113][T10844] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  186.287667][T10844] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  186.329572][T10852] loop6: detected capacity change from 0 to 128
[  186.352551][T10852] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  186.372470][T10852] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  186.428116][T10872] netlink: 104 bytes leftover after parsing attributes in process `syz.4.4418'.
[  186.460525][   T10] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  186.552614][T10886] 9pnet_fd: Insufficient options for proto=fd
[  186.736587][   T28] audit: type=1400 audit(2000000029.890:1123): avc:  denied  { bind } for  pid=10897 comm="syz.4.4431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  186.824194][T10904] loop9: detected capacity change from 0 to 1024
[  186.856972][T10904] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  186.871806][T10904] EXT4-fs (loop9): re-mounted. Quota mode: writeback.
[  186.919909][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  187.135552][   T28] audit: type=1401 audit(2000000030.290:1124): op=setxattr invalid_context=""
[  187.190593][T10929] cgroup: Unknown subsys name '¬§@﬽وى¦4*oنآز£hسî؛o‏üيUـ'
[  187.260426][  T438] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  187.270083][T10939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4450'.
[  187.461224][  T438] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  187.478423][  T438] usb 10-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  187.506332][  T438] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  187.530765][  T438] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.554655][  T438] usb 10-1: config 0 descriptor??
[  187.683574][T10957] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4458'.
[  187.694008][T10957] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4458'.
[  187.878132][T10991] futex_wake_op: syz.4.4473 tries to shift op by -1; fix this program
[  187.983087][  T438] usb 10-1: string descriptor 0 read error: -71
[  187.990731][   T39] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  187.993402][  T438] usb 10-1: USB disconnect, device number 6
[  188.005621][   T39] hid-generic 0000:0000:0000.0026: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  188.062343][T11013] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4485'.
[  188.071811][T11011] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4484'.
[  188.161255][   T28] audit: type=1400 audit(2000000031.320:1125): avc:  denied  { mount } for  pid=11025 comm="syz.0.4491" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  188.211440][   T28] audit: type=1400 audit(2000000031.370:1126): avc:  denied  { unmount } for  pid=10743 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  188.436315][T11024] loop6: detected capacity change from 0 to 40427
[  188.453094][T11024] F2FS-fs (loop6): invalid crc value
[  188.479670][T11024] F2FS-fs (loop6): Found nat_bits in checkpoint
[  188.585114][T11024] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  188.642593][T11077] futex_wake_op: syz.4.4513 tries to shift op by -1; fix this program
[  188.651256][T11024] syz.6.4490: attempt to access beyond end of device
[  188.651256][T11024] loop6: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  188.681790][ T7346] syz-executor: attempt to access beyond end of device
[  188.681790][ T7346] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  188.788328][T11092] block device autoloading is deprecated and will be removed.
[  188.788340][T10743] block device autoloading is deprecated and will be removed.
[  188.799821][   T28] audit: type=1400 audit(2000000031.940:1127): avc:  denied  { read write } for  pid=10743 comm="syz-executor" name="loop0" dev="devtmpfs" ino=1123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  188.826845][T11092] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  188.867016][   T28] audit: type=1400 audit(2000000031.940:1128): avc:  denied  { open } for  pid=10743 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=1123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  188.891846][   T28] audit: type=1400 audit(2000000031.940:1129): avc:  denied  { ioctl } for  pid=10743 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=1123 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  189.170623][T11098] loop6: detected capacity change from 0 to 40427
[  189.178058][T11098] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  189.186685][T11098] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  189.218383][T11098] F2FS-fs (loop6): Found nat_bits in checkpoint
[  189.315800][T11098] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  189.323602][T11098] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  189.326169][   T28] audit: type=1400 audit(2000000032.490:1130): avc:  denied  { nlmsg_write } for  pid=11134 comm="syz.9.4538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  189.507793][T11152] netem: change failed
[  189.771745][T11179] loop0: detected capacity change from 0 to 8192
[  190.122555][T11159] netlink: 'syz.1.4548': attribute type 11 has an invalid length.
[  190.601750][T11177] loop6: detected capacity change from 0 to 131072
[  190.612266][T11177] F2FS-fs (loop6): Invalid segment/section count (31, 24 x 150994945)
[  190.621071][T11177] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  190.639904][T11177] F2FS-fs (loop6): invalid crc value
[  190.680856][T11177] F2FS-fs (loop6): Found nat_bits in checkpoint
[  190.754973][T11177] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  190.762007][T11177] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  190.862699][   T28] audit: type=1400 audit(2000000034.020:1131): avc:  denied  { bind } for  pid=11256 comm="syz.9.4592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  191.166753][T11284] tipc: Started in network mode
[  191.171751][T11284] tipc: Node identity fff5, cluster identity 4711
[  191.200208][T11284] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  191.251027][   T28] audit: type=1326 audit(2000000034.410:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11289 comm="syz.6.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  191.304046][   T28] audit: type=1326 audit(2000000034.410:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11289 comm="syz.6.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  191.390061][   T28] audit: type=1326 audit(2000000034.410:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11289 comm="syz.6.4591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x7ffc0000
[  191.491173][T11313] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4617'.
[  191.744857][T11352] loop9: detected capacity change from 0 to 2048
[  191.760701][T11352] EXT4-fs: Ignoring removed mblk_io_submit option
[  191.770882][T11352] EXT4-fs (loop9): filesystem too large to mount safely on this system
[  191.991151][T11377] syz.1.4647[11377] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  191.991228][T11377] syz.1.4647[11377] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  192.003955][T11376] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4648'.
[  192.034211][T11377] SELinux:  Context ـ is not valid (left unmapped).
[  192.540696][T11437] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4676'.
[  192.549678][T11437] netlink: 60 bytes leftover after parsing attributes in process `syz.9.4676'.
[  192.586015][ T1431] Bluetooth: hci0: Frame reassembly failed (-84)
[  192.650596][T11447] loop6: detected capacity change from 0 to 512
[  192.657698][T11447] EXT4-fs warning (device loop6): ext4_multi_mount_protect:298: Invalid MMP block in superblock
[  192.883082][T11470] input: syz0 as /devices/virtual/input/input38
[  193.262346][T11499] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4705'.
[  193.309849][  T438] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  193.511075][  T438] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  193.522583][  T438] usb 7-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[  193.532344][  T438] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.541042][  T438] usb 7-1: config 0 descriptor??
[  193.546679][  T438] usb 7-1: Found UVC 0.00 device <unnamed> (046d:08c1)
[  193.554642][  T438] usb 7-1: No valid video chain found.
[  193.747502][   T39] usb 7-1: USB disconnect, device number 10
[  194.043382][T11518] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4712'.
[  194.184053][T11522] loop0: detected capacity change from 0 to 40427
[  194.190939][T11522] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  194.198491][T11522] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  194.207683][T11522] F2FS-fs (loop0): invalid crc value
[  194.214442][T11522] F2FS-fs (loop0): Found nat_bits in checkpoint
[  194.251226][T11522] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  194.258155][T11522] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  194.282903][T11530] loop6: detected capacity change from 0 to 256
[  194.290239][T11530] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  194.330020][   T28] kauditd_printk_skb: 8 callbacks suppressed
[  194.330037][   T28] audit: type=1326 audit(2000000293.478:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.374481][   T28] audit: type=1326 audit(2000000293.478:1144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.398384][   T28] audit: type=1326 audit(2000000293.478:1145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.423102][   T28] audit: type=1326 audit(2000000293.478:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.459977][   T28] audit: type=1326 audit(2000000293.478:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.499298][   T28] audit: type=1326 audit(2000000293.478:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.525382][   T28] audit: type=1326 audit(2000000293.478:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.549339][   T28] audit: type=1326 audit(2000000293.478:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.579433][   T28] audit: type=1326 audit(2000000293.478:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.603711][   T28] audit: type=1326 audit(2000000293.478:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11505 comm="syz.4.4708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab14d8e169 code=0x7fc00000
[  194.627779][ T2223] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  194.630218][ T2078] Bluetooth: hci0: command 0x1003 tx timeout
[  195.041651][T11565] loop6: detected capacity change from 0 to 40427
[  195.066618][T11565] F2FS-fs (loop6): invalid crc value
[  195.105844][T11565] F2FS-fs (loop6): Found nat_bits in checkpoint
[  195.110700][T11607] loop9: detected capacity change from 0 to 2048
[  195.144756][T11607] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  195.159907][T11607] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.190039][T11565] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  195.223762][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  195.235066][T11604] f2fs_ckpt-7:6: attempt to access beyond end of device
[  195.235066][T11604] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  195.385478][T11634] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  195.394988][T11634] FAT-fs (loop3): unable to read boot sector
[  195.503724][T11647] loop6: detected capacity change from 0 to 128
[  195.510374][T11647] FAT-fs (loop6): bogus logical sector size 0
[  195.521994][T11647] FAT-fs (loop6): Can't find a valid FAT filesystem
[  195.835167][T11694] netlink: 'syz.4.4787': attribute type 280 has an invalid length.
[  195.875042][T11700] loop0: detected capacity change from 0 to 512
[  195.881564][T11700] EXT4-fs: Ignoring removed nomblk_io_submit option
[  195.888413][T11700] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  195.911993][T11700] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  195.919732][T11700] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842c01c, mo2=0002]
[  195.940431][T11700] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[  195.950294][T11700] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[  195.958957][T11700] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  195.970141][T11700] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.4790: dx entry: limit 65535 != root limit 120
[  195.990750][T11700] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.4790: Corrupt directory, running e2fsck is recommended
[  196.017693][T11700] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 3: comm syz.0.4790: path /57/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  196.084590][T10743] EXT4-fs (loop0): unmounting filesystem.
[  196.123449][T11714] loop0: detected capacity change from 0 to 2048
[  196.150100][T11714] EXT4-fs: Ignoring removed mblk_io_submit option
[  196.167054][T11714] EXT4-fs (loop0): filesystem too large to mount safely on this system
[  196.395293][T11729] loop6: detected capacity change from 0 to 2048
[  196.410509][T11729] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  196.418951][T11733] netlink: 74 bytes leftover after parsing attributes in process `syz.4.4805'.
[  196.433614][T11729] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  196.446901][T11729] EXT4-fs error (device loop6): ext4_read_inline_dir:1593: inode #12: block 9: comm syz.6.4803: path /352/file1/file0: bad entry in directory: rec_len % 4 != 0 - offset=24, inode=13, rec_len=21, size=80 fake=0
[  196.506690][T11729] EXT4-fs (loop6): Remounting filesystem read-only
[  196.546339][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  196.711685][T11761] overlayfs: failed to clone upperpath
[  196.816847][T11770] netlink: 'syz.0.4822': attribute type 1 has an invalid length.
[  196.833720][T11770] netlink: 'syz.0.4822': attribute type 2 has an invalid length.
[  196.851905][T11770] netlink: 'syz.0.4822': attribute type 1 has an invalid length.
[  196.869274][T11770] netlink: 'syz.0.4822': attribute type 2 has an invalid length.
[  196.918319][T11779] loop0: detected capacity change from 0 to 512
[  196.937710][T11779] EXT4-fs: Ignoring removed oldalloc option
[  196.950166][T11779] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  196.967594][T11755] loop6: detected capacity change from 0 to 40427
[  196.976682][T11779] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  196.977443][T11790] device veth1_to_bond entered promiscuous mode
[  196.985681][T11779] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=b846c01c, mo2=0102]
[  196.996465][T11786] device veth1_to_bond left promiscuous mode
[  197.000503][T11755] F2FS-fs (loop6): Found nat_bits in checkpoint
[  197.011460][T11779] System zones: 0-2, 18-18, 34-34
[  197.023642][T11779] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -117
[  197.042792][T11779] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.4825: bad orphan inode 15
[  197.059858][T11779] ext4_test_bit(bit=14, block=18) = 1
[  197.065097][T11779] is_bad_inode(inode)=0
[  197.070094][T11755] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  197.078867][T11779] NEXT_ORPHAN(inode)=2264924160
[  197.089361][T11779] max_ino=32
[  197.094793][T11779] i_nlink=0
[  197.111771][T11779] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1087: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  197.137617][T11755] F2FS-fs (loop6): access invalid blkaddr:2048
[  197.150464][T11755] CPU: 1 PID: 11755 Comm: syz.6.4815 Not tainted 6.1.129-syzkaller-00014-gbc3d1d352ab6 #0
[  197.160204][T11755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  197.171434][T11755] Call Trace:
[  197.174710][T11755]  <TASK>
[  197.177487][T11755]  dump_stack_lvl+0x151/0x1b7
[  197.181985][T11755]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  197.187285][T11755]  ? f2fs_get_next_page_offset+0x770/0x770
[  197.192929][T11755]  dump_stack+0x15/0x1e
[  197.197007][T11755]  __f2fs_is_valid_blkaddr+0xda6/0x1450
[  197.202482][T11755]  f2fs_is_valid_blkaddr+0x25/0x30
[  197.207431][T11755]  f2fs_map_blocks+0xd10/0x4510
[  197.212119][T11755]  ? f2fs_map_lock+0x260/0x260
[  197.216710][T11755]  ? xa_load+0x1a1/0x210
[  197.220796][T11755]  ? xas_find_conflict+0x8c0/0x8c0
[  197.225737][T11755]  ? folio_unlock+0x5c/0x70
[  197.230072][T11755]  f2fs_mpage_readpages+0xc65/0x20f0
[  197.235196][T11755]  ? post_alloc_hook+0x213/0x220
[  197.239974][T11755]  ? get_page_from_freelist+0x3a98/0x3b10
[  197.245523][T11755]  ? dquot_release_reservation_block+0xa0/0xa0
[  197.251611][T11755]  ? __this_cpu_preempt_check+0x13/0x20
[  197.256987][T11755]  ? memcg_rstat_updated+0x57/0x120
[  197.262026][T11755]  f2fs_readahead+0xfd/0x250
[  197.266448][T11755]  ? blk_start_plug+0x9c/0x130
[  197.271049][T11755]  read_pages+0x1be/0xd40
[  197.275211][T11755]  ? workingset_activation+0x430/0x430
[  197.280515][T11755]  ? folio_add_lru+0x280/0x3f0
[  197.285110][T11755]  ? page_cache_ra_unbounded+0x800/0x800
[  197.290575][T11755]  ? filemap_add_folio+0x18f/0x200
[  197.295521][T11755]  ? __filemap_add_folio+0xf60/0xf60
[  197.300645][T11755]  page_cache_ra_unbounded+0x61f/0x800
[  197.305938][T11755]  ? readahead_gfp_mask+0x190/0x190
[  197.310971][T11755]  ? save_fpregs_to_fpstate+0x18f/0x220
[  197.316353][T11755]  page_cache_ra_order+0x987/0xc40
[  197.321304][T11755]  ? compat_start_thread+0x20/0x20
[  197.326247][T11755]  ? do_page_cache_ra+0x110/0x110
[  197.331109][T11755]  ? finish_task_switch+0x167/0x7b0
[  197.336149][T11755]  ondemand_readahead+0x925/0xef0
[  197.341006][T11755]  ? page_cache_sync_ra+0x450/0x450
[  197.346034][T11755]  ? __futex_queue+0x1c1/0x3c0
[  197.350639][T11755]  ? blk_cgroup_congested+0x132/0x150
[  197.355842][T11755]  page_cache_sync_ra+0x3d6/0x450
[  197.360705][T11755]  f2fs_readdir+0x599/0xc10
[  197.365052][T11755]  ? f2fs_fill_dentries+0xd00/0xd00
[  197.370075][T11755]  ? debug_smp_processor_id+0x17/0x20
[  197.375292][T11755]  ? security_file_permission+0x86/0xb0
[  197.380666][T11755]  iterate_dir+0x265/0x600
[  197.384918][T11755]  ? f2fs_fill_dentries+0xd00/0xd00
[  197.389987][T11755]  __se_sys_getdents64+0x1c1/0x460
[  197.394901][T11755]  ? __x64_sys_getdents64+0x90/0x90
[  197.399948][T11755]  ? filldir+0x670/0x670
[  197.404017][T11755]  ? fpregs_restore_userregs+0x130/0x290
[  197.409483][T11755]  __x64_sys_getdents64+0x7b/0x90
[  197.414339][T11755]  x64_sys_call+0x5ae/0x9a0
[  197.418680][T11755]  do_syscall_64+0x3b/0x80
[  197.422932][T11755]  ? clear_bhb_loop+0x55/0xb0
[  197.427447][T11755]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  197.433266][T11755] RIP: 0033:0x7fb6a758e169
[  197.437514][T11755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.457060][T11755] RSP: 002b:00007fb6a8496038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  197.465291][T11755] RAX: ffffffffffffffda RBX: 00007fb6a77b5fa0 RCX: 00007fb6a758e169
[  197.473101][T11755] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  197.480911][T11755] RBP: 00007fb6a7610a68 R08: 0000000000000000 R09: 0000000000000000
[  197.489066][T11755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.496881][T11755] R13: 0000000000000000 R14: 00007fb6a77b5fa0 R15: 00007ffd26741f18
[  197.504697][T11755]  </TASK>
[  197.520692][T11779] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.4825: bg 0: block 80: padding at end of block bitmap is not set
[  197.544390][T11779] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  197.553456][T11779] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  197.563590][T11755] syz.6.4815: attempt to access beyond end of device
[  197.563590][T11755] loop6: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  197.578694][T11804] syz.6.4815: attempt to access beyond end of device
[  197.578694][T11804] loop6: rw=2049, sector=45096, nr_sectors = 96 limit=40427
[  197.593315][T11779] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.600397][T11779] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.608488][T11755] syz.6.4815: attempt to access beyond end of device
[  197.608488][T11755] loop6: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  197.652285][ T7346] syz-executor: attempt to access beyond end of device
[  197.652285][ T7346] loop6: rw=2049, sector=45192, nr_sectors = 8 limit=40427
[  197.670496][T10743] EXT4-fs (loop0): unmounting filesystem.
[  198.086362][T11859] xt_hashlimit: size too large, truncated to 1048576
[  198.115148][T11861] loop0: detected capacity change from 0 to 1024
[  198.183122][T11861] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  198.239506][T10743] EXT4-fs (loop0): unmounting filesystem.
[  198.347710][T11884] loop0: detected capacity change from 0 to 512
[  198.360427][T11884] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  198.385665][T11884] EXT4-fs (loop0): 1 truncate cleaned up
[  198.399853][T11884] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  198.407047][T11864] loop9: detected capacity change from 0 to 40427
[  198.417033][T11864] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  198.425549][T11864] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  198.442185][T10743] EXT4-fs (loop0): unmounting filesystem.
[  198.449206][T11864] F2FS-fs (loop9): invalid crc value
[  198.460495][  T296] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  198.484142][T11864] F2FS-fs (loop9): Found nat_bits in checkpoint
[  198.535035][T11864] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  198.542196][T11864] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  198.622265][T11905] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4880'.
[  198.649801][  T296] usb 2-1: Using ep0 maxpacket: 8
[  198.656177][  T296] usb 2-1: config index 0 descriptor too short (expected 5924, got 36)
[  198.669631][  T296] usb 2-1: config 250 has an invalid interface number: 228 but max is -1
[  198.687959][  T296] usb 2-1: config 250 has 1 interface, different from the descriptor's value: 0
[  198.697690][  T296] usb 2-1: config 250 has no interface number 0
[  198.705959][  T296] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  198.717692][T11911] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4884'.
[  198.729808][  T296] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  198.741393][  T296] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024
[  198.753260][  T296] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024
[  198.764068][  T296] usb 2-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  198.777807][  T296] usb 2-1: config 250 interface 228 has no altsetting 0
[  198.797924][  T296] usb 2-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  198.808523][  T296] usb 2-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  198.818284][  T296] usb 2-1: Product: syz
[  198.822370][  T296] usb 2-1: SerialNumber: syz
[  198.829012][T11925] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4888'.
[  198.836077][  T296] hub 2-1:250.228: bad descriptor, ignoring hub
[  198.860471][  T296] hub: probe of 2-1:250.228 failed with error -5
[  198.892335][T11934] incfs: Options parsing error. -22
[  198.897924][T11934] incfs: mount failed -22
[  198.925066][T11942] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4896'.
[  198.936626][T11942] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4896'.
[  198.939115][T11943] incfs: Options parsing error. -22
[  198.947630][T11942] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4896'.
[  198.952486][T11943] incfs: mount failed -22
[  199.006437][T11949] loop0: detected capacity change from 0 to 512
[  199.008860][T11953] loop9: detected capacity change from 0 to 512
[  199.023855][T11949] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  199.033559][T11949] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  199.039182][  T296] usblp 2-1:250.228: usblp0: USB Bidirectional printer dev 20 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  199.042158][T11953] EXT4-fs error (device loop9): ext4_xattr_inode_iget:400: comm syz.9.4902: Parent and EA inode have the same ino 15
[  199.065443][T11949] System zones: 0-1, 15-15, 18-18, 34-34
[  199.071588][T11949] EXT4-fs (loop0): orphan cleanup on readonly fs
[  199.078240][T11953] EXT4-fs (loop9): 1 orphan inode deleted
[  199.084315][T11949] EXT4-fs warning (device loop0): ext4_enable_quotas:7017: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  199.099368][T11953] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  199.111941][T11949] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  199.119868][T11953] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.4902: invalid indirect mapped block 234881024 (level 0)
[  199.133961][T11949] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.4900: bg 0: block 40: padding at end of block bitmap is not set
[  199.160188][T11949] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  199.170043][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  199.175952][T11949] EXT4-fs (loop0): 1 truncate cleaned up
[  199.189844][T11949] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  199.210201][T11949] EXT4-fs (loop0): shut down requested (1)
[  199.216202][T11949] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=16
[  199.226623][T11967] loop9: detected capacity change from 0 to 512
[  199.227408][T11949] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=16
[  199.243655][T11949] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=16
[  199.260590][T10743] EXT4-fs (loop0): unmounting filesystem.
[  199.267813][T11971] netlink: 'syz.4.4909': attribute type 34 has an invalid length.
[  199.275747][T11967] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  199.284867][T11967] ext4 filesystem being mounted at /181/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.320543][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  199.359921][  T296] usb 2-1: USB disconnect, device number 20
[  199.368962][  T296] usblp0: removed
[  199.479251][T11975] loop0: detected capacity change from 0 to 40427
[  199.485749][T11993] loop6: detected capacity change from 0 to 1024
[  199.492956][T11975] F2FS-fs (loop0): fault_injection options not supported
[  199.500997][T11993] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  199.511347][T11993] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869)
[  199.520839][T11975] F2FS-fs (loop0): invalid crc value
[  199.527004][T11993] EXT4-fs (loop6): journal inode is deleted
[  199.533701][T11975] F2FS-fs (loop0): Found nat_bits in checkpoint
[  199.570263][T11986] loop9: detected capacity change from 0 to 40427
[  199.579377][T11986] F2FS-fs (loop9): Found nat_bits in checkpoint
[  199.591568][T11975] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  199.634632][   T28] kauditd_printk_skb: 19 callbacks suppressed
[  199.634649][   T28] audit: type=1400 audit(2000000298.788:1171): avc:  denied  { append } for  pid=11974 comm="syz.0.4910" path="/91/file1/file1" dev="loop0" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  199.645789][T11975] F2FS-fs (loop0): Unexpected flush for atomic writes: ino=10, npages=1
[  199.664884][   T28] audit: type=1400 audit(2000000298.798:1172): avc:  denied  { ioctl } for  pid=11974 comm="syz.0.4910" path="/91/file1/file1" dev="loop0" ino=10 ioctlcmd=0xf501 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  199.696197][T11975] syz.0.4910: attempt to access beyond end of device
[  199.696197][T11975] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  199.696520][T11986] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  199.750145][T10743] syz-executor: attempt to access beyond end of device
[  199.750145][T10743] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  199.776970][T11986] F2FS-fs (loop9): access invalid blkaddr:2048
[  199.784902][T11986] CPU: 1 PID: 11986 Comm: syz.9.4915 Not tainted 6.1.129-syzkaller-00014-gbc3d1d352ab6 #0
[  199.794642][T11986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  199.804536][T11986] Call Trace:
[  199.807673][T11986]  <TASK>
[  199.810435][T11986]  dump_stack_lvl+0x151/0x1b7
[  199.814957][T11986]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  199.820242][T11986]  ? f2fs_get_next_page_offset+0x770/0x770
[  199.825895][T11986]  dump_stack+0x15/0x1e
[  199.829888][T11986]  __f2fs_is_valid_blkaddr+0xda6/0x1450
[  199.835264][T11986]  f2fs_is_valid_blkaddr+0x25/0x30
[  199.840204][T11986]  f2fs_map_blocks+0xd10/0x4510
[  199.844900][T11986]  ? f2fs_map_lock+0x260/0x260
[  199.849492][T11986]  ? xa_load+0x1a1/0x210
[  199.853573][T11986]  ? xas_find_conflict+0x8c0/0x8c0
[  199.858517][T11986]  ? folio_unlock+0x5c/0x70
[  199.862890][T11986]  f2fs_mpage_readpages+0xc65/0x20f0
[  199.867982][T11986]  ? dquot_release_reservation_block+0xa0/0xa0
[  199.873963][T11986]  ? lru_gen_add_folio+0x611/0x710
[  199.878911][T11986]  ? lru_cache_disable+0xc0/0xc0
[  199.883689][T11986]  f2fs_readahead+0xfd/0x250
[  199.888115][T11986]  ? blk_start_plug+0x9c/0x130
[  199.892715][T11986]  read_pages+0x1be/0xd40
[  199.896962][T11986]  ? workingset_activation+0x430/0x430
[  199.902259][T11986]  ? folio_add_lru+0x280/0x3f0
[  199.906948][T11986]  ? page_cache_ra_unbounded+0x800/0x800
[  199.912416][T11986]  ? filemap_add_folio+0x18f/0x200
[  199.917398][T11986]  ? __filemap_add_folio+0xf60/0xf60
[  199.922568][T11986]  ? __update_load_avg_cfs_rq+0xb1/0x2f0
[  199.928039][T11986]  page_cache_ra_unbounded+0x61f/0x800
[  199.933337][T11986]  ? readahead_gfp_mask+0x190/0x190
[  199.938370][T11986]  page_cache_ra_order+0x987/0xc40
[  199.943313][T11986]  ? compat_start_thread+0x20/0x20
[  199.948265][T11986]  ? __this_cpu_preempt_check+0x13/0x20
[  199.953649][T11986]  ? probe_sched_switch+0x60/0x80
[  199.958514][T11986]  ? do_page_cache_ra+0x110/0x110
[  199.963358][T11986]  ? finish_task_switch+0x167/0x7b0
[  199.968393][T11986]  ondemand_readahead+0x925/0xef0
[  199.973260][T11986]  ? page_cache_sync_ra+0x450/0x450
[  199.978287][T11986]  ? __futex_queue+0x1c1/0x3c0
[  199.982892][T11986]  ? blk_cgroup_congested+0x132/0x150
[  199.988219][T11986]  page_cache_sync_ra+0x3d6/0x450
[  199.993525][T11986]  f2fs_readdir+0x599/0xc10
[  199.997869][T11986]  ? f2fs_fill_dentries+0xd00/0xd00
[  200.002896][T11986]  ? debug_smp_processor_id+0x17/0x20
[  200.008109][T11986]  ? security_file_permission+0x86/0xb0
[  200.013486][T11986]  iterate_dir+0x265/0x600
[  200.017768][T11986]  ? f2fs_fill_dentries+0xd00/0xd00
[  200.022780][T11986]  __se_sys_getdents64+0x1c1/0x460
[  200.027724][T11986]  ? __x64_sys_getdents64+0x90/0x90
[  200.032753][T11986]  ? filldir+0x670/0x670
[  200.036840][T11986]  ? fpregs_restore_userregs+0x130/0x290
[  200.042300][T11986]  __x64_sys_getdents64+0x7b/0x90
[  200.047160][T11986]  x64_sys_call+0x5ae/0x9a0
[  200.051498][T11986]  do_syscall_64+0x3b/0x80
[  200.055753][T11986]  ? clear_bhb_loop+0x55/0xb0
[  200.060273][T11986]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  200.065991][T11986] RIP: 0033:0x7f2c44f8e169
[  200.070334][T11986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.089784][T11986] RSP: 002b:00007f2c45db6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  200.098017][T11986] RAX: ffffffffffffffda RBX: 00007f2c451b5fa0 RCX: 00007f2c44f8e169
[  200.105834][T11986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  200.113664][T11986] RBP: 00007f2c45010a68 R08: 0000000000000000 R09: 0000000000000000
[  200.121453][T11986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  200.129393][T11986] R13: 0000000000000000 R14: 00007f2c451b5fa0 R15: 00007ffca3d20258
[  200.137183][T11986]  </TASK>
[  200.141191][T12011] syz.9.4915: attempt to access beyond end of device
[  200.141191][T12011] loop9: rw=2049, sector=45096, nr_sectors = 96 limit=40427
[  200.199852][T11986] syz.9.4915: attempt to access beyond end of device
[  200.199852][T11986] loop9: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  200.285408][T11986] syz.9.4915: attempt to access beyond end of device
[  200.285408][T11986] loop9: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  200.354585][ T9741] syz-executor: attempt to access beyond end of device
[  200.354585][ T9741] loop9: rw=2049, sector=45192, nr_sectors = 8 limit=40427
[  200.536417][T12045] tipc: Started in network mode
[  200.541698][T12045] tipc: Node identity ac14140f, cluster identity 4711
[  200.550911][T12047] netlink: 104 bytes leftover after parsing attributes in process `syz.1.4939'.
[  200.562086][T12045] tipc: Enabled bearer <udp:syz0>, priority 10
[  200.581920][T12030] loop0: detected capacity change from 0 to 40427
[  200.597656][T12030] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  200.614048][T12030] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  200.636535][T12030] F2FS-fs (loop0): invalid crc value
[  200.662079][T12030] F2FS-fs (loop0): Found nat_bits in checkpoint
[  200.738761][T12030] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  200.748580][T12030] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  200.807161][T12078] loop9: detected capacity change from 0 to 2048
[  200.815768][   T10] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  200.824944][   T10] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  200.850438][T12078] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  200.869936][  T438] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  200.890250][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  201.025961][T12101] 9pnet: p9_errstr2errno: server reported unknown error ‌@يخ‚ح(للي«Qے0x0000000000000004
[  201.060929][  T438] usb 7-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  201.074640][  T438] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.090729][  T438] usb 7-1: config 0 descriptor??
[  201.110488][T12112] Non-string source
[  201.125831][   T28] audit: type=1400 audit(2000000300.278:1173): avc:  denied  { map } for  pid=12115 comm="syz.9.4966" path="socket:[65917]" dev="sockfs" ino=65917 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  201.171785][   T28] audit: type=1400 audit(2000000300.298:1174): avc:  denied  { accept } for  pid=12115 comm="syz.9.4966" path="socket:[65917]" dev="sockfs" ino=65917 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  201.503835][  T438] hid-generic 0003:04F3:0755.0027: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.6-1/input0
[  201.660328][  T438] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  201.679871][  T387] tipc: Node number set to 2886997007
[  201.707803][  T387] usb 7-1: USB disconnect, device number 11
[  201.851231][  T438] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  201.862370][  T438] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  201.872455][  T438] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  201.881411][  T438] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.890071][  T438] usb 10-1: config 0 descriptor??
[  202.172528][   T28] audit: type=1400 audit(2000000301.328:1175): avc:  denied  { mounton } for  pid=12191 comm="syz.1.5000" path="/1085/file0" dev="tmpfs" ino=5689 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  202.298057][  T438] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  202.304715][  T438] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  202.318233][  T438] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  202.325034][  T438] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  202.332085][  T438] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  202.338706][  T438] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  202.345459][  T438] pyra 0003:1E7D:2CF6.0028: unknown main item tag 0x0
[  202.358606][  T438] pyra 0003:1E7D:2CF6.0028: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.9-1/input0
[  202.566064][T12228] SELinux: failed to load policy
[  202.655021][T12236] loop6: detected capacity change from 0 to 512
[  202.664219][T12236] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  202.675950][   T28] audit: type=1400 audit(2000000301.838:1176): avc:  denied  { append } for  pid=12235 comm="syz.6.5021" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  202.698875][   T28] audit: type=1400 audit(2000000301.838:1177): avc:  denied  { open } for  pid=12235 comm="syz.6.5021" path="/403/file0/file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  202.723268][   T28] audit: type=1400 audit(2000000301.838:1178): avc:  denied  { read } for  pid=12235 comm="syz.6.5021" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  202.723450][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  202.902001][  T438] pyra 0003:1E7D:2CF6.0028: couldn't init struct pyra_device
[  202.909415][  T438] pyra 0003:1E7D:2CF6.0028: couldn't install mouse
[  202.919855][  T438] pyra: probe of 0003:1E7D:2CF6.0028 failed with error -71
[  202.927818][  T438] usb 10-1: USB disconnect, device number 7
[  203.067869][T12244] loop6: detected capacity change from 0 to 512
[  203.076076][T12244] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  203.084537][   T28] audit: type=1400 audit(2000000302.238:1179): avc:  denied  { bind } for  pid=12242 comm="syz.1.5034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  203.130661][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  203.168265][T12261] loop6: detected capacity change from 0 to 16
[  203.175496][T12261] erofs: (device loop6): mounted with root inode @ nid 36.
[  203.380371][T12270] netlink: 'syz.6.5035': attribute type 4 has an invalid length.
[  203.427180][T12276] tmpfs: Unknown parameter 'h'
[  203.474887][T12282] loop9: detected capacity change from 0 to 128
[  203.552232][   T28] audit: type=1400 audit(2000000302.708:1180): avc:  denied  { shutdown } for  pid=12290 comm="syz.9.5045" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  204.042768][T12347] loop9: detected capacity change from 0 to 128
[  204.050959][T12347] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  204.059511][T12347] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.078749][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  204.122083][T12358] loop9: detected capacity change from 0 to 256
[  204.128500][T12358] exfat: Deprecated parameter 'namecase'
[  204.134080][T12358] exfat: Deprecated parameter 'utf8'
[  204.139273][T12358] exfat: Deprecated parameter 'namecase'
[  204.145206][T12358] exfat: Deprecated parameter 'utf8'
[  204.152977][T12358] exFAT-fs (loop9): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d)
[  204.187455][T12361] loop9: detected capacity change from 0 to 128
[  204.195507][T12361] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  204.204109][T12361] ext4 filesystem being mounted at /227/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.228459][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  204.426370][T12382] loop6: detected capacity change from 0 to 256
[  204.442791][T12384] SELinux:  Context system_u:object_r:textrel_shlib_t:s0 is not valid (left unmapped).
[  204.478763][  T379] Bluetooth: hci0: Frame reassembly failed (-84)
[  204.494587][T12387] netlink: 10 bytes leftover after parsing attributes in process `syz.4.5089'.
[  204.504129][T12387] netlink: 10 bytes leftover after parsing attributes in process `syz.4.5089'.
[  204.550132][T12396] syz.6.5093[12396] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.550191][T12396] syz.6.5093[12396] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.730415][T12422] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5105'.
[  204.908862][T12435] netlink: 'syz.4.5111': attribute type 4 has an invalid length.
[  204.921309][T12435] netlink: 'syz.4.5111': attribute type 4 has an invalid length.
[  205.275996][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  205.276014][   T28] audit: type=1400 audit(2000000304.428:1184): avc:  denied  { create } for  pid=12454 comm="syz.1.5120" name="file7" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  205.475660][T12478] input: syz0 as /devices/virtual/input/input39
[  205.555375][   T28] audit: type=1400 audit(2000000304.708:1185): avc:  denied  { setopt } for  pid=12485 comm="syz.6.5134" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  205.728262][T12505] loop6: detected capacity change from 0 to 2048
[  205.765671][T12505] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  205.788451][T12505] EXT4-fs (loop6): shut down requested (2)
[  205.824508][ T7346] EXT4-fs (loop6): unmounting filesystem.
[  206.099848][  T296] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  206.289811][  T296] usb 2-1: Using ep0 maxpacket: 16
[  206.296010][  T296] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  206.304343][  T296] usb 2-1: config 0 has no interface number 0
[  206.310510][  T296] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  206.320432][  T296] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  206.330431][  T296] usb 2-1: config 0 interface 41 has no altsetting 0
[  206.338536][  T296] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  206.347764][  T296] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.355827][  T296] usb 2-1: Product: syz
[  206.360016][  T296] usb 2-1: Manufacturer: syz
[  206.364482][  T296] usb 2-1: SerialNumber: syz
[  206.369611][  T296] usb 2-1: config 0 descriptor??
[  206.376770][T12514] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  206.384065][T12514] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  206.529840][ T2078] Bluetooth: hci0: command 0x1003 tx timeout
[  206.535734][ T2223] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  206.542066][T12388] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  206.571625][T12532] netlink: 'syz.9.5152': attribute type 4 has an invalid length.
[  206.593689][T12514] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  206.601083][T12514] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  206.618034][T12532] netlink: 'syz.9.5152': attribute type 4 has an invalid length.
[  206.671857][T12540] loop9: detected capacity change from 0 to 1024
[  206.699721][T12540] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  206.718554][T12540] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.747211][T12540] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  206.767954][T12540] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 5 with error 28
[  206.780379][T12540] EXT4-fs (loop9): This should not happen!! Data will be lost
[  206.780379][T12540] 
[  206.790337][T12540] EXT4-fs (loop9): Total free blocks count 0
[  206.802131][T12540] EXT4-fs (loop9): Free/Dirty block details
[  206.810192][T12540] EXT4-fs (loop9): free_blocks=4293918736
[  206.819128][T12540] EXT4-fs (loop9): dirty_blocks=16
[  206.825949][T12540] EXT4-fs (loop9): Block reservation details
[  206.835143][T12540] EXT4-fs (loop9): i_reserved_data_blocks=1
[  206.855250][ T9741] EXT4-fs (loop9): unmounting filesystem.
[  207.032596][  T296] Error reading MAC address
[  207.037455][T12514] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  207.044837][T12514] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  207.082370][T12576] loop6: detected capacity change from 0 to 256
[  207.088993][T12576] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  207.100150][T12576] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  207.119651][T12576] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  207.121323][T12564] loop9: detected capacity change from 0 to 40427
[  207.152989][T12564] F2FS-fs (loop9): invalid crc value
[  207.178262][T12586] device macsec2 entered promiscuous mode
[  207.187129][T12564] F2FS-fs (loop9): Found nat_bits in checkpoint
[  207.218932][T12593] loop0: detected capacity change from 0 to 128
[  207.247883][T12564] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  207.256440][  T296] sr9700 2-1:0.41 (unnamed net_device) (uninitialized): Error reading MAC address
[  207.266878][  T296] usb 2-1: USB disconnect, device number 21
[  207.290336][T12600] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5182'.
[  207.299973][   T28] audit: type=1400 audit(2000000306.448:1186): avc:  denied  { lock } for  pid=12562 comm="syz.9.5168" path="/236/file1/file1" dev="loop9" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  207.323760][   T28] audit: type=1400 audit(2000000306.488:1187): avc:  denied  { link } for  pid=12562 comm="syz.9.5168" name="file1" dev="loop9" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  207.347772][ T9741] syz-executor: attempt to access beyond end of device
[  207.347772][ T9741] loop9: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  207.567674][   T28] audit: type=1326 audit(2000000306.718:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.6.5199" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6a758e169 code=0x0
[  207.601185][T12638] ==================================================================
[  207.609073][T12638] BUG: KASAN: use-after-free in enqueue_timer+0xa6/0x480
[  207.616061][T12638] Write of size 8 at addr ffff88811330ca00 by task syz.9.5200/12638
[  207.623819][T12638] 
[  207.625994][T12638] CPU: 1 PID: 12638 Comm: syz.9.5200 Not tainted 6.1.129-syzkaller-00014-gbc3d1d352ab6 #0
[  207.635849][T12638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  207.645750][T12638] Call Trace:
[  207.648862][T12638]  <TASK>
[  207.651645][T12638]  dump_stack_lvl+0x151/0x1b7
[  207.656155][T12638]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  207.661455][T12638]  ? _printk+0xd1/0x111
[  207.665448][T12638]  ? __virt_addr_valid+0x242/0x2f0
[  207.670512][T12638]  print_report+0x158/0x4e0
[  207.674852][T12638]  ? __virt_addr_valid+0x242/0x2f0
[  207.679823][T12638]  ? kasan_complete_mode_report_info+0x90/0x1b0
[  207.685874][T12638]  ? enqueue_timer+0xa6/0x480
[  207.690383][T12638]  kasan_report+0x13c/0x170
[  207.694725][T12638]  ? enqueue_timer+0xa6/0x480
[  207.699246][T12638]  __asan_report_store8_noabort+0x17/0x20
[  207.704921][T12638]  enqueue_timer+0xa6/0x480
[  207.709260][T12638]  __mod_timer+0x8d3/0xcf0
[  207.713512][T12638]  ? mod_timer_pending+0x30/0x30
[  207.718290][T12638]  ? __tcp_send_ack+0x6c0/0x6c0
[  207.722973][T12638]  ? __build_skb_around+0x23f/0x3d0
[  207.728014][T12638]  mod_timer+0x1f/0x30
[  207.731962][T12638]  sk_reset_timer+0x22/0xb0
[  207.736266][T12638]  tcp_connect+0x30e9/0x5210
[  207.740734][T12638]  ? bpf_skops_write_hdr_opt+0x590/0x590
[  207.746147][T12638]  ? __inet_hash_connect+0x18cd/0x1f10
[  207.751437][T12638]  ? __siphash_unaligned+0x24f/0x3c0
[  207.756580][T12638]  ? memset+0x35/0x40
[  207.760385][T12638]  ? tcp_fastopen_active_should_disable+0x240/0x240
[  207.766806][T12638]  ? inet6_hash_connect+0x90/0xd0
[  207.771666][T12638]  tcp_v6_connect+0x1251/0x1b10
[  207.776352][T12638]  ? tcp_v6_pre_connect+0x60/0x60
[  207.781209][T12638]  ? socket_type_to_security_class+0x3a0/0x3a0
[  207.787198][T12638]  ? __kasan_check_write+0x14/0x20
[  207.792147][T12638]  ? _raw_spin_lock_bh+0xa4/0x1b0
[  207.797115][T12638]  __inet_stream_connect+0x254/0xe50
[  207.802232][T12638]  ? __local_bh_enable_ip+0x58/0x80
[  207.807264][T12638]  ? lock_sock_nested+0x261/0x300
[  207.812128][T12638]  ? inet_dgram_connect+0x410/0x410
[  207.817169][T12638]  ? check_stack_object+0x114/0x130
[  207.822198][T12638]  inet_stream_connect+0x63/0xa0
[  207.827070][T12638]  ? __inet_stream_connect+0xe50/0xe50
[  207.832347][T12638]  __sys_connect+0x2c9/0x300
[  207.836778][T12638]  ? __sys_connect_file+0x170/0x170
[  207.841813][T12638]  ? fpregs_restore_userregs+0x130/0x290
[  207.847279][T12638]  __x64_sys_connect+0x7a/0x90
[  207.851877][T12638]  x64_sys_call+0x14e/0x9a0
[  207.856217][T12638]  do_syscall_64+0x3b/0x80
[  207.860470][T12638]  ? clear_bhb_loop+0x55/0xb0
[  207.864981][T12638]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  207.870709][T12638] RIP: 0033:0x7f2c44f8e169
[  207.874964][T12638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.894411][T12638] RSP: 002b:00007f2c45db6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  207.902648][T12638] RAX: ffffffffffffffda RBX: 00007f2c451b5fa0 RCX: 00007f2c44f8e169
[  207.910462][T12638] RDX: 000000000000001c RSI: 0000200000000100 RDI: 0000000000000003
[  207.918274][T12638] RBP: 00007f2c45010a68 R08: 0000000000000000 R09: 0000000000000000
[  207.926083][T12638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.933895][T12638] R13: 0000000000000000 R14: 00007f2c451b5fa0 R15: 00007ffca3d20258
[  207.941711][T12638]  </TASK>
[  207.944579][T12638] 
[  207.946740][T12638] Allocated by task 12388:
[  207.951006][T12638]  kasan_set_track+0x4b/0x70
[  207.955421][T12638]  kasan_save_alloc_info+0x1f/0x30
[  207.960368][T12638]  __kasan_kmalloc+0x9c/0xb0
[  207.964801][T12638]  __kmalloc+0xb4/0x1e0
[  207.968784][T12638]  hci_alloc_dev_priv+0x27/0x1c00
[  207.973644][T12638]  hci_uart_tty_ioctl+0x401/0xa70
[  207.978504][T12638]  tty_ioctl+0x903/0xc50
[  207.982583][T12638]  __se_sys_ioctl+0x114/0x190
[  207.987105][T12638]  __x64_sys_ioctl+0x7b/0x90
[  207.991526][T12638]  x64_sys_call+0x98/0x9a0
[  207.995779][T12638]  do_syscall_64+0x3b/0x80
[  208.000030][T12638]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.005761][T12638] 
[  208.007928][T12638] Freed by task 12388:
[  208.011836][T12638]  kasan_set_track+0x4b/0x70
[  208.016259][T12638]  kasan_save_free_info+0x2b/0x40
[  208.021128][T12638]  ____kasan_slab_free+0x131/0x180
[  208.026095][T12638]  __kasan_slab_free+0x11/0x20
[  208.030755][T12638]  __kmem_cache_free+0x21d/0x410
[  208.035527][T12638]  kfree+0x7a/0xf0
[  208.039085][T12638]  hci_release_dev+0x14d3/0x1640
[  208.043859][T12638]  bt_host_release+0x83/0xa0
[  208.048288][T12638]  device_release+0x95/0x1c0
[  208.052714][T12638]  kobject_put+0x178/0x260
[  208.056967][T12638]  put_device+0x1f/0x30
[  208.060958][T12638]  hci_dev_cmd+0x2be/0x9b0
[  208.065212][T12638]  hci_sock_ioctl+0x415/0x7f0
[  208.069725][T12638]  sock_do_ioctl+0x152/0x3b0
[  208.074149][T12638]  sock_ioctl+0x455/0x740
[  208.078319][T12638]  __se_sys_ioctl+0x114/0x190
[  208.082831][T12638]  __x64_sys_ioctl+0x7b/0x90
[  208.087256][T12638]  x64_sys_call+0x98/0x9a0
[  208.091508][T12638]  do_syscall_64+0x3b/0x80
[  208.095766][T12638]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.101492][T12638] 
[  208.103659][T12638] Last potentially related work creation:
[  208.109332][T12638]  kasan_save_stack+0x3b/0x60
[  208.113843][T12638]  __kasan_record_aux_stack+0xb4/0xc0
[  208.119045][T12638]  kasan_record_aux_stack_noalloc+0xb/0x10
[  208.124689][T12638]  insert_work+0x56/0x310
[  208.128859][T12638]  __queue_work+0x9b6/0xd70
[  208.133196][T12638]  queue_work_on+0x105/0x170
[  208.137621][T12638]  __hci_cmd_sync_sk+0xc2a/0xf70
[  208.142571][T12638]  hci_cmd_sync_status+0x52/0x130
[  208.147443][T12638]  hci_dev_cmd+0x771/0x9b0
[  208.151687][T12638]  hci_sock_ioctl+0x415/0x7f0
[  208.156199][T12638]  sock_do_ioctl+0x152/0x3b0
[  208.160625][T12638]  sock_ioctl+0x455/0x740
[  208.164791][T12638]  __se_sys_ioctl+0x114/0x190
[  208.169303][T12638]  __x64_sys_ioctl+0x7b/0x90
[  208.173731][T12638]  x64_sys_call+0x98/0x9a0
[  208.177980][T12638]  do_syscall_64+0x3b/0x80
[  208.182233][T12638]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.187969][T12638] 
[  208.190149][T12638] Second to last potentially related work creation:
[  208.196644][T12638]  kasan_save_stack+0x3b/0x60
[  208.201156][T12638]  __kasan_record_aux_stack+0xb4/0xc0
[  208.206370][T12638]  kasan_record_aux_stack_noalloc+0xb/0x10
[  208.212012][T12638]  insert_work+0x56/0x310
[  208.216171][T12638]  __queue_work+0x9b6/0xd70
[  208.220512][T12638]  queue_work_on+0x105/0x170
[  208.224937][T12638]  hci_cmd_timeout+0x199/0x200
[  208.229541][T12638]  process_one_work+0x73d/0xcb0
[  208.234225][T12638]  worker_thread+0xa60/0x1260
[  208.238737][T12638]  kthread+0x26d/0x300
[  208.242643][T12638]  ret_from_fork+0x1f/0x30
[  208.246895][T12638] 
[  208.249063][T12638] The buggy address belongs to the object at ffff88811330c000
[  208.249063][T12638]  which belongs to the cache kmalloc-8k of size 8192
[  208.262955][T12638] The buggy address is located 2560 bytes inside of
[  208.262955][T12638]  8192-byte region [ffff88811330c000, ffff88811330e000)
[  208.276232][T12638] 
[  208.278402][T12638] The buggy address belongs to the physical page:
[  208.284654][T12638] page:ffffea00044cc200 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888113308000 pfn:0x113308
[  208.296048][T12638] head:ffffea00044cc200 order:3 compound_mapcount:0 compound_pincount:0
[  208.304179][T12638] flags: 0x4000000000010200(slab|head|zone=1)
[  208.310086][T12638] raw: 4000000000010200 0000000000000000 dead000000000001 ffff888100043500
[  208.318505][T12638] raw: ffff888113308000 0000000080020001 00000001ffffffff 0000000000000000
[  208.326920][T12638] page dumped because: kasan: bad access detected
[  208.333175][T12638] page_owner tracks the page as allocated
[  208.338728][T12638] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 2389, tgid 2389 (syz-executor), ts 57327881659, free_ts 57316888588
[  208.361299][T12638]  post_alloc_hook+0x213/0x220
[  208.365895][T12638]  prep_new_page+0x1b/0x110
[  208.370227][T12638]  get_page_from_freelist+0x3a98/0x3b10
[  208.375609][T12638]  __alloc_pages+0x234/0x610
[  208.380036][T12638]  alloc_slab_page+0x6c/0xf0
[  208.384480][T12638]  new_slab+0x90/0x3e0
[  208.388377][T12638]  ___slab_alloc+0x6f9/0xb80
[  208.392800][T12638]  __slab_alloc+0x5d/0xa0
[  208.397220][T12638]  __kmem_cache_alloc_node+0x207/0x2a0
[  208.402516][T12638]  __kmalloc_node+0xa3/0x1e0
[  208.406941][T12638]  kvmalloc_node+0x221/0x640
[  208.411376][T12638]  pfifo_fast_init+0x3aa/0x7a0
[  208.415968][T12638]  qdisc_create_dflt+0x144/0x3e0
[  208.420742][T12638]  dev_activate+0x2fd/0x1130
[  208.425167][T12638]  __dev_open+0x3c7/0x4e0
[  208.429334][T12638]  __dev_change_flags+0x1db/0x6e0
[  208.434195][T12638] page last free stack trace:
[  208.438709][T12638]  free_unref_page_prepare+0x9f1/0xa00
[  208.444003][T12638]  free_unref_page+0xb2/0x5c0
[  208.448512][T12638]  __free_pages+0x61/0xf0
[  208.452680][T12638]  __free_slab+0xce/0x1a0
[  208.456845][T12638]  __unfreeze_partials+0x165/0x1a0
[  208.461791][T12638]  put_cpu_partial+0xa9/0x100
[  208.466305][T12638]  __slab_free+0x1c8/0x280
[  208.470558][T12638]  ___cache_free+0xc6/0xd0
[  208.474812][T12638]  qlist_free_all+0xc5/0x140
[  208.479239][T12638]  kasan_quarantine_reduce+0x15a/0x180
[  208.484530][T12638]  __kasan_slab_alloc+0x24/0x80
[  208.489219][T12638]  slab_post_alloc_hook+0x53/0x2c0
[  208.494164][T12638]  kmem_cache_alloc_node+0x188/0x330
[  208.499287][T12638]  __alloc_skb+0xcc/0x2d0
[  208.503451][T12638]  alloc_skb_with_frags+0xa6/0x680
[  208.508400][T12638]  sock_alloc_send_pskb+0x915/0xa50
[  208.513434][T12638] 
[  208.515601][T12638] Memory state around the buggy address:
[  208.521074][T12638]  ffff88811330c900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  208.528973][T12638]  ffff88811330c980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  208.536871][T12638] >ffff88811330ca00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  208.544767][T12638]                    ^
[  208.548678][T12638]  ffff88811330ca80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  208.556573][T12638]  ffff88811330cb00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  208.564466][T12638] ==================================================================
[  208.572368][T12638] Disabling lock debugging due to kernel taint
[  208.609825][    C1] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  208.621380][    C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  208.629750][    C1] CPU: 1 PID: 12639 Comm: syz.9.5200 Tainted: G    B              6.1.129-syzkaller-00014-gbc3d1d352ab6 #0
[  208.640916][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  208.650810][    C1] RIP: 0010:__queue_work+0x4f1/0xd70
[  208.656132][    C1] Code: 39 03 0f 84 40 01 00 00 e8 6c 56 2a 00 4c 89 e7 e8 34 46 d7 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 90 04 72 00 49 8b 3e e8 e8 3e d7
[  208.675570][    C1] RSP: 0018:ffffc900001b0c78 EFLAGS: 00010046
[  208.681568][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888117bc5100
[  208.689370][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  208.697180][    C1] RBP: ffffc900001b0d00 R08: ffffffff814ae03b R09: 0000000000000007
[  208.704992][    C1] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff88811330c9c8
[  208.712800][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88811330c9e0
[  208.720610][    C1] FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[  208.729378][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.735799][    C1] CR2: 00007f2f1f380178 CR3: 000000000700f000 CR4: 00000000003506a0
[  208.743615][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  208.751419][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  208.759232][    C1] Call Trace:
[  208.762356][    C1]  <IRQ>
[  208.765056][    C1]  ? __die_body+0x62/0xb0
[  208.769212][    C1]  ? die_addr+0x9f/0xd0
[  208.773210][    C1]  ? exc_general_protection+0x317/0x4c0
[  208.778593][    C1]  ? asm_exc_general_protection+0x27/0x30
[  208.784144][    C1]  ? __queue_work+0x28b/0xd70
[  208.788658][    C1]  ? __queue_work+0x4f1/0xd70
[  208.793171][    C1]  ? __queue_work+0x29c/0xd70
[  208.797683][    C1]  delayed_work_timer_fn+0x61/0x80
[  208.802630][    C1]  ? queue_work_node+0x1d0/0x1d0
[  208.807403][    C1]  call_timer_fn+0x3b/0x2d0
[  208.811744][    C1]  ? queue_work_node+0x1d0/0x1d0
[  208.816515][    C1]  __run_timers+0x756/0xa10
[  208.820859][    C1]  ? calc_index+0x270/0x270
[  208.825197][    C1]  ? sched_clock+0x9/0x10
[  208.829359][    C1]  ? sched_clock_cpu+0x71/0x2b0
[  208.834048][    C1]  run_timer_softirq+0x69/0xf0
[  208.838650][    C1]  handle_softirqs+0x1db/0x650
[  208.843248][    C1]  ? irqtime_account_irq+0xdc/0x260
[  208.848289][    C1]  __irq_exit_rcu+0x52/0xf0
[  208.852626][    C1]  irq_exit_rcu+0x9/0x10
[  208.856701][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  208.862171][    C1]  </IRQ>
[  208.864945][    C1]  <TASK>
[  208.867722][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  208.873541][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x5c/0x60
[  208.879527][    C1] Code: 48 0b 00 00 83 fa 02 75 21 48 8b 91 50 0b 00 00 48 8b 32 48 8d 7e 01 8b 89 4c 0b 00 00 48 39 cf 73 08 48 89 3a 48 89 44 f2 08 <5d> c3 66 90 55 48 89 e5 4c 8b 45 08 65 48 8b 15 60 34 8d 7e 65 8b
[  208.898969][    C1] RSP: 0018:ffffc900019ef290 EFLAGS: 00000293
[  208.904883][    C1] RAX: ffffffff81b0130c RBX: 0000000000000000 RCX: ffff888117bc5100
[  208.912684][    C1] RDX: 0000000000000000 RSI: 00007f2c43e28000 RDI: ffff88812c8fc210
[  208.920502][    C1] RBP: ffffc900019ef290 R08: ffffffff81b05aad R09: ffffed1022f78a21
[  208.928304][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 8000000114b84007
[  208.936119][    C1] R13: 8000000114b84007 R14: 00007f2c43e28000 R15: ffff88812c8fc210
[  208.943931][    C1]  ? unmap_page_range+0xc1d/0x2620
[  208.948875][    C1]  ? vm_normal_page+0x1c/0x1f0
[  208.953476][    C1]  vm_normal_page+0x1c/0x1f0
[  208.957906][    C1]  unmap_page_range+0xc3e/0x2620
[  208.962685][    C1]  ? kernel_text_address+0xa9/0xe0
[  208.967625][    C1]  ? copy_page_range+0x2ed0/0x2ed0
[  208.972571][    C1]  ? mas_next_slot+0xac5/0xb00
[  208.977172][    C1]  ? uprobe_munmap+0x18d/0x450
[  208.981769][    C1]  unmap_vmas+0x4e4/0x660
[  208.985940][    C1]  ? unmap_page_range+0x2620/0x2620
[  208.990974][    C1]  ? mas_next_slot+0xac5/0xb00
[  208.995572][    C1]  ? folio_add_lru_vma+0x80/0x80
[  209.000346][    C1]  ? __kasan_check_write+0x14/0x20
[  209.005290][    C1]  ? tlb_gather_mmu_fullmm+0x165/0x210
[  209.010586][    C1]  exit_mmap+0x2e5/0xbb0
[  209.014665][    C1]  ? vm_brk+0x30/0x30
[  209.018496][    C1]  ? kiocb_set_cancel_fn+0x230/0x230
[  209.023606][    C1]  ? uprobe_clear_state+0x2cd/0x320
[  209.028653][    C1]  __mmput+0x95/0x310
[  209.032459][    C1]  mmput+0x56/0x170
[  209.036103][    C1]  do_exit+0xb24/0x2b80
[  209.040096][    C1]  ? put_task_struct+0x80/0x80
[  209.044697][    C1]  ? plist_check_list+0x254/0x270
[  209.049552][    C1]  ? __kasan_check_write+0x14/0x20
[  209.054505][    C1]  ? __kasan_check_write+0x14/0x20
[  209.059448][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  209.064401][    C1]  do_group_exit+0x21a/0x2d0
[  209.068822][    C1]  ? __kasan_check_write+0x14/0x20
[  209.073770][    C1]  get_signal+0x169d/0x1820
[  209.078113][    C1]  ? ptrace_notify+0x350/0x350
[  209.082711][    C1]  arch_do_signal_or_restart+0xb0/0x12e0
[  209.088177][    C1]  ? do_futex+0x55a/0x9a0
[  209.092344][    C1]  ? __ia32_sys_get_robust_list+0x90/0x90
[  209.098035][    C1]  ? get_sigframe_size+0x10/0x10
[  209.102800][    C1]  ? __se_sys_futex+0x35e/0x3c0
[  209.107491][    C1]  exit_to_user_mode_loop+0x74/0xa0
[  209.112517][    C1]  exit_to_user_mode_prepare+0x5a/0xa0
[  209.117815][    C1]  syscall_exit_to_user_mode+0x26/0x130
[  209.123200][    C1]  do_syscall_64+0x47/0x80
[  209.127446][    C1]  ? clear_bhb_loop+0x55/0xb0
[  209.131960][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  209.137686][    C1] RIP: 0033:0x7f2c44f8e169
[  209.141949][    C1] Code: Unable to access opcode bytes at 0x7f2c44f8e13f.
[  209.148803][    C1] RSP: 002b:00007f2c45d950e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  209.157048][    C1] RAX: fffffffffffffe00 RBX: 00007f2c451b6088 RCX: 00007f2c44f8e169
[  209.164852][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2c451b6088
[  209.172665][    C1] RBP: 00007f2c451b6080 R08: 0000000000000000 R09: 0000000000000000
[  209.180473][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2c451b608c
[  209.188287][    C1] R13: 0000000000000000 R14: 00007ffca3d20170 R15: 00007ffca3d20258
[  209.196103][    C1]  </TASK>
[  209.199058][    C1] Modules linked in:
[  209.202800][    C1] ---[ end trace 0000000000000000 ]---
[  209.208084][    C1] RIP: 0010:__queue_work+0x4f1/0xd70
[  209.213205][    C1] Code: 39 03 0f 84 40 01 00 00 e8 6c 56 2a 00 4c 89 e7 e8 34 46 d7 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 90 04 72 00 49 8b 3e e8 e8 3e d7
[  209.232647][    C1] RSP: 0018:ffffc900001b0c78 EFLAGS: 00010046
[  209.238547][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888117bc5100
[  209.246361][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  209.254169][    C1] RBP: ffffc900001b0d00 R08: ffffffff814ae03b R09: 0000000000000007
[  209.261993][    C1] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff88811330c9c8
[  209.269795][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88811330c9e0
[  209.277606][    C1] FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[  209.286373][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  209.292799][    C1] CR2: 00007f2f1f380178 CR3: 000000000700f000 CR4: 00000000003506a0
[  209.300782][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  209.308589][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  209.316403][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[  209.323734][    C1] Kernel Offset: disabled
[  209.327867][    C1] Rebooting in 86400 seconds..