last executing test programs:

18m36.818086512s ago: executing program 32 (id=887):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
read$FUSE(r2, &(0x7f0000000300)={0x2020}, 0x4e)
recvmmsg$unix(r2, &(0x7f0000005280), 0x400018e, 0x10040, 0x0)
sendmsg$NL80211_CMD_SET_CHANNEL(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x28, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x3, 0x7e}}}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x41)

17m42.33896386s ago: executing program 33 (id=1014):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x10000000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x800000, &(0x7f0000000140)={[{@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '949'}}, {@shortname_winnt}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x10003}}, {@uni_xlateno}, {@shortname_lower}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@utf8no}]}, 0x25, 0x35b, &(0x7f0000000200)="$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")
mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000002140)=ANY=[])

17m14.578800658s ago: executing program 34 (id=1076):
r0 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@gettaction={0x18, 0x32, 0x9, 0x70bd28, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x4}]}, 0x18}}, 0xd4)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0))

13m40.738642068s ago: executing program 0 (id=1604):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000f6ff00000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

13m39.769975544s ago: executing program 0 (id=1606):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0x1, 0x120d, &(0x7f0000001280)="$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")
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a80)=ANY=[@ANYBLOB="90010000100013070000000000000000ff0100000000000000000000000000010000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000100000000000000000"], 0x190}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x6, 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000000000200000000000000000850000009e000000c30000000000000095"], &(0x7f0000000100)='GPL\x00', 0x5, 0xeb, &(0x7f0000000140)=""/235}, 0x94)

13m24.439644946s ago: executing program 35 (id=1606):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0x1, 0x120d, &(0x7f0000001280)="$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")
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a80)=ANY=[@ANYBLOB="90010000100013070000000000000000ff0100000000000000000000000000010000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000003200000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000100000000000000000"], 0x190}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x6, 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000000000200000000000000000850000009e000000c30000000000000095"], &(0x7f0000000100)='GPL\x00', 0x5, 0xeb, &(0x7f0000000140)=""/235}, 0x94)

11m26.507544328s ago: executing program 8 (id=1947):
syz_open_procfs(0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x27, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
clock_gettime(0xffffffc3, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
flistxattr(r2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x3, &(0x7f0000000540))
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSERGETLSR(r4, 0x5459, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, 0x0, 0x9c3fa077fa966179, 0x0, 0x700, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r6 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x40040, 0x0)
ioctl$PTP_SYS_OFFSET(r6, 0x43403d05, &(0x7f0000000200))

11m24.072279382s ago: executing program 8 (id=1950):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getpriority(0x2, 0xffffffffffffffff)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000240)='fd/3\x00')
r6 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)

11m19.434207561s ago: executing program 8 (id=1953):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0xfffffffffffffffe}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000"], 0xb0)
write$FUSE_STATX(r2, &(0x7f0000000600)={0x130, 0x0, 0x0, {0x9, 0x9, 0x0, '\x00', {0x1, 0xe, 0x4, 0x1c7c, 0x0, 0x0, 0x2000, '\x00', 0x9, 0x9, 0x2c, 0xffffffffffffff00, {0x5, 0x37}, {0x78b, 0x3}, {0x8, 0x8}, {0x80, 0x5}, 0x0, 0xc0e, 0x0, 0x1}}}, 0x130)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x12, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
mount$tmpfs(0x0, &(0x7f0000000200)='./file0/../file0/../file0/../file0\x00', 0x0, 0x32ec090, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x1)

11m19.035826323s ago: executing program 8 (id=1957):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000003900)={0x18, 0x16, 0xa01, 0x0, 0x0, {0x3}, [@typed={0x4}]}, 0x18}}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
clock_nanosleep(0x0, 0x1, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f00000001c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000500000000000000010000040800000000000000030000001000"/55], 0x0, 0x4d}, 0x28)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000004340)=@newtaction={0xe84, 0x1e, 0x109, 0x100, 0x40000, {}, [{0xe70, 0x1, [@m_pedit={0xe6c, 0x1b, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x0, 0x7, 0x7, 0x80000000, 0x9}, 0x2, 0xc}, [{0xb, 0x3, 0x7d15, 0xf55b, 0x4, 0xffff}, {0x4, 0x1, 0x4, 0x4, 0x7}, {0x5, 0x2, 0x3, 0x10001, 0x800, 0x5}, {0x3, 0xe8, 0x7, 0x399a8e13, 0x3, 0x10000}, {0x0, 0xfffffffd, 0x5, 0x6ce8, 0xd, 0x54}, {0xe, 0x4, 0xb3fc, 0x6, 0x5, 0x8}, {0x5, 0x5, 0x6, 0xfffffff7, 0x6, 0x2}, {0x10000, 0x1ff, 0x4db1, 0x67, 0xffff, 0x8}, {0x6, 0x9, 0x1, 0x8, 0x21a4, 0x8}, {0x101, 0x8, 0x1, 0x2, 0x4, 0x400}, {0x8, 0x6, 0x40, 0x7, 0x1, 0x5}, {0x3, 0x41, 0x2, 0x504, 0x4, 0xe}, {0x3cd1, 0x9e, 0x55, 0x1000, 0x0, 0xdd67}, {0x6, 0x1061e279, 0x1, 0x3, 0x0, 0xfffffffe}, {0x9, 0x4, 0x1, 0x7, 0x5, 0xfffffff8}, {0x4, 0x2, 0x3, 0x4, 0xfff, 0x6}, {0x4, 0x7, 0x10, 0x9, 0x8, 0x1}, {0x2, 0x40, 0x9, 0x100, 0x0, 0x5}, {0x9, 0x3, 0x7f, 0x800, 0x7, 0x9}, {0x1ff, 0x4, 0x4, 0x7, 0x5, 0x1}, {0x0, 0x9, 0x44, 0xfffffff7, 0xfffffffc, 0x4}, {0x5, 0x1000, 0x9, 0x1, 0x444, 0x2}, {0x4, 0x1e000000, 0x100, 0x8ed4, 0x9, 0xf55f}, {0xffff, 0x5, 0xfffffffc, 0x0, 0x0, 0x4}, {0x4, 0xa9, 0x6, 0xfffff964, 0x0, 0x8}, {0xe, 0x6, 0x0, 0xa, 0x7, 0x6c}, {0x7, 0x1, 0x6, 0x400, 0x8001, 0xa3}, {0x3f7, 0x7, 0x7f88, 0x100, 0x8, 0x7}, {0x63d, 0x6, 0x9, 0x6, 0xd, 0x6}, {0x5, 0x2, 0x207a, 0xe856, 0x0, 0x80000001}, {0x632, 0x4, 0x5, 0x1, 0x6, 0x380}, {0x8, 0x1, 0x8, 0x7, 0x400, 0x4}, {0x81, 0xfffffff1, 0x0, 0x7, 0x4310, 0x2}, {0x3, 0x80000000, 0x3, 0x7, 0x1, 0xff}, {0x4, 0x101, 0xffffffff, 0xfff, 0x4b63, 0x9}, {0x6000, 0x9, 0x0, 0x0, 0x10001}, {0x800, 0x7fff, 0x0, 0x7, 0x4, 0x2}, {0x0, 0x4d41, 0x5, 0x0, 0x8001, 0x2}, {0x1, 0xd93a, 0x5, 0xff, 0x4853, 0x1}, {0x2, 0x7fffffff, 0x7, 0x2, 0x8, 0xd403a48}, {0x5, 0xe, 0x0, 0x4, 0x42, 0x5}, {0x7, 0x2, 0x6, 0x9, 0xfffffff8, 0xa38}, {0x7, 0x119, 0x6, 0x4, 0xc58, 0xffffffff}, {0x1, 0x10000, 0x2, 0x400, 0x9, 0x8}, {0x7fffffff, 0xc7, 0x6, 0xc5, 0x9, 0x5}, {0x7, 0x2, 0xfffffffb, 0x74d57135, 0x1, 0xad}, {0x80000000, 0x4, 0x6, 0x10000, 0x2, 0x10001}, {0x2, 0x101, 0x0, 0x5, 0xca, 0x6}, {0x400, 0x3, 0x2a, 0x400, 0xfffffff9, 0x7}, {0xccbf, 0xd93, 0x9, 0x1, 0x9, 0x7fffffff}, {0x1, 0x8, 0x4, 0x200, 0x3ff, 0x3c}, {0x1000, 0x400, 0x6, 0xfffffff8, 0x7, 0xa6c5}, {0x2, 0x0, 0x1, 0x8, 0xf2ac, 0x2}, {0x200, 0x8, 0x4, 0xe6, 0xc, 0xfff}, {0x7, 0x6, 0x7fffffff, 0x9, 0x5}, {0x7, 0x1c1e, 0x4, 0x5, 0x1, 0x1}, {0x8, 0x5c21, 0x3ff, 0x401, 0x9, 0x7}, {0x1471, 0xfffffffb, 0x7, 0x8, 0x1, 0x9}, {0x80000000, 0x9, 0x7, 0x8, 0x3, 0x1}, {0xfffffffa, 0x3, 0x3, 0x2, 0xe, 0xf}, {0x3, 0x1, 0xc, 0x3ff, 0x1}, {0x8, 0xa4, 0x672, 0x6, 0x9, 0x9}, {0x0, 0xfffffff9, 0x3, 0x7ff, 0xffff, 0xffffffb2}, {0x7, 0x10002, 0x81, 0x13, 0x6, 0x5f5}, {0x8, 0xd3, 0xffff, 0x7, 0x91, 0xd9c}, {0x1ff, 0x905, 0x8, 0x7, 0x4, 0x8}, {0xb, 0xc, 0x6, 0x3, 0x5, 0x8}, {0xfffffff7, 0x19d, 0x6a8, 0x1, 0x6, 0x204000}, {0x6, 0xf26, 0x4, 0xb1, 0x4, 0xd0f}, {0x8, 0x1, 0x80000000, 0x74f, 0x5e089ead, 0x10001}, {0xd59, 0x9, 0xfb, 0x0, 0x8, 0x3}, {0x10001, 0x7fff, 0x4996, 0x1da4, 0xffffff85, 0x8}, {0x8, 0x9b3, 0x5, 0xff, 0x10000, 0x7}, {0x8, 0x6, 0xf, 0x4, 0x4, 0x1e3d}, {0x1, 0x4, 0xc, 0x1, 0x4, 0xff}, {0x6, 0x7, 0xd719, 0x1d, 0x6, 0x7ff}, {0x2, 0x25e, 0x49e4, 0x8, 0xdd9, 0x3}, {0x400, 0x7f, 0x8, 0x9, 0x1, 0x6}, {0x0, 0x7fffffff, 0x8, 0x2, 0x2fff, 0x1f7da}, {0x1, 0x3ff, 0xc2f5, 0x0, 0xffff, 0x4947}, {0x2, 0x200, 0x79f5, 0x6, 0x2, 0x80000000}, {0x3, 0x68, 0x1000, 0x9, 0x6}, {0x80, 0x9, 0xf, 0x5, 0x1bf0, 0xffffffff}, {0x8, 0xd3, 0x1, 0x4, 0x0, 0x4}, {0xfffffffb, 0x3, 0x1311, 0x5, 0x401, 0x800}, {0x8, 0x7fffffff, 0x5, 0x0, 0x9, 0xfffffffd}, {0x5, 0x7, 0x5, 0x80, 0x7, 0x6}, {0x9, 0x9, 0xff000, 0x7, 0x9, 0x800}, {0x3, 0x6, 0x7416, 0xb1a4, 0x8c51, 0x4}, {0x80000000, 0x6, 0x5, 0x7fff, 0x7, 0x2}, {0x9, 0x3ff, 0x2, 0x4, 0x8, 0x94a6}, {0x9, 0x80, 0x1000, 0x7, 0x0, 0x4}, {0xf8, 0x7, 0x2, 0x1, 0x3}, {0x1, 0xd, 0x8, 0x0, 0x9, 0x5}, {0xfa4d, 0x45d, 0xb3, 0xf3d, 0x7, 0x38}, {0x84, 0x9dc, 0x1ff, 0x2, 0x2, 0x2}, {0x6, 0x9, 0x6, 0x10000, 0x7, 0x934}, {0x2, 0xd, 0x0, 0x4a, 0x6, 0x6}, {0x9, 0x5, 0x7, 0x5, 0x7, 0x2}, {0x8001, 0x1, 0x6e, 0x101, 0xfffffffb, 0x1}, {0x0, 0x27e, 0x6, 0x8, 0x3, 0x3}, {0x2, 0xb8dd, 0x3ff, 0x4, 0x632, 0x3}, {0x785, 0x2, 0x3, 0x7d93, 0x4, 0x3}, {0xcfd7, 0x3, 0x1800, 0x3ff, 0xe, 0x6}, {0x610, 0x800, 0x5, 0x4, 0x9, 0x3ff}, {0x5a, 0x1000, 0x8000, 0x0, 0x7, 0x80000000}, {0xe3be, 0x1, 0x2, 0xc6, 0x9, 0x1}, {0x1, 0x1d, 0x1, 0x7, 0x1, 0xc274}, {0x40, 0x1005, 0x6, 0xff, 0x0, 0x3}, {0x0, 0x5d4, 0x2, 0xa, 0x2, 0x9}, {0x2, 0xfffffff7, 0x40, 0x9, 0x5, 0x9}, {0xff, 0x3800000, 0xff, 0xfffff001, 0x7, 0x8}, {0x6, 0xffffffbc, 0xffffffff, 0x1000000, 0x7, 0x2}, {0x7, 0x8195, 0x4297, 0x1b61, 0x400, 0xd}, {0x1, 0x6, 0x8, 0x5, 0x1ff, 0x6}, {0x401, 0x7, 0x8, 0x5, 0x1, 0x9}, {0x5, 0x6, 0x8, 0x2, 0x4000000, 0xfffffffa}, {0xffff, 0x2, 0x7, 0x2, 0x6}, {0x5, 0x3, 0xbd32, 0x0, 0xa6, 0x3}, {0x43, 0x5, 0x0, 0x9d, 0x8, 0x7}, {0x0, 0x9, 0x6, 0x6, 0x1}, {0x7, 0x9, 0x80, 0x1, 0x3, 0xfffffeff}, {0x4, 0x3, 0x5, 0xdeb5, 0x6, 0x10}, {0x4, 0x9, 0x664, 0x7, 0xfffffff8, 0x5}, {0x2, 0x0, 0x0, 0x1, 0x8, 0x6da3}, {0x1, 0x0, 0x4, 0x5, 0x1, 0xe}, {0x4, 0x3, 0x0, 0x1ff, 0xa6, 0x3b89}, {0x4, 0x8001, 0x0, 0x10000, 0x4, 0x800}], [{0x4, 0x1}, {0x3}, {0x2, 0x1}, {0x3, 0x1}, {0x3}, {0x4}, {0x4}, {0x5, 0x1}, {0x3, 0x1}, {}, {0x3}, {0x2, 0x1}, {0x4}, {0x5}, {0x2, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {}, {0x5306625b1880d6c3}, {0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x2, 0x1}, {0x3}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {0x4}, {}, {0x2, 0x1}, {0x4}, {0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {}, {0x3}, {}, {0x5, 0x1}, {0x2}, {0x3}, {0x66a5c7281b5c2733}, {0x0, 0x1}, {0x2, 0x1}, {0x2}, {0x2, 0x1}, {0x0, 0x1}, {0x2}, {}, {}, {0x3, 0x1}, {0x3, 0x1}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {}, {0x4}, {0x4, 0x1}, {0x4}, {0x0, 0x1}, {0x4}, {0x2}, {0x4}, {0x1, 0x1}, {0x5}, {0x4, 0x1}, {0x4}, {0x5}, {0x1}, {0x2}, {0x1}, {}, {0x5}, {0x4, 0x1}, {0x6e80c5d727b03f4e, 0x1}, {0x4, 0x1}, {0x1}, {0x2}, {0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x4}, {0x5, 0x1}, {0x6, 0x1}, {0x0, 0x1}, {}, {0x3}, {0x1, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5}, {0x2}, {}, {0x3, 0x1}, {0x3}, {0x2, 0x1}, {0x4}, {0x1}, {}, {0x4}, {0x3, 0x1}, {0x4}, {0x2}, {0x3}, {0x4}, {0x3}, {0x5, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x5}, {0x7}, {0x9, 0x1}]}}]}, {0x1e, 0x6, "2e579a5fabb6f45e8ee9929ffbedced6db3057e4271d9fc0dd4b"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xe84}, 0x1, 0x2b1e}, 0x4000800)

11m17.440555713s ago: executing program 8 (id=1960):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
r4 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0x1000, 0x2})
mkdirat$cgroup(0xffffffffffffffff, &(0x7f0000000340)='syz0\x00', 0x1ff)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x2, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r7 = dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000540)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40086315}], 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x7, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="850000009e0000006a000eff000e00006900080f00000000950000000000000018100000", @ANYRES32, @ANYRES16=0x0], &(0x7f0000000140)='GPL\x00', 0x6, 0x95, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffe79}, 0x25)

11m16.446998159s ago: executing program 8 (id=1963):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
utimes(&(0x7f0000000100)='./file3\x00', 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004002, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@nojournal_checksum}, {@noload}, {@noinit_itable}, {@usrjquota}, {@grpjquota, 0x2e}], [{@subj_type={'subj_type', 0x3d, '\xe1[]*:['}}]}, 0x81, 0x46c, &(0x7f00000004c0)="$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")
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x802, 0x0)
ioctl$EVIOCGSW(0xffffffffffffffff, 0x8040451b, &(0x7f0000001a80)=""/4096)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000600)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x240080a0)
setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000280)=0x4, 0x4)
getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, &(0x7f0000000080)={'icmp6\x00'}, &(0x7f00000000c0)=0x1e)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[], 0x98}}], 0x1, 0x40012)

11m0.966571332s ago: executing program 36 (id=1963):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
utimes(&(0x7f0000000100)='./file3\x00', 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004002, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@nojournal_checksum}, {@noload}, {@noinit_itable}, {@usrjquota}, {@grpjquota, 0x2e}], [{@subj_type={'subj_type', 0x3d, '\xe1[]*:['}}]}, 0x81, 0x46c, &(0x7f00000004c0)="$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")
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x802, 0x0)
ioctl$EVIOCGSW(0xffffffffffffffff, 0x8040451b, &(0x7f0000001a80)=""/4096)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000600)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x240080a0)
setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000280)=0x4, 0x4)
getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, &(0x7f0000000080)={'icmp6\x00'}, &(0x7f00000000c0)=0x1e)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003500)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[], 0x98}}], 0x1, 0x40012)

8m29.449522556s ago: executing program 6 (id=2379):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$SOUND_MIXER_READ_RECSRC(r0, 0x80044dff, 0x0)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000280)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
syz_pidfd_open(0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x1258c1, 0x60)
preadv(r3, &(0x7f0000001b00)=[{&(0x7f00000009c0)=""/239, 0xef}], 0x1, 0x2, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="120141014813442024040075ee690102030109021200010000100009043b070096d1"], 0x0)
r4 = gettid()
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x40e02, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06464ce, &(0x7f0000000200)={0x0, 0x7, 0x844, 0x4, 0x0, [], [0x1000, 0x2, 0x2, 0x1], [0x3, 0x9, 0x9, 0x7], [0xcf7, 0x722e, 0x1, 0x1]})
write$rfkill(r5, &(0x7f0000000300)={0xb, 0x2, 0x3, 0x1, 0x1}, 0x8)
setsockopt$RXRPC_SECURITY_KEY(0xffffffffffffffff, 0x110, 0x1, 0x0, 0x0)
write$rfkill(r5, &(0x7f0000000340)={0x53, 0x8, 0x0, 0x1, 0xcc}, 0x8)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x80002, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000400)=@ax25={{0x3, @null, 0x3}, [@null, @bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000480)="6fad23149204da40551507fa19b825a932d9305589397c54f7456c17b9ab7608b51ce3be41841e4b5b95eb13c57f4debc9a0e3e90e6dc44a2ba26c8d419a720ab0c5db723c5bd8630e2cce2fec7a90087fa3bcd84ff18786c3ea9b0b41cc945f890ab37b71dcddf8a748902601b394235b34638266c668e611d07eb942bd8fcf587837e25d9bd3f6785a7bf290210381e919938cc4ec6452f5273b9841c9ee91356d20b8a263f47ed293cb4295db30", 0xaf}, {0x0}, {&(0x7f0000000640)}], 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x25c}, 0x40004)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, 0x0)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000003c0)=r3, 0x4)
sendmsg$nl_route(r7, 0x0, 0x80)

8m23.742824521s ago: executing program 6 (id=2394):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@acl}, {@init_itable}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2000}, 0x80)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000080)="441f08010000", 0x6)

8m22.438511339s ago: executing program 6 (id=2397):
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0xfffffffffffffffe}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x12, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

8m21.044730357s ago: executing program 6 (id=2403):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x82)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
lstat(&(0x7f0000000180)='./file0\x00', 0x0)

8m19.903887204s ago: executing program 6 (id=2407):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@acl}, {@init_itable}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2000}, 0x80)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000080)="441f08010000", 0x6)

8m18.476600123s ago: executing program 6 (id=2409):
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x10, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x2d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000280)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, 0x0)
dup3(r6, r5, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c0000001000010000000000d9e5000000000000", @ANYRES32=0x0, @ANYBLOB="00100000421004002800128008000100767469001c000280080004000a010101080002000300000008000500e00000011400030069705f76746930"], 0x5c}, 0x1, 0x0, 0x0, 0x885}, 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x800714, &(0x7f0000000180), 0xff, 0x4a9, &(0x7f0000000580)="$eJzs3M9rXNUeAPDvnUnS301eX1/fa1+r0SoWfyRNWrULFyoKLhQEXdRlTNJaO22kiWBLsFGkLqXgXlwK/gXu3Ii6EMGtgkspFA1CUxcSub+aZDKZ5menzXw+MJlz5p6Zc773njNz5p7cCaBt9aZ/koidEfFzRHTn2YUFevO7menJ4ZvTk8NJzM6+9nuSlbsxPTlcFi2ft6PIHKlEVD5K4tlkcb3jFy+dHarVRi8U+f6Jc+/0j1+89MSZc0OnR0+Pnh88ceL4sYGnnxp8cl3iTOO6ceD9sYP7X3rj6ivDJ6+++d2XabP2Hcq3z4/jtm42CKiB3nSv/TGbqd/28Arafi/YNS+ddLSwIaxINSLSw9WZjf/uqMbcweuOFz9saeOADZV+Nm1ZevPULLCJJdHqFgCtUX7Qp99/y9sdmnrcFa4/F9EV+fmKmenJ4Zlb8XdEpSjTuYH190bEyam/PktvsdLzEAAAq5DNbR5vNP+rxL7sPl/r2F2sofRExL8iYk9E/Dsi9kbEfyKysv+NiP/lT57tXmb9vXX5xfOfyrWGbV4n6fzvmZib+83Mi7+466kWuV1Z/J3JqTO10aPFPjkSnVvS/ECTOr5+4adPlto2f/6X3tL6y7lg0YBrHXUn6EaGJobWaydc/yDiQEej+JNbKwFpD9gfEQdi8TpWE7vLxJlHvzi4VKHbx9/EOqwzzX4e8Uh+/KeiLv5S0nx9sn9r1EaP9pe9YrHvf7zy6oIHqnPJNcW/DtLjv31h/68r0f1nkq/XdkatNnphfOV1XPnl4yW/06yk/5ddPu3/Xcnr2Zr1D2/lB+q9oYmJCwMRXcnLWZmuomz2+ODcq5X5snwa/5HDjcf/nuI5aQX/j4i0Ex+KiPsi4v6i7Q9ExIMRcbhJ/N8+/9DbTeJPIomWHv+Rhu9/t/p/TzJ/vX4VierZb75aasV8ecf/eExl77W57P3vNpbbwDXuPgAAALgnVCJiZySVvjzduzMqlb6+/H/498b2Sm1sfOKxU2Pvnh/JrxHoic5Keaare9750IFkqnjFPD9YnCsutx8rzht/Wt2W5fuGx2ojLY4d2t2OheM/yvGf+q3a6tYBG871WtC+6sd/pUXtAO685Xz++y4Am1OD8b+tFe0A7jzf/6F9NRr/l+vy5v+wOXUsSvza4CfrgM3I/B/al/EP7cv4h7a0luv6V58oLxZY/etsXfYV/psmcbl5mfIXLzayGdti7pGo3B27pWHi7+LnLe+W9qw5kY6YBY9EJLGhlc79hgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMC97J8AAAD//wHu668=")

8m2.684650898s ago: executing program 37 (id=2409):
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x10, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x2d}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000280)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, 0x0)
dup3(r6, r5, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c0000001000010000000000d9e5000000000000", @ANYRES32=0x0, @ANYBLOB="00100000421004002800128008000100767469001c000280080004000a010101080002000300000008000500e00000011400030069705f76746930"], 0x5c}, 0x1, 0x0, 0x0, 0x885}, 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x800714, &(0x7f0000000180), 0xff, 0x4a9, &(0x7f0000000580)="$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")

7m58.351365524s ago: executing program 7 (id=2452):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x14a, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = accept4(r0, 0x0, &(0x7f0000000500), 0x0)
connect$can_bcm(r3, &(0x7f0000000580), 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4003, 0x1}, 0x48)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r4, &(0x7f0000000a40)={0xa, 0x4e24, 0xf4, @remote, 0x1}, 0x1c)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x44004)

7m55.616113831s ago: executing program 7 (id=2458):
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='stat\x00')
lseek(r4, 0x9, 0x0)
socket$inet6(0xa, 0x3, 0x7)

7m53.789275972s ago: executing program 7 (id=2464):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
syz_usb_connect(0x1, 0xfffffffffffffd22, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000980), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x6)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000002cc0))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

7m50.390437292s ago: executing program 7 (id=2473):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2000000, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xbaf, &(0x7f0000000b00)="$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")
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
pidfd_getfd(r4, r4, 0x0)

7m49.1051636s ago: executing program 7 (id=2475):
fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4000000053d2)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x1f)
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
ioctl$TIOCEXCL(0xffffffffffffffff, 0x540c)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(0x0, 0x205, 0x8401)
r2 = fcntl$dupfd(r1, 0x406, r1)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000080)={0x0, 0x3, 0xffffffffffffffff, 0x5})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, &(0x7f0000000000)={0x0, 0x43, 0x1})
ptrace(0x10, r0)
ptrace$peeksig(0x4209, r0, &(0x7f0000000140)={0x0, 0x0, 0x4e}, &(0x7f0000000fc0))

7m46.462582095s ago: executing program 7 (id=2482):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
syz_usb_connect(0x1, 0xfffffffffffffd22, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000980), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x6)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000002cc0))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

7m31.149100348s ago: executing program 38 (id=2482):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
syz_usb_connect(0x1, 0xfffffffffffffd22, 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000980), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x6)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000002cc0))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2m31.334735717s ago: executing program 9 (id=3125):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x14a, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = accept4(r1, 0x0, &(0x7f0000000500), 0x0)
connect$can_bcm(r4, &(0x7f0000000580), 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4003, 0x1}, 0x48)
r5 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r5, &(0x7f0000000a40)={0xa, 0x4e24, 0xf4, @remote, 0x1}, 0x1c)
sendmsg(r5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x44004)

2m29.097241751s ago: executing program 9 (id=3133):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x1, 0x1, 0x2d9c18a5da8f4af3, 0x0, 0x0, {0x5, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0xc004}, 0x20000001)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, 0x0, &(0x7f0000000180)=r4}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000000100000024000300b08073e8d44e91e3da922c22438244bb885c69e269c8e9d835b114ff1e73456e1400020077673000"/70], 0x4c}, 0x1, 0x0, 0x0, 0x4004840}, 0x4010)

2m28.016720897s ago: executing program 9 (id=3137):
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
write$UHID_INPUT2(r0, &(0x7f0000005cc0)=ANY=[@ANYBLOB], 0x1001)
preadv2(r0, &(0x7f0000000280)=[{&(0x7f0000001200)=""/4096, 0x1000}, {0x0}], 0x2, 0x0, 0x0, 0x0)

2m27.824489528s ago: executing program 9 (id=3138):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0)
mount$bind(&(0x7f0000000540)='./file0/../file0\x00', &(0x7f0000000500)='./file0/file0\x00', 0x0, 0x2080, 0x0)

2m27.702493369s ago: executing program 9 (id=3139):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0xffffffffffffffde, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='sched_switch\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x2}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001200)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f07df33c9f7b986", 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write(r1, &(0x7f0000000a00)="c7885a8f24f458bed7211672288cfc5eb321cf4074dc131b8e11e775ef7ff118fe916e4017771c3d08f678e6", 0x2c)
sendfile(r1, r0, 0x0, 0x3ffff)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
syz_pidfd_open(r5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

2m25.543026072s ago: executing program 9 (id=3144):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000668a2e54ed4b10fee73f78e031648f95000000000000004de2b3b23a30af9bf909bbe6"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat(0xffffffffffffffff, 0x0, 0x1248c3, 0x67)
inotify_init1(0x80800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x404, &(0x7f00000001c0)={[{@nogrpid}, {@nogrpid}, {@test_dummy_encryption}, {@debug}, {@nobarrier}, {@quota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}]}, 0x1, 0x43d, &(0x7f0000000780)="$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")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYRES8], 0xb0}, 0x1, 0x0, 0x0, 0x20000080}, 0x24040800)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0xc, 0x0, 0x0)
sendmsg$netlink(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
openat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
setns(r6, 0x24020000)
mount$9p_fd(0x0, 0x0, 0x0, 0x44000, 0x0)
listen(r4, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r7, &(0x7f0000000000)={0x2, 0xfffe, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)

2m24.22584471s ago: executing program 39 (id=3144):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000668a2e54ed4b10fee73f78e031648f95000000000000004de2b3b23a30af9bf909bbe6"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat(0xffffffffffffffff, 0x0, 0x1248c3, 0x67)
inotify_init1(0x80800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x404, &(0x7f00000001c0)={[{@nogrpid}, {@nogrpid}, {@test_dummy_encryption}, {@debug}, {@nobarrier}, {@quota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}]}, 0x1, 0x43d, &(0x7f0000000780)="$eJzs281rHGUYAPBnZpO06YeJpX40rRqtYvAjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVcGjFIrk0uppZXZns7vJbr66yVb394NJ3ndmNu/z7My7+868mQC61nD2I4k4EBG/RcRApdq4w3Dl1+3lxam/lxenkiiV3vwrKe93a3lxKv8TK6/bX13RE5F+msTRJu3OX7l6YbJYnLmc18cWLr43Nn/l6rOzFyfPz5yfuTRx5sypk+PPn554ri15ZnndGvpw7tiRV9++/vrU2evv/PRNUs2/Lo82Gl5v4xOlUpub66yDdeWkp4OBsCWFSjeN3nL/H4hC1A7eQLzySUeDA3ZUqVQq3d9681IJ+B9LotMRAJ1R/aLPrn+ryy4NPe4KN1+sXABled/Ol8qWnkjzfXpXXd+203BEnF3658tsiZ25DwEA0OC7bPzzTLPxXxr194XuyedQBiPi3og4FBGnI+JwRNwXUd73gYh4cIvtr54kWTv+SW9sK7FNysZ/L+RzW43jv+roLwYLee1gOf/e5NxsceZE/p6MRO+erD6+Thvfv/zr56221Y//siVrvzoWzOO40bOn8TXTkwuTd5JzvZsfRwz11PL/Y291S7IyE5BExJGIGNpmG7NPfX2s1baN819HG+aZSl9FPFk5/kvRcPxrs6DJ+vOTY3ujOHNirHpWrPXzL9feaNX+HeXfBtnx39f0/F/JfzCpn6+d33ob137/rOU1zXbP/77krYZ1H0wuLFwej+hLXqsEXb9+YtV+E7X9s/xHjjfv/4ei9k4cjYjsJH4oIh6OiEfy2B+NiMci4vg6+f/40uPvbj//nZXlP72l418r9MXqNc0LhQs/fNvQ6OBW8s+O/6lyaSRfs5nPv83Etb2zGQAAAP570og4EEk6ulJO09HRyv/wH459aXFufuHpc3PvX5quPCMwGL1p9U7XQN390PH8sr5an1hVP5nfN/6i0F+uj07NFac7nTx0uf0t+n/mz0KnowN2nOe1oHvp/9C99H/oXhv0/3S34gB2X5P+39+JOIDd1+z7/6MOxAHssrWd37QfdBH3/6B76f/QvfR/6Erz/bHxQ/IKCmsKkd4VYSjsUKHTn0wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADt8W8AAAD//1CT5Pk=")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYRES8], 0xb0}, 0x1, 0x0, 0x0, 0x20000080}, 0x24040800)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0xc, 0x0, 0x0)
sendmsg$netlink(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
openat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
setns(r6, 0x24020000)
mount$9p_fd(0x0, 0x0, 0x0, 0x44000, 0x0)
listen(r4, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r7, &(0x7f0000000000)={0x2, 0xfffe, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)

48.722627056s ago: executing program 4 (id=3375):
r0 = socket$inet6(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
pipe(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000440), 0x2000)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xc2481, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

48.177679539s ago: executing program 4 (id=3381):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@acl}, {@init_itable}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000160000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2000}, 0x80)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000080)="441f08010000", 0x6)

47.154491056s ago: executing program 4 (id=3384):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000ec000000850000001b"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, 0x0, 0x20000001)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, 0x0, 0x20008801)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, 0x0, &(0x7f0000000180)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SIGNAL_INFO(r7, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x3f2, 0x4, 0x70bd2a, 0x25dfdbfd}, 0x10}, 0x1, 0x0, 0x0, 0xc0}, 0x20048000)

46.737097828s ago: executing program 4 (id=3387):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)=@ipv6_delroute={0x1c, 0x19, 0xe8a7ab5761a135c1, 0x70bd2a, 0x25dfdbfe, {0xa, 0x20, 0x0, 0xa, 0xfc, 0x3, 0xfe, 0xb, 0x200}}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000001c0)=0x10)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x8000, 0x102)
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="1201410130f56920ac05190272f00102030109021b0001000010000904550701034902000905820300"], 0x0)
syz_usb_control_io(r3, 0x0, &(0x7f0000000580)={0x84, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00N\b'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x140}, 0x1, 0x0, 0x0, 0x804}, 0x40)
close_range(r4, 0xffffffffffffffff, 0x0)
fallocate(0xffffffffffffffff, 0x1, 0xfff, 0x5)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r3, 0x0, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c10000000000000000000", 0x58}], 0x1)

46.006707143s ago: executing program 4 (id=3388):
r0 = socket$packet(0x11, 0x2, 0x300)
unshare(0x400)
setsockopt$packet_int(r0, 0x107, 0x7, 0x0, 0x0)

45.219587607s ago: executing program 4 (id=3390):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xe1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x4, 0xff, 0x0, 0x0, 0x6}}, 0x1c}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r7, 0x890b, &(0x7f0000000080)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @remote}, {0x2, 0x0, @private}})
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x70bd26, 0x0, {0x2, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2900}}, 0x1c}}, 0x8c0)

44.700801041s ago: executing program 40 (id=3390):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xe1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x4, 0xff, 0x0, 0x0, 0x6}}, 0x1c}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r7, 0x890b, &(0x7f0000000080)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @remote}, {0x2, 0x0, @private}})
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x70bd26, 0x0, {0x2, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2900}}, 0x1c}}, 0x8c0)

12.657426294s ago: executing program 5 (id=3458):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_io_uring_setup(0x75a5, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYBLOB="000000000000000010010c"], 0x270}, 0x1, 0x0, 0x0, 0x20008044}, 0x4)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

10.119756809s ago: executing program 3 (id=3464):
r0 = socket(0xa, 0x3, 0x87)
sendmmsg$unix(r0, &(0x7f0000004440)=[{{&(0x7f0000000100)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001600)=[{&(0x7f0000000180)="31c92990f844", 0x6}], 0x1, 0x0, 0x0, 0x91}}, {{&(0x7f0000000040)=@abs={0x6000, 0x0, 0x4e21}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4141}}], 0x2, 0x40000a0)

10.02211925s ago: executing program 0 (id=3391):
r0 = socket$inet6(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
pipe(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000440), 0x2000)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xc2481, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

9.753635991s ago: executing program 3 (id=3465):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000007100)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002140)={0x50, 0x0, r2, {0x7, 0x2b, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x50)
read$FUSE(r0, &(0x7f000000cdc0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r3}, 0x10)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000000140)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}})

9.493304843s ago: executing program 1 (id=3466):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2008080, &(0x7f0000000280)={[{@iocharset={'iocharset', 0x3d, 'cp869'}}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@numtail}, {@numtail}, {@shortname_mixed}, {@fat=@codepage={'codepage', 0x3d, '862'}}, {@uni_xlate}, {@fat=@nfs}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp949'}}, {@utf8}, {@rodir}, {@utf8no}]}, 0x81, 0x2c8, &(0x7f0000000780)="$eJzs3U9rI2UYAPBnkkmbqpAcPInggB48le1+gi1SYbEnZQ560cXtgjRhoQOBrmLdk3fBk9/B7+AH8OI38OBR8OYexJFJJu0knVQjMZXy+136ZN73ef/N2zQU5s0nr49PHz8tnjz/4ufo95PoPIgH8SKJYXRi7qsAAO6SF2UZv5UzETs31k2n5eWgftXZzggBgE1r/P1PIiK57fEAAP+9Dz786L3D4+Oj97OsHzH+epJXHwHGySSflR8+ic9iFCdxLwbxR0R5aRa/8vD4KNIsm/8zYLIXecT44x/r14e/RkzzD2IQw+v57z48PjrIZuKt8cUkr3qufvbipSTisKw/ktyPQbwaUfaibuQq/35LfuQ78fab39Xj//Mk9mMQP30aT2MUj6dNXOV/eZBl75Tf/v75bAZ5RHIxyXen9a6U3a3dFAAAAAAAAAAAAAAAAAAAAAAA7rz97NKweX5OWdbl++3l0/OBui3nA9Un/Fw0zte5l2XZ/BifSd6LWX4ar6WR3urkAQAAAAAAAAAAAAAAAAAA4H+iOH92+mg0OjlbCH4ol6+0BPUT/VFfSRtF6WLRze20BKffR6yf9XfB3umjUXTroY2Sa13MJ/SPG0xXV95da2CNdjrzpYvOqjVMRzEb/DfrL8Iba02wCsp/seDz3VVtkhsqd6M477dvksbO3KsbOyumN2hv1aZdDMqWpeuuzNrZ0B7beXmzm7aace9yMRfr9Ks72VjM3qp2qm26fu/L7xT1b0ex0bcfAAAAAAAAAAAAAAAAAACgoThP6od+45drhc9vZUgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsHXF+bP6+/8vgxguX1kOLurkk7b0pWD3rGjpdrjlaQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHDH/RUAAP//hdJQMQ==")
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x80098, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_emit_ethernet(0x66, 0x0, 0x0)
mknod$loop(0x0, 0x8fff, 0x0)
r2 = memfd_create(0x0, 0x4)
ftruncate(r2, 0x400000)
sendmsg$IPSET_CMD_CREATE(r1, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0)
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000e00)={0x38, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_IE={0x4}]}, 0x38}}, 0x0)

9.483902363s ago: executing program 5 (id=3467):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f00000000c0)=0x8, 0x4)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = dup3(r2, r1, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
r4 = dup(r0)
bind$unix(r4, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x4e, &(0x7f0000000040)=0x7, 0x4)
r6 = dup(r5)
bind$unix(r6, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)

8.838629127s ago: executing program 5 (id=3469):
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000140)=[{{&(0x7f0000000080)={0xa, 0x4e26, 0x7, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x4}}, 0xa}, 0x1c, 0x0}}], 0x1, 0x200880c0)
getsockopt$inet6_buf(r0, 0x29, 0x3d, &(0x7f00000020c0)=""/171, &(0x7f0000000000)=0xab)

8.33468071s ago: executing program 3 (id=3470):
syz_open_procfs(0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x27, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
clock_gettime(0xffffffc3, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x3, &(0x7f0000000540))
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSERGETLSR(r4, 0x5459, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x700, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x40040, 0x0)
ioctl$PTP_SYS_OFFSET(r7, 0x43403d05, &(0x7f0000000200))

8.28453993s ago: executing program 5 (id=3471):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000240)={0x73622a85, 0x1300, 0x6})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40}], 0x0, 0x0, 0x0})

8.147414001s ago: executing program 1 (id=3472):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@acl}, {@init_itable}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000160000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2000}, 0x80)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000080)="441f08010000", 0x6)

5.465911677s ago: executing program 3 (id=3474):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
close(r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r4, @ANYBLOB="1f003300d0000000080211000001080211000000505050505050"], 0x3c}}, 0x10)

5.446660017s ago: executing program 0 (id=3475):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
pipe(0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={r1, 0xffffffffffffffff, 0x4}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(r5, &(0x7f0000000080)="520003000100b8", 0x7)
r6 = syz_open_procfs(0x0, &(0x7f0000000240)='smaps\x00')
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0))
close_range(r6, 0xffffffffffffffff, 0x0)

5.318735778s ago: executing program 5 (id=3476):
r0 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000049ffe840e5130100534e0000000109021b000100000000090400000101"], 0x0)
syz_usb_control_io$rtl8150(r0, &(0x7f0000000180)={0x14, &(0x7f0000000080)={0x40, 0x2, 0x2, {0x2, 0xa}}, &(0x7f0000000000)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)

5.03273463s ago: executing program 3 (id=3477):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_io_uring_setup(0x75a5, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRES32=r2, @ANYBLOB="000000000000000010010c"], 0x270}, 0x1, 0x0, 0x0, 0x20008044}, 0x4)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

4.9477885s ago: executing program 2 (id=3478):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7030000ec000000850000001b"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, 0x0, 0x20000001)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, 0x0, 0x20008801)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, 0x0, &(0x7f0000000180)=r6}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
r9 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SIGNAL_INFO(r9, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x3f2, 0x4, 0x70bd2a, 0x25dfdbfd}, 0x10}, 0x1, 0x0, 0x0, 0xc0}, 0x20048000)

4.822659571s ago: executing program 1 (id=3479):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x2d4, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xd, 0x1}, {0x0, 0x1}, {0x0, 0xb}}, [@filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_CVLAN_ID={0x6, 0x4d, 0xfa7}, @TCA_FLOWER_FLAGS={0x8}, @TCA_FLOWER_KEY_ICMPV4_CODE_MASK={0x5}, @TCA_FLOWER_KEY_ARP_SIP_MASK={0x8, 0x3a, 0xffffffff}]}}, @TCA_RATE={0x6, 0x5, {0xd, 0xc}}, @filter_kind_options=@f_bpf={{0x8}, {0x270, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_ACT={0x258, 0x1, [@m_nat={0x1dc, 0x6, 0x0, 0x0, {{0x8}, {0x194, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x2, 0x3, 0x8, 0x3, 0x5}, @multicast2, @local}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x2, 0x4, 0x5, 0x3, 0x401}, @loopback, @broadcast, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xb59, 0x4, 0x3, 0xbfa}, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xff000000, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xff1d, 0x10000, 0x3, 0x2, 0x3}, @multicast2, @local, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x9, 0xdc, 0x0, 0x80, 0x81}, @rand_addr=0x64010101, @private=0xa010101, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xfff, 0x3ff, 0x3, 0x9bd, 0x9}, @broadcast, @private=0xa010101, 0xffffff00, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x8000, 0xd0f, 0x7, 0x6}, @multicast1, @broadcast, 0xffffff00}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x400, 0xbe50, 0x3, 0x8, 0x10000}, @local, @broadcast, 0xffffffff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x6, 0xd, 0x10000000, 0x6, 0x1}, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x2, 0x35, 0x10000000, 0x7fffffff, 0x5}, @local, @loopback, 0xff000000, 0x1}}]}, {0x23, 0x6, "ea1d3df993b48c8c0158afe2e95ace16d3013e9b7be616c5ba21f375779afd"}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_skbmod={0x78, 0xa, 0x0, 0x0, {{0xb}, {0x4c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x2, 0x3, 0x1, 0x1, 0x7}, 0x6}}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x0, 0x0, 0x0, 0x4, 0xaae}, 0x4}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x5, 0x2}}}}]}]}}]}, 0x2d4}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x54}, 0x1, 0xba01}, 0x810)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})

4.698853852s ago: executing program 3 (id=3480):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x101081, 0x0)
fcntl$lock(r0, 0x5, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='sched_switch\x00'}, 0x18)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0xc00, 0x0)
ioctl$TIOCGSID(r5, 0x5429, 0x0)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x141b82, 0x0)
write$cgroup_int(r6, &(0x7f0000000000)=0x10000000000700, 0xfffffd65)
r7 = socket$nl_route(0x10, 0x3, 0x0)
write(r7, &(0x7f0000000000), 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000640)=@gettaction={0x14, 0x5a, 0xc6b747b6bf1c6b95}, 0x14}, 0x1, 0x0, 0x0, 0x44841}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

4.479297863s ago: executing program 0 (id=3481):
r0 = socket(0x11, 0x3, 0xff)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={<r1=>0x0, <r2=>0x0, <r3=>0x0}, &(0x7f0000000140)=0xc)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000000240)='./file1\x00', 0x2000084c, &(0x7f0000000300)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r2, @ANYRES64=r1, @ANYRES8=r3, @ANYRES16=r1, @ANYRES64=r1, @ANYBLOB="2c6469736361726459ad809e1eb82c00fb278330ab3b4884d36adf6908d11f5783dc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14fc, &(0x7f0000002a80)="$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")
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r4, 0x0, 0x0)

4.342627184s ago: executing program 1 (id=3482):
r0 = socket$alg(0x26, 0x5, 0x0)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x31, 0x0, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000940), 0x1, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
open(0x0, 0x0, 0x28)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0x80045530, &(0x7f00000003c0)=""/89)
ioctl$F2FS_IOC_GET_COMPRESS_OPTION(r0, 0x8002f515, &(0x7f0000000000))

4.272352565s ago: executing program 0 (id=3483):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x21081e, &(0x7f0000000000)={[{@init_itable}, {@debug}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1a5042, 0x0)
mknod$loop(0x0, 0x0, 0x1)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
creat(0x0, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3c)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
read$FUSE(r0, &(0x7f000001b000)={0x2020}, 0x2020)

3.949418916s ago: executing program 2 (id=3484):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)

2.964424612s ago: executing program 2 (id=3485):
syz_open_procfs(0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x27, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
clock_gettime(0xffffffc3, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x3, &(0x7f0000000540))
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSERGETLSR(r4, 0x5459, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x60, &(0x7f0000000140)={&(0x7f00000002c0)={0x1c, r6, 0x9c3fa077fa966179, 0x0, 0x700, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x40040, 0x0)
ioctl$PTP_SYS_OFFSET(r7, 0x43403d05, &(0x7f0000000200))

2.838786293s ago: executing program 1 (id=3486):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000240)={0x73622a85, 0x1300, 0x6})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40}], 0x0, 0x0, 0x0})

1.705411s ago: executing program 2 (id=3487):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7ffc1ffb}]})
syz_read_part_table(0x60e, &(0x7f00000007c0)="$eJzs3D9olGccB/DvJbk7o9A4OLnUOHQSiuLoDVWSq2IhnJZCcLD/EGmmCIGTHqbo0GaImEE6dpHCdYhxUjM4KQqdizi0CBlcCnaR2iFX7u4luUAplkZK8fMZ7ve8Lz+e7/uDZ30u/K8NpVysOtVeefeTv+3vjG2u5/Nhe2LyeKfT6ZxOSjmTcsbLb60kGcnWXbM/SWVgnxvf7Vz95rf3y+0np168c/b+wtDGntXsTrJrsDmjf/Up1X82Ka/Dcu3BWC3JYveh3lpb/yi5+XyicefkwtLKifKxz7rvLyUPi/7+wRjNhTRzMV/k45FXjvpqc1nakj9/Zba+2Kydf1xvrX3bfnpwfW99+Pa5Iy/3rV69dyiZ60ZMpXfYN1X+5eAD+ZcH8ufGr00vtY4euLXn+uHm3UeNZ8O/d/qKyPL25AIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8Hosd3+uzNYXm7Xzj+utta9/+vGDm88nGndOLiytnKgc+7noe1jUkaJeSDMXU04yk5l8ntlXj5wuDebXHoxd3sj/Y2fy9OD63nr79rkjLydXr9471OsqZapbhrZj4q2WR9LLz+7+89z4teml1tEDt/ZcP9y8+6jxbLj/fqaaT3vjJqlu/2cAAAAAAAAAAAAAAAAAAADwhpuYPL5v6r3G6aSUMzuS/Ppl75Z9pzr6Q3o37/v2F7VS1Bs7+v8F0H5y6kXl7P2FX4pL8fOpZj7Jru+7nW9v5FzaGlve3Jn/0p8BAAD//83YiVM=")

1.078759324s ago: executing program 1 (id=3488):
syz_open_procfs(0x0, 0x0)
r0 = syz_clone(0xa8200780, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
ptrace(0x10, r0)
r2 = syz_open_procfs(r0, &(0x7f0000000040)='status\x00')
pread64(r2, &(0x7f0000000140)=""/15, 0xf, 0x4)

526.361147ms ago: executing program 5 (id=3489):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@acl}, {@init_itable}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnHy2zb2TXi6X27tpLpdLC+I0raTYIthKxY0LQbdCQzopIdMPkkhNmsVE/wFR14IbQS1KF3bdjYJbN1q3FhdCkdgoiGjkzEeSJjNJ2k5yYvL7wZvzvvOcOe/z5DBzzgszE8CeNZD9SSMORcT5JKJQfzyNiO5qrzeiUttvYX525Jf52ZEkFhdf/jGJJCLuz8+ONI6V1LcH6oPeiPjquST+8ebaeSenZ8aHy+XSRH18bOrS1WOT0zNPjl0avli6WLp8/OTTQyeGTg6eGmpbrb9+d+bWz/994fvKbx/9fuOndz5I4kz01WMr66hX/dgGYmDpf7JSZ0QMt+H4O0FHvZ6VdSadGzwp3eKkAABoKV1xD/evKERHLN+8FeLzr3NNDgAAAGiLxY6IRQAAAGCXS6z/AQAAYJdrfA7g/vzsSKPl+4mE7XXvbET01+pfqLdapDMq1W1vdEXE/vtJrPxaa1J72mMbiIi73576NGvR5HvIW60yFxH/bnb+k2r9/fVvQq+uP42IwTbMP7Bq/Feq/0wb5s+7fgD2pttnaxeytde/dOn+J5pc/zqbXLseRd7Xv8b938Ka+7/l+jta3P+9tMk5rn/43rVWsaz+Z249/0mjZfNn28cq6iHcm4v4T2ez+pOl+pMW9Z/f5ByFP66VWsXyrn/x/Ygj0bz+hmT93yc6NjpWLg3W/jadY+7LoY9bzZ93/dn539+i/o3O/9UHjtT6R31ePXfuZqvYxvWnP3Qnr1R73fVHXh+empo4HtGdvLj28RPr19vYp3GMrP6j/1v/9d+s/uw9oVL/P2SVz9W32fiNVXM+e+P6Z+vVn6398jz/Fx7x/L+1yTn+/8XbR1vFVq5/s5bNfzeprYUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoCGNiL5I0mJEJNV+mhaLEQci4p+xPy1fmZx6YvTKa5cvZLGI/uhKR8fKpcGIKNTGSTY+Xu0vj0+sGj8VEQcj4t3Cvuq4OHKlfCHv4gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFhyICL6IkmLEZFGxEIhTYvFvLMCAAAA2q4/7wQAAACALWf9DwAAALuf9T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb7ODh23eSiKic3ldtme56rCvXzICtluadAJCbjrwTAHLTmXcCQG4eco3vdgF2oWSDeG/LSE/bcwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg5zpy6PadJCIqp/dVW6a7Hutq+ozD25gdsJXSvBMActOxXrBz+/IAtp+XOOxdzdf4wF6SbBDvXd6n8mCkZ8tyAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDn6au2JC1GRFrtp2mxGPG3iOiPrmR0rFwajIi/R8Q3ha6ebNyTd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC03eT0zPhwuVya0NHRybeT7Iw0ap2835kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMjD5PTM+HC5XJqYzDsTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIG+T0zPjw+VyaWITnZsPs/OKTt41AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQnz8DAAD//9b4DfQ=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000160000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2000}, 0x80)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000080)="441f08010000", 0x6)

475.528797ms ago: executing program 2 (id=3490):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xe1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x4, 0xff, 0x0, 0x0, 0x6}}, 0x1c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000080)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @remote}, {0x2, 0x0, @private}})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r6, 0x0, 0x0, 0x800, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x70bd26, 0x0, {0x2, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2900}}, 0x1c}}, 0x8c0)

0s ago: executing program 2 (id=3491):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getpriority(0x2, 0xffffffffffffffff)
r4 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000240)='fd/3\x00')
r6 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)

kernel console output (not intermixed with test programs):

96][   T26] audit: type=1326 audit(1761786663.591:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16894 comm="syz.9.2929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1133.737031][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1133.809676][T14848] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1133.842818][T16923] loop9: detected capacity change from 0 to 256
[ 1133.983186][T16925] loop5: detected capacity change from 0 to 128
[ 1134.056799][T14848] usb 4-1: Using ep0 maxpacket: 32
[ 1134.066864][T14848] usb 4-1: config 0 has an invalid interface number: 59 but max is 0
[ 1134.081431][T14848] usb 4-1: config 0 has no interface number 0
[ 1134.095153][T14848] usb 4-1: config 0 interface 59 has no altsetting 0
[ 1134.107184][T14848] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1134.123827][T14848] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1134.141574][T14848] usb 4-1: Product: syz
[ 1134.151198][T14848] usb 4-1: Manufacturer: syz
[ 1134.161216][T14848] usb 4-1: SerialNumber: syz
[ 1134.179041][T15389] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1134.179663][T14848] usb 4-1: config 0 descriptor??
[ 1134.208225][T14848] smsc75xx v1.0.0
[ 1134.216671][T14848] smsc75xx 4-1:0.59 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[ 1134.235186][T14848] smsc75xx: probe of 4-1:0.59 failed with error -22
[ 1135.109373][T16930] loop1: detected capacity change from 0 to 16
[ 1135.248820][T16930] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1135.414621][T16922] erofs: (device loop1): z_erofs_readahead: readahead error at page 2 @ nid 89
[ 1135.482624][T16922] erofs: (device loop1): z_erofs_readahead: readahead error at page 1 @ nid 89
[ 1135.977274][   T26] kauditd_printk_skb: 6 callbacks suppressed
[ 1135.977286][   T26] audit: type=1800 audit(1761786666.611:623): pid=16922 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2934" name="file2" dev="loop1" ino=89 res=0 errno=0
[ 1136.005140][ T4283] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096]
[ 1136.361907][T16939] loop5: detected capacity change from 0 to 256
[ 1136.503787][T16939] FAT-fs (loop5): Directory bread(block 64) failed
[ 1136.517046][T16939] FAT-fs (loop5): Directory bread(block 65) failed
[ 1136.527051][T16939] FAT-fs (loop5): Directory bread(block 66) failed
[ 1136.533627][T16939] FAT-fs (loop5): Directory bread(block 67) failed
[ 1136.611986][T16942] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1136.627202][T16939] FAT-fs (loop5): Directory bread(block 68) failed
[ 1136.636877][T16939] FAT-fs (loop5): Directory bread(block 69) failed
[ 1136.657740][T16939] FAT-fs (loop5): Directory bread(block 70) failed
[ 1136.678330][T16939] FAT-fs (loop5): Directory bread(block 71) failed
[ 1136.706496][T16939] FAT-fs (loop5): Directory bread(block 72) failed
[ 1136.742054][T16939] FAT-fs (loop5): Directory bread(block 73) failed
[ 1136.823822][T16947] loop1: detected capacity change from 0 to 512
[ 1136.962643][T16947] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 1137.280505][T14848] usb 4-1: USB disconnect, device number 8
[ 1139.485139][T16967] loop1: detected capacity change from 0 to 4096
[ 1139.511466][T16967] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1139.959618][   T26] audit: type=1326 audit(1761786670.561:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec2b8efc9 code=0x7ffc0000
[ 1140.410713][T16967] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1140.419213][T16967] System zones: 0-5
[ 1140.423643][   T26] audit: type=1326 audit(1761786670.561:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec2b8efc9 code=0x7ffc0000
[ 1140.446271][   T26] audit: type=1326 audit(1761786670.561:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5ec2b8efc9 code=0x7ffc0000
[ 1140.468804][   T26] audit: type=1326 audit(1761786670.571:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec2b8efc9 code=0x7ffc0000
[ 1140.522293][T16967] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1140.558483][T16978] loop9: detected capacity change from 0 to 4096
[ 1140.586195][T16978] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1140.711595][   T26] audit: type=1326 audit(1761786670.571:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec2b8efc9 code=0x7ffc0000
[ 1140.758707][   T26] audit: type=1326 audit(1761786670.581:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5ec2b8d810 code=0x7ffc0000
[ 1140.765121][T16978] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1140.787002][   T26] audit: type=1326 audit(1761786670.581:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec2b8efc9 code=0x7ffc0000
[ 1140.828961][   T26] audit: type=1326 audit(1761786670.581:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16966 comm="syz.3.2944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec2b8efc9 code=0x7ffc0000
[ 1140.876730][   T26] audit: type=1326 audit(1761786671.501:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16965 comm="syz.1.2943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1141.084429][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1141.254441][T16988] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1142.708826][T12245] EXT4-fs (loop9): unmounting filesystem.
[ 1142.826739][ T4269] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1142.947124][T17008] loop9: detected capacity change from 0 to 128
[ 1143.031489][T17008] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[ 1143.066779][ T4269] usb 6-1: Using ep0 maxpacket: 32
[ 1143.082993][ T4269] usb 6-1: config 0 has an invalid interface number: 59 but max is 0
[ 1143.107724][T17008] ext4 filesystem being mounted at /174/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1143.135540][ T4269] usb 6-1: config 0 has no interface number 0
[ 1143.170874][ T4269] usb 6-1: config 0 interface 59 has no altsetting 0
[ 1143.234148][ T4269] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1143.259594][ T4269] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1143.273102][ T4269] usb 6-1: Product: syz
[ 1143.277352][ T4269] usb 6-1: Manufacturer: syz
[ 1143.282300][ T4269] usb 6-1: SerialNumber: syz
[ 1143.326109][ T4269] usb 6-1: config 0 descriptor??
[ 1143.387209][T17019] netlink: 'syz.4.2953': attribute type 3 has an invalid length.
[ 1143.394871][ T4269] smsc75xx v1.0.0
[ 1143.406667][ T4269] smsc75xx 6-1:0.59 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[ 1143.430151][ T4269] smsc75xx: probe of 6-1:0.59 failed with error -22
[ 1144.177617][T12245] EXT4-fs (loop9): unmounting filesystem.
[ 1144.314264][T17029] loop3: detected capacity change from 0 to 256
[ 1144.535177][T17029] FAT-fs (loop3): Directory bread(block 64) failed
[ 1144.623003][T17029] FAT-fs (loop3): Directory bread(block 65) failed
[ 1144.646337][T17029] FAT-fs (loop3): Directory bread(block 66) failed
[ 1144.653957][T17035] fuse: Bad value for 'fd'
[ 1144.776891][T17029] FAT-fs (loop3): Directory bread(block 67) failed
[ 1144.792114][T17029] FAT-fs (loop3): Directory bread(block 68) failed
[ 1144.822896][T17029] FAT-fs (loop3): Directory bread(block 69) failed
[ 1144.843072][T17029] FAT-fs (loop3): Directory bread(block 70) failed
[ 1145.584856][T17029] FAT-fs (loop3): Directory bread(block 71) failed
[ 1145.637031][T17029] FAT-fs (loop3): Directory bread(block 72) failed
[ 1145.643618][T17029] FAT-fs (loop3): Directory bread(block 73) failed
[ 1145.677990][ T4333] usb 6-1: USB disconnect, device number 17
[ 1146.295589][T17044] loop9: detected capacity change from 0 to 4096
[ 1146.308828][T17044] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1147.594059][T17044] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1147.626146][T17044] System zones: 0-5
[ 1147.678163][T17044] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1148.016174][   T26] kauditd_printk_skb: 10 callbacks suppressed
[ 1148.023020][   T26] audit: type=1326 audit(1761786678.641:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1148.048515][   T26] audit: type=1326 audit(1761786678.641:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1148.084013][   T26] audit: type=1326 audit(1761786678.641:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1148.410062][T12245] EXT4-fs (loop9): unmounting filesystem.
[ 1148.426745][   T26] audit: type=1326 audit(1761786678.641:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1148.456462][   T26] audit: type=1326 audit(1761786678.641:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1148.541775][T17072] loop1: detected capacity change from 0 to 1024
[ 1148.548871][T17072] EXT4-fs: inline encryption not supported
[ 1148.554766][T17072] EXT4-fs: Ignoring removed bh option
[ 1149.155388][   T26] audit: type=1326 audit(1761786678.641:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1149.188450][   T26] audit: type=1326 audit(1761786678.651:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1149.220472][T17072] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1149.231445][T17072] EXT4-fs (loop1): unmounting filesystem.
[ 1149.590703][T17085] fuse: Bad value for 'fd'
[ 1149.872224][   T26] audit: type=1326 audit(1761786678.651:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1150.047037][T17088] loop1: detected capacity change from 0 to 16
[ 1150.061504][   T26] audit: type=1326 audit(1761786678.651:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1150.086488][T17088] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1150.094017][   T26] audit: type=1326 audit(1761786678.651:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17041 comm="syz.9.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8838f8efc9 code=0x7ffc0000
[ 1150.276899][T17095] loop9: detected capacity change from 0 to 256
[ 1150.318740][T17095] FAT-fs (loop9): Directory bread(block 64) failed
[ 1150.331979][T17095] FAT-fs (loop9): Directory bread(block 65) failed
[ 1150.395945][T17095] FAT-fs (loop9): Directory bread(block 66) failed
[ 1150.482884][T17101] syz.1.2972: attempt to access beyond end of device
[ 1150.482884][T17101] loop1: rw=524288, sector=34359738360, nr_sectors = 32 limit=16
[ 1150.497499][T17101] syz.1.2972: attempt to access beyond end of device
[ 1150.497499][T17101] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1150.514841][T17101] syz.1.2972: attempt to access beyond end of device
[ 1150.514841][T17101] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1150.534698][T17095] FAT-fs (loop9): Directory bread(block 67) failed
[ 1150.697576][T17095] FAT-fs (loop9): Directory bread(block 68) failed
[ 1150.918478][T17095] FAT-fs (loop9): Directory bread(block 69) failed
[ 1150.925275][T17095] FAT-fs (loop9): Directory bread(block 70) failed
[ 1151.845267][T17095] FAT-fs (loop9): Directory bread(block 71) failed
[ 1151.966612][ T4333] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[ 1152.009258][T17095] FAT-fs (loop9): Directory bread(block 72) failed
[ 1152.059797][T17095] FAT-fs (loop9): Directory bread(block 73) failed
[ 1152.175647][ T4333] usb 6-1: Using ep0 maxpacket: 32
[ 1152.182957][ T4333] usb 6-1: config 0 has an invalid interface number: 59 but max is 0
[ 1152.352704][ T4333] usb 6-1: config 0 has no interface number 0
[ 1152.366638][ T4333] usb 6-1: config 0 interface 59 has no altsetting 0
[ 1153.172568][   T26] kauditd_printk_skb: 2 callbacks suppressed
[ 1153.172586][   T26] audit: type=1326 audit(1761786683.451:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1153.247143][   T26] audit: type=1326 audit(1761786683.451:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1153.270857][   T26] audit: type=1326 audit(1761786683.451:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1153.293449][   T26] audit: type=1326 audit(1761786683.451:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1153.316305][   T26] audit: type=1326 audit(1761786683.451:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1153.341325][   T26] audit: type=1326 audit(1761786683.461:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1153.486492][   T26] audit: type=1326 audit(1761786683.461:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1153.620771][   T26] audit: type=1326 audit(1761786683.461:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1154.087066][ T4333] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1154.108624][ T4333] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1154.129205][ T4333] usb 6-1: Product: syz
[ 1154.133562][   T26] audit: type=1326 audit(1761786683.461:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1155.814548][ T4333] usb 6-1: config 0 descriptor??
[ 1155.827389][ T4333] usb 6-1: can't set config #0, error -71
[ 1155.833575][   T26] audit: type=1326 audit(1761786683.461:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17107 comm="syz.4.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1155.993270][ T4333] usb 6-1: USB disconnect, device number 18
[ 1156.289515][T17147] fuse: Bad value for 'fd'
[ 1157.356080][T17156] netlink: 60 bytes leftover after parsing attributes in process `syz.9.2992'.
[ 1157.406913][T17156] unsupported nlmsg_type 40
[ 1157.415307][T17162] loop5: detected capacity change from 0 to 256
[ 1157.545366][T17162] FAT-fs (loop5): Directory bread(block 64) failed
[ 1157.612063][T17162] FAT-fs (loop5): Directory bread(block 65) failed
[ 1157.620196][T17162] FAT-fs (loop5): Directory bread(block 66) failed
[ 1157.633576][T17168] loop3: detected capacity change from 0 to 512
[ 1157.637696][T17162] FAT-fs (loop5): Directory bread(block 67) failed
[ 1157.696811][T17162] FAT-fs (loop5): Directory bread(block 68) failed
[ 1157.703409][T17162] FAT-fs (loop5): Directory bread(block 69) failed
[ 1157.712891][T17164] loop1: detected capacity change from 0 to 4096
[ 1157.792762][T17168] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1157.803633][T17162] FAT-fs (loop5): Directory bread(block 70) failed
[ 1157.820724][T17164] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1157.836761][T17162] FAT-fs (loop5): Directory bread(block 71) failed
[ 1157.846969][T17162] FAT-fs (loop5): Directory bread(block 72) failed
[ 1157.853542][T17162] FAT-fs (loop5): Directory bread(block 73) failed
[ 1157.891304][T17164] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1157.934791][T17168] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[ 1157.970282][T17164] System zones: 0-5
[ 1158.144619][T17164] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1159.889980][   T26] kauditd_printk_skb: 1 callbacks suppressed
[ 1159.889995][   T26] audit: type=1326 audit(1761786689.961:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1159.944398][T17168] EXT4-fs (loop3): 1 truncate cleaned up
[ 1159.964041][T17168] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1160.098804][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1160.184098][   T26] audit: type=1326 audit(1761786689.961:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1160.212777][   T26] audit: type=1326 audit(1761786690.231:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1160.311428][   T26] audit: type=1326 audit(1761786690.231:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1160.481268][   T26] audit: type=1326 audit(1761786690.231:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1161.232511][   T26] audit: type=1326 audit(1761786690.511:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1161.344913][   T26] audit: type=1326 audit(1761786690.511:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1161.741706][   T26] audit: type=1326 audit(1761786690.511:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1161.823673][T17206] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3004'.
[ 1162.179483][ T4269] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[ 1162.187346][   T26] audit: type=1326 audit(1761786690.521:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1162.325861][   T26] audit: type=1326 audit(1761786690.521:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17163 comm="syz.1.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1162.397009][ T4269] usb 6-1: Using ep0 maxpacket: 32
[ 1162.404010][ T4269] usb 6-1: config 0 has an invalid interface number: 59 but max is 0
[ 1162.436681][ T4269] usb 6-1: config 0 has no interface number 0
[ 1162.442827][ T4269] usb 6-1: config 0 interface 59 has no altsetting 0
[ 1162.509409][ T4269] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1162.564410][ T4269] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1162.610696][ T4269] usb 6-1: Product: syz
[ 1162.614917][ T4269] usb 6-1: Manufacturer: syz
[ 1162.672757][ T4269] usb 6-1: SerialNumber: syz
[ 1162.701231][ T4269] usb 6-1: config 0 descriptor??
[ 1162.749569][ T4269] smsc75xx v1.0.0
[ 1162.774952][ T4269] smsc75xx 6-1:0.59 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[ 1162.813312][ T4269] smsc75xx: probe of 6-1:0.59 failed with error -22
[ 1162.917405][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1163.127855][T17225] loop1: detected capacity change from 0 to 16
[ 1163.210182][T17225] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1163.590770][T17230] 9pnet: Could not find request transport: fd0x0000000000000003
[ 1163.603009][T17233] syz.1.3007: attempt to access beyond end of device
[ 1163.603009][T17233] loop1: rw=524288, sector=34359738360, nr_sectors = 32 limit=16
[ 1163.873806][T17233] syz.1.3007: attempt to access beyond end of device
[ 1163.873806][T17233] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1164.926651][   T14] usb 6-1: USB disconnect, device number 19
[ 1165.244275][T17223] loop3: detected capacity change from 0 to 40427
[ 1166.929787][T17223] F2FS-fs (loop3): invalid crc value
[ 1166.958053][T17223] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-12)
[ 1167.336366][T17265] binder: 17257:17265 unknown command 1074553619
[ 1167.342985][T17265] binder: 17257:17265 ioctl c0306201 200000000540 returned -22
[ 1167.356046][T17265] binder: 17257:17265 unknown command 1074291477
[ 1167.362576][T17265] binder: 17257:17265 ioctl c0306201 200000000640 returned -22
[ 1167.990135][T17276] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1168.093989][T17280] loop9: detected capacity change from 0 to 256
[ 1168.226793][T17280] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1168.296805][T17280] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[ 1169.183251][T17280] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000ff98, chksum : 0x7a885448, utbl_chksum : 0xe619d30d)
[ 1169.496753][   T14] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[ 1169.786726][   T14] usb 2-1: Using ep0 maxpacket: 32
[ 1170.717061][   T14] usb 2-1: config 0 has an invalid interface number: 59 but max is 0
[ 1170.725753][   T14] usb 2-1: config 0 has no interface number 0
[ 1170.792422][   T14] usb 2-1: config 0 interface 59 has no altsetting 0
[ 1171.016674][T17316] loop9: detected capacity change from 0 to 256
[ 1175.131900][T17316] FAT-fs (loop9): Directory bread(block 64) failed
[ 1175.138558][T17316] FAT-fs (loop9): Directory bread(block 65) failed
[ 1175.145199][T17316] FAT-fs (loop9): Directory bread(block 66) failed
[ 1175.152241][T17316] FAT-fs (loop9): Directory bread(block 67) failed
[ 1175.159208][T17316] FAT-fs (loop9): Directory bread(block 68) failed
[ 1175.165820][T17316] FAT-fs (loop9): Directory bread(block 69) failed
[ 1175.172558][T17316] FAT-fs (loop9): Directory bread(block 70) failed
[ 1175.179168][T17316] FAT-fs (loop9): Directory bread(block 71) failed
[ 1175.186702][T17316] FAT-fs (loop9): Directory bread(block 72) failed
[ 1175.193283][T17316] FAT-fs (loop9): Directory bread(block 73) failed
[ 1175.326277][   T14] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1175.339010][   T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1175.355856][   T14] usb 2-1: Product: syz
[ 1175.377886][   T14] usb 2-1: config 0 descriptor??
[ 1175.403479][   T14] usb 2-1: can't set config #0, error -71
[ 1175.453416][   T14] usb 2-1: USB disconnect, device number 4
[ 1175.584518][T17328] loop9: detected capacity change from 0 to 2048
[ 1175.734474][T17331] binder: 17320:17331 unknown command 1074553619
[ 1175.741055][T17331] binder: 17320:17331 ioctl c0306201 200000000540 returned -22
[ 1175.764523][T17331] binder: 17320:17331 unknown command 1074291477
[ 1175.771103][T17331] binder: 17320:17331 ioctl c0306201 200000000640 returned -22
[ 1176.492214][T17332] loop1: detected capacity change from 0 to 1024
[ 1176.558633][T17332] EXT4-fs (loop1): INFO: recovery required on readonly filesystem
[ 1176.566507][T17332] EXT4-fs (loop1): write access will be enabled during recovery
[ 1176.574312][T17332] EXT4-fs (loop1): barriers disabled
[ 1176.584429][T17332] JBD2: no valid journal superblock found
[ 1176.590271][T17332] EXT4-fs (loop1): error loading journal
[ 1176.773149][T17328] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[ 1176.973297][T17341] loop1: detected capacity change from 0 to 1024
[ 1177.012062][T17341] EXT4-fs: Ignoring removed i_version option
[ 1177.042601][T17341] EXT4-fs: inline encryption not supported
[ 1177.063389][T12245] EXT4-fs (loop9): unmounting filesystem.
[ 1177.074194][T17341] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1177.124734][T17341] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1177.288527][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.294929][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.507629][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1179.317920][T17362] loop3: detected capacity change from 0 to 256
[ 1179.388326][T17362] FAT-fs (loop3): Directory bread(block 64) failed
[ 1179.426759][T17362] FAT-fs (loop3): Directory bread(block 65) failed
[ 1179.433425][T17362] FAT-fs (loop3): Directory bread(block 66) failed
[ 1179.448955][T17368] loop9: detected capacity change from 0 to 512
[ 1179.476877][T17362] FAT-fs (loop3): Directory bread(block 67) failed
[ 1179.483738][T17362] FAT-fs (loop3): Directory bread(block 68) failed
[ 1179.532780][T17362] FAT-fs (loop3): Directory bread(block 69) failed
[ 1179.569381][T17368] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1179.574698][T17362] FAT-fs (loop3): Directory bread(block 70) failed
[ 1179.585525][T17362] FAT-fs (loop3): Directory bread(block 71) failed
[ 1179.594768][T17362] FAT-fs (loop3): Directory bread(block 72) failed
[ 1179.601508][T17362] FAT-fs (loop3): Directory bread(block 73) failed
[ 1179.613212][T17368] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1180.710106][T12245] EXT4-fs (loop9): unmounting filesystem.
[ 1181.012596][T17382] loop1: detected capacity change from 0 to 1024
[ 1181.019809][T17382] EXT4-fs: inline encryption not supported
[ 1181.025702][T17382] EXT4-fs: Ignoring removed bh option
[ 1181.111760][T17382] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1181.189447][T17388] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3041'.
[ 1181.226245][T17382] EXT4-fs (loop1): unmounting filesystem.
[ 1181.831459][T17393] binder: 17389:17393 unknown command 1074553619
[ 1181.837968][T17393] binder: 17389:17393 ioctl c0306201 200000000540 returned -22
[ 1181.847244][T17393] binder: 17389:17393 unknown command 1074291477
[ 1181.853609][T17393] binder: 17389:17393 ioctl c0306201 200000000640 returned -22
[ 1182.347164][ T4269] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1182.498162][T17398] loop3: detected capacity change from 0 to 1024
[ 1182.541772][ T4269] usb 10-1: Using ep0 maxpacket: 32
[ 1182.567812][ T4269] usb 10-1: config 0 has an invalid interface number: 59 but max is 0
[ 1182.624648][ T4269] usb 10-1: config 0 has no interface number 0
[ 1182.652066][ T4269] usb 10-1: config 0 interface 59 has no altsetting 0
[ 1182.714467][ T4269] usb 10-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1182.752526][T17402] loop1: detected capacity change from 0 to 1024
[ 1182.761649][ T4269] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1182.974216][T17402] EXT4-fs (loop1): INFO: recovery required on readonly filesystem
[ 1182.976712][ T4269] usb 10-1: Product: syz
[ 1182.986327][ T4269] usb 10-1: Manufacturer: syz
[ 1183.002786][T17402] EXT4-fs (loop1): write access will be enabled during recovery
[ 1183.131829][T17402] EXT4-fs (loop1): barriers disabled
[ 1183.344011][T17402] JBD2: no valid journal superblock found
[ 1183.577042][T17402] EXT4-fs (loop1): error loading journal
[ 1183.676785][ T4269] usb 10-1: SerialNumber: syz
[ 1183.684812][ T4269] usb 10-1: config 0 descriptor??
[ 1183.695186][ T4269] smsc75xx v1.0.0
[ 1183.750360][ T4269] smsc75xx 10-1:0.59 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[ 1183.791554][ T4269] smsc75xx: probe of 10-1:0.59 failed with error -22
[ 1183.949905][T17414] binder: BINDER_SET_CONTEXT_MGR already set
[ 1183.956487][T17414] binder: 17412:17414 ioctl 4018620d 200000000040 returned -16
[ 1183.972887][ T4269] usb 10-1: USB disconnect, device number 9
[ 1185.179582][T17429] loop3: detected capacity change from 0 to 128
[ 1185.407254][   T26] kauditd_printk_skb: 19 callbacks suppressed
[ 1185.407268][   T26] audit: type=1800 audit(1761786716.041:695): pid=17429 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3052" name="file1" dev="loop3" ino=1048701 res=0 errno=0
[ 1185.439068][T17432] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1
[ 1185.453275][T17429] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1185.476711][T17429] FAT-fs (loop3): Filesystem has been set read-only
[ 1185.483496][T17429] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1185.553172][T17429] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1185.814433][T17439] loop3: detected capacity change from 0 to 2048
[ 1185.936396][T17439] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1186.065078][T17448] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.3055: Invalid inode table block 11692674362692534836 in block_group 0
[ 1186.499119][T17448] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.3055: Invalid inode table block 11692674362692534836 in block_group 0
[ 1186.568745][T17446] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm ext4lazyinit: Invalid block bitmap block 12116098816393972337 in block_group 0
[ 1186.864070][T17448] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5929: Corrupt filesystem
[ 1187.011645][T17448] EXT4-fs error (device loop3): ext4_dirty_inode:6133: inode #12: comm syz.3.3055: mark_inode_dirty error
[ 1187.525670][T16313] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm kworker/u4:50: Invalid inode table block 11692674362692534836 in block_group 0
[ 1187.609426][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1188.139602][T17470] loop5: detected capacity change from 0 to 128
[ 1188.228311][T17468] loop3: detected capacity change from 0 to 2048
[ 1188.420769][T17468] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1188.635916][T17481] FAT-fs (loop5): error, corrupted directory (invalid entries)
[ 1188.644094][T17481] FAT-fs (loop5): Filesystem has been set read-only
[ 1188.670498][T17481] FAT-fs (loop5): error, corrupted directory (invalid entries)
[ 1189.127515][T17468] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.3062: Invalid inode table block 11692674362692534836 in block_group 0
[ 1189.180790][T17487] loop5: detected capacity change from 0 to 512
[ 1189.394699][T17487] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1189.416709][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1189.449325][T17493] loop1: detected capacity change from 0 to 512
[ 1189.483624][T17487] ext4 filesystem being mounted at /446/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1189.499998][T17493] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1189.507128][T17493] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1189.641373][T17493] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.3066: bad orphan inode 131083
[ 1189.710885][T17493] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1189.742765][T17496] overlayfs: failed to clone upperpath
[ 1189.781538][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1189.821476][T17493] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #12: block 255: comm syz.1.3066: bad entry in directory: inode out of bounds - offset=12, inode=7929858, rec_len=12, size=1024 fake=1
[ 1190.021211][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1190.269985][T17510] loop5: detected capacity change from 0 to 16
[ 1190.341984][T17510] erofs: (device loop5): mounted with root inode @ nid 36.
[ 1190.351250][T17510] erofs: (device loop5): z_erofs_readahead: readahead error at page 2 @ nid 89
[ 1190.360328][T17510] erofs: (device loop5): z_erofs_readahead: readahead error at page 1 @ nid 89
[ 1190.380570][ T4283] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096]
[ 1190.391758][T17510] erofs: (device loop5): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096]
[ 1190.486635][   T26] audit: type=1800 audit(1761786721.031:696): pid=17510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3068" name="file2" dev="loop5" ino=89 res=0 errno=0
[ 1190.756419][T17515] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3071'.
[ 1191.007870][T17517] loop1: detected capacity change from 0 to 1024
[ 1191.034831][T17517] EXT4-fs (loop1): INFO: recovery required on readonly filesystem
[ 1191.042837][T17517] EXT4-fs (loop1): write access will be enabled during recovery
[ 1191.050624][T17517] EXT4-fs (loop1): barriers disabled
[ 1191.059696][T17517] JBD2: no valid journal superblock found
[ 1191.065484][T17517] EXT4-fs (loop1): error loading journal
[ 1192.150814][T17536] netlink: 80 bytes leftover after parsing attributes in process `syz.5.3075'.
[ 1192.171354][T17536] loop5: detected capacity change from 0 to 8
[ 1192.288471][T17536] SQUASHFS error: Unable to read inode 0x11f
[ 1193.186363][T17548] loop5: detected capacity change from 0 to 256
[ 1193.226198][T17548] exfat: Deprecated parameter 'namecase'
[ 1193.259537][T17548] exfat: Bad value for 'gid'
[ 1193.960269][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1194.054778][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1194.372944][T17562] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1194.614161][T17565] loop5: detected capacity change from 0 to 1024
[ 1194.628614][T17565] EXT4-fs (loop5): INFO: recovery required on readonly filesystem
[ 1194.636491][T17565] EXT4-fs (loop5): write access will be enabled during recovery
[ 1194.644456][T17565] EXT4-fs (loop5): barriers disabled
[ 1194.650067][T17565] JBD2: no valid journal superblock found
[ 1194.655816][T17565] EXT4-fs (loop5): error loading journal
[ 1194.839935][T17570] loop5: detected capacity change from 0 to 1024
[ 1194.902317][T17570] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1194.966766][T17570] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1195.020461][T17570] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #11: comm syz.5.3084: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[ 1195.214624][T17570] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.3084: couldn't read orphan inode 11 (err -117)
[ 1195.312577][T17570] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1195.378348][T17570] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:477: comm syz.5.3084: Invalid block bitmap block 0 in block_group 0
[ 1195.426107][T17570] Quota error (device loop5): write_blk: dquota write failed
[ 1195.440880][T17570] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[ 1195.497798][T17570] EXT4-fs error (device loop5): ext4_acquire_dquot:6809: comm syz.5.3084: Failed to acquire dquot type 0
[ 1195.625437][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1195.928809][ T4281] Bluetooth: hci5: command 0x1003 tx timeout
[ 1195.928858][ T4283] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1198.730471][T17614] fuse: Bad value for 'fd'
[ 1199.640415][T17619] loop3: detected capacity change from 0 to 16
[ 1199.664444][T17619] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1200.963744][T17628] syz.3.3097: attempt to access beyond end of device
[ 1200.963744][T17628] loop3: rw=524288, sector=34359738360, nr_sectors = 32 limit=16
[ 1201.133033][T17631] loop9: detected capacity change from 0 to 512
[ 1201.156798][T17628] syz.3.3097: attempt to access beyond end of device
[ 1201.156798][T17628] loop3: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1201.172354][   T26] audit: type=1800 audit(1761786731.801:697): pid=17628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3097" name="file1" dev="loop3" ino=86 res=0 errno=0
[ 1201.189561][T17628] syz.3.3097: attempt to access beyond end of device
[ 1201.189561][T17628] loop3: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1201.740276][T17638] loop5: detected capacity change from 0 to 1024
[ 1203.061089][T17657] loop1: detected capacity change from 0 to 256
[ 1203.296063][T17657] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1205.679500][T17665] loop1: detected capacity change from 0 to 128
[ 1206.882553][T17666] tap0: tun_chr_ioctl cmd 35108
[ 1206.888113][T17666] tap0: tun_chr_ioctl cmd 1074025677
[ 1206.893567][T17666] tap0: linktype set to 1
[ 1206.952230][T17665] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1206.965559][T17665] ext4 filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1207.230990][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1207.859348][T17696] loop5: detected capacity change from 0 to 256
[ 1207.947050][T17696] FAT-fs (loop5): Directory bread(block 64) failed
[ 1207.995306][T17696] FAT-fs (loop5): Directory bread(block 65) failed
[ 1208.682285][T17696] FAT-fs (loop5): Directory bread(block 66) failed
[ 1208.725806][T17696] FAT-fs (loop5): Directory bread(block 67) failed
[ 1208.857557][T17701] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1
[ 1208.932477][T17696] FAT-fs (loop5): Directory bread(block 68) failed
[ 1208.955000][T17696] FAT-fs (loop5): Directory bread(block 69) failed
[ 1208.976857][T17696] FAT-fs (loop5): Directory bread(block 70) failed
[ 1209.001034][T17696] FAT-fs (loop5): Directory bread(block 71) failed
[ 1209.020329][T17696] FAT-fs (loop5): Directory bread(block 72) failed
[ 1209.030972][T17696] FAT-fs (loop5): Directory bread(block 73) failed
[ 1209.756750][T17719] loop5: detected capacity change from 0 to 1024
[ 1209.764801][T17719] EXT4-fs: inline encryption not supported
[ 1209.770916][T17719] EXT4-fs: Ignoring removed bh option
[ 1211.118345][T17719] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1211.130190][T17719] EXT4-fs (loop5): unmounting filesystem.
[ 1212.636156][T17744] loop3: detected capacity change from 0 to 736
[ 1213.631549][T17763] loop3: detected capacity change from 0 to 256
[ 1213.735444][T17764] fuse: Bad value for 'fd'
[ 1214.119564][T17763] FAT-fs (loop3): Directory bread(block 64) failed
[ 1214.162636][T17763] FAT-fs (loop3): Directory bread(block 65) failed
[ 1214.194063][T17763] FAT-fs (loop3): Directory bread(block 66) failed
[ 1214.234916][T17763] FAT-fs (loop3): Directory bread(block 67) failed
[ 1214.471317][T17763] FAT-fs (loop3): Directory bread(block 68) failed
[ 1214.570695][T12788] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1214.755031][T17763] FAT-fs (loop3): Directory bread(block 69) failed
[ 1214.975193][T17763] FAT-fs (loop3): Directory bread(block 70) failed
[ 1214.996697][T17763] FAT-fs (loop3): Directory bread(block 71) failed
[ 1215.028271][T17778] loop5: detected capacity change from 0 to 128
[ 1215.043277][T17763] FAT-fs (loop3): Directory bread(block 72) failed
[ 1215.058683][T17778] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 720575940379279379)!
[ 1215.063500][T17763] FAT-fs (loop3): Directory bread(block 73) failed
[ 1215.126767][T17778] EXT4-fs (loop5): group descriptors corrupted!
[ 1215.296525][T17778] loop5: detected capacity change from 0 to 512
[ 1215.465895][T17778] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1215.618369][T17778] ext4 filesystem being mounted at /463/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1215.766252][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1215.961021][T17803] loop5: detected capacity change from 0 to 1024
[ 1216.486813][ T4281] Bluetooth: hci5: command 0x1003 tx timeout
[ 1216.486858][ T4282] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1216.684136][T12788] hfsplus: b-tree write err: -5, ino 4
[ 1216.709533][T17816] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3140'.
[ 1216.744461][T17816] tc_dump_action: action bad kind
[ 1217.903615][T17830] loop1: detected capacity change from 0 to 128
[ 1218.651654][T17830] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1218.664144][T17830] ext4 filesystem being mounted at /72/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1218.761615][T12788] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.312338][ T4282] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1219.540506][T12788] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.540797][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1219.715477][T17845] loop1: detected capacity change from 0 to 512
[ 1219.774754][T12788] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.820987][T17845] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1219.897753][T17845] ext4 filesystem being mounted at /73/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1220.297390][T12788] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1220.448663][T17863] 9pnet_fd: Insufficient options for proto=fd
[ 1220.637409][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1220.904568][T14389] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1221.020233][T14389] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1221.605125][T17879] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1221.616095][T17879] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1221.630495][T17879] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1221.639403][T17879] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1221.647151][T17879] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1221.654413][T17879] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1221.700423][ T4281] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1221.708612][ T4281] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1221.716026][ T4281] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1221.727566][ T4281] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1221.735276][ T4281] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1221.743040][ T4281] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1222.344181][T17875] chnl_net:caif_netlink_parms(): no params data found
[ 1222.702860][T17875] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1222.733102][T17875] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1222.741935][T17875] device bridge_slave_0 entered promiscuous mode
[ 1222.757301][T17875] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1222.764532][T17875] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1222.785282][T17875] device bridge_slave_1 entered promiscuous mode
[ 1222.862062][T17875] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1222.881360][T17875] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1222.960619][T17875] team0: Port device team_slave_0 added
[ 1222.974341][T17875] team0: Port device team_slave_1 added
[ 1222.981194][ T4282] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1223.779327][T17879] Bluetooth: hci5: command 0x0409 tx timeout
[ 1223.805703][T17913] loop1: detected capacity change from 0 to 128
[ 1223.845456][T17914] fuse: Bad value for 'fd'
[ 1224.352985][   T26] audit: type=1800 audit(1761786754.981:698): pid=17913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3161" name="file1" dev="loop1" ino=1048707 res=0 errno=0
[ 1224.382344][T16282] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1224.400955][T17913] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1224.438981][T17913] FAT-fs (loop1): Filesystem has been set read-only
[ 1224.474105][T17913] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1224.518780][T17918] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1224.623319][T17875] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1224.639714][T17875] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1224.684031][T17875] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1224.818741][T17924] loop1: detected capacity change from 0 to 512
[ 1224.850167][T17875] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1224.992209][T17875] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1225.206516][T17924] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1225.443598][T17924] ext4 filesystem being mounted at /79/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1225.525078][T17875] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1225.594815][T17875] device hsr_slave_0 entered promiscuous mode
[ 1225.611984][T17875] device hsr_slave_1 entered promiscuous mode
[ 1225.627957][T17875] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1225.635713][T17875] Cannot create hsr debugfs directory
[ 1225.786163][T12788] device hsr_slave_0 left promiscuous mode
[ 1225.792909][T12788] device hsr_slave_1 left promiscuous mode
[ 1225.799464][T12788] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1225.807258][T12788] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1225.831890][T12788] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1225.856336][T12788] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1225.867266][T12788] device bridge_slave_1 left promiscuous mode
[ 1225.874040][T12788] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1225.890790][T12788] device bridge_slave_0 left promiscuous mode
[ 1225.896057][ T4282] Bluetooth: hci5: command 0x041b tx timeout
[ 1225.901699][T12788] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1225.914619][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1225.958889][T12788] device veth1_macvtap left promiscuous mode
[ 1225.965045][T12788] device veth0_macvtap left promiscuous mode
[ 1225.971553][T12788] device veth1_vlan left promiscuous mode
[ 1225.978189][T12788] device veth0_vlan left promiscuous mode
[ 1226.404582][T17879] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1226.424005][ T4281] Bluetooth: hci4: command 0x1003 tx timeout
[ 1227.045246][T12788] team0 (unregistering): Port device team_slave_1 removed
[ 1227.155355][T12788] team0 (unregistering): Port device team_slave_0 removed
[ 1227.271883][T12788] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1227.387971][T12788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1229.086765][T17879] Bluetooth: hci5: command 0x040f tx timeout
[ 1229.626144][T17955] loop3: detected capacity change from 0 to 164
[ 1229.921886][T12788] bond0 (unregistering): Released all slaves
[ 1230.071737][T17958] fuse: Bad value for 'fd'
[ 1231.598102][T17879] Bluetooth: hci5: command 0x0419 tx timeout
[ 1232.071067][T17989] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1
[ 1232.076857][   T14] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1232.286804][   T14] usb 4-1: Using ep0 maxpacket: 32
[ 1232.297002][   T14] usb 4-1: config 0 has an invalid interface number: 59 but max is 0
[ 1232.311569][   T14] usb 4-1: config 0 has no interface number 0
[ 1232.326491][   T14] usb 4-1: config 0 interface 59 has no altsetting 0
[ 1232.342885][   T14] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1232.353853][   T14] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1232.362083][   T14] usb 4-1: Product: syz
[ 1232.367256][   T14] usb 4-1: Manufacturer: syz
[ 1232.372822][   T14] usb 4-1: SerialNumber: syz
[ 1232.380266][   T14] usb 4-1: config 0 descriptor??
[ 1232.398450][   T14] smsc75xx v1.0.0
[ 1232.403006][   T14] smsc75xx 4-1:0.59 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[ 1232.413562][   T14] smsc75xx: probe of 4-1:0.59 failed with error -22
[ 1234.086920][T17998] binder: 17992:17998 unknown command 1074553619
[ 1234.093450][T17998] binder: 17992:17998 ioctl c0306201 200000000540 returned -22
[ 1234.244182][T17998] binder: 17992:17998 unknown command 1074291477
[ 1234.250822][T17998] binder: 17992:17998 ioctl c0306201 200000000640 returned -22
[ 1234.766098][T18012] loop5: detected capacity change from 0 to 16
[ 1234.785525][T18012] erofs: (device loop5): mounted with root inode @ nid 36.
[ 1235.206632][T18018] syz.5.3181: attempt to access beyond end of device
[ 1235.206632][T18018] loop5: rw=524288, sector=34359738360, nr_sectors = 32 limit=16
[ 1235.232356][T18018] syz.5.3181: attempt to access beyond end of device
[ 1235.232356][T18018] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1235.265083][T18019] fuse: Bad value for 'fd'
[ 1235.270466][T18018] syz.5.3181: attempt to access beyond end of device
[ 1235.270466][T18018] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1235.316123][   T26] audit: type=1800 audit(1761786765.881:699): pid=18018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3181" name="file1" dev="loop5" ino=86 res=0 errno=0
[ 1235.779472][ T8315] usb 4-1: USB disconnect, device number 9
[ 1236.272142][T17875] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1236.314022][T18039] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1236.442485][T17875] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1236.455746][T18044] xt_bpf: check failed: parse error
[ 1238.807555][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.813915][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.849591][T17875] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1239.048653][T17875] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1240.247204][T17875] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1241.063529][T17875] 8021q: adding VLAN 0 to HW filter on device team0
[ 1241.105232][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1241.118253][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1241.182388][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1241.203341][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1241.232553][T12788] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1241.239773][T12788] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1241.285054][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1241.309662][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1241.335221][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1241.535924][T12788] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1241.543138][T12788] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1241.552140][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1241.575100][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1241.584123][T18082] fuse: Bad value for 'fd'
[ 1241.609557][T18084] loop1: detected capacity change from 0 to 128
[ 1241.637440][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1241.703022][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1241.718090][   T26] audit: type=1800 audit(1761786772.351:700): pid=18084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3198" name="file1" dev="loop1" ino=1048708 res=0 errno=0
[ 1241.749379][T18084] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1241.750380][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1241.793951][T18084] FAT-fs (loop1): Filesystem has been set read-only
[ 1241.819922][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1241.829028][T18084] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1241.834531][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1241.875470][T18089] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1241.944643][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1241.988334][T17875] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1242.023823][T17875] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1242.045732][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1242.081766][ T7971] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1242.087311][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1242.097647][T12788] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1242.285851][T18098] loop1: detected capacity change from 0 to 4096
[ 1242.334082][T18098] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1242.388288][   T26] audit: type=1800 audit(1761786773.021:701): pid=18098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3199" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1242.564960][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1242.980320][ T7967] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1243.465085][ T7967] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1244.814858][T17879] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1244.918597][T17875] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1245.796453][ T7967] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1245.903573][ T7967] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1245.970174][T18132] loop5: detected capacity change from 0 to 128
[ 1246.954475][T17875] device veth0_vlan entered promiscuous mode
[ 1246.967223][T18132] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1246.976088][T18132] ext4 filesystem being mounted at /476/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1247.024083][T15178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1247.044807][T18134] binder_alloc: 18122: binder_alloc_buf, no vma
[ 1247.046121][T15178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1247.222408][T15178] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1247.231676][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1247.238718][T15178] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1247.325019][T17875] device veth1_vlan entered promiscuous mode
[ 1247.467243][ T7967] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1247.477896][ T7967] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1247.598189][T17875] device veth0_macvtap entered promiscuous mode
[ 1247.734061][T18146] loop5: detected capacity change from 0 to 1024
[ 1248.255832][T17875] device veth1_macvtap entered promiscuous mode
[ 1248.480095][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1248.490778][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1248.500732][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1248.512498][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1248.526992][T18146] EXT4-fs (loop5): INFO: recovery required on readonly filesystem
[ 1248.534851][T18146] EXT4-fs (loop5): write access will be enabled during recovery
[ 1248.542634][T18146] EXT4-fs (loop5): barriers disabled
[ 1248.548069][T18146] JBD2: no valid journal superblock found
[ 1248.553821][T18146] EXT4-fs (loop5): error loading journal
[ 1248.560160][   T26] audit: type=1326 audit(1761786779.191:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1248.561446][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1248.600479][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1248.611200][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1248.622017][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1248.634224][T17875] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1248.643769][T16301] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1248.644502][   T26] audit: type=1326 audit(1761786779.191:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1248.670229][T16301] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1248.810054][T16301] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1248.857500][T16301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1248.876939][   T26] audit: type=1326 audit(1761786779.191:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1248.940844][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1248.957113][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1248.994411][   T26] audit: type=1326 audit(1761786779.191:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1249.038118][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1249.077803][   T26] audit: type=1326 audit(1761786779.191:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1249.091189][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1249.101513][   T26] audit: type=1326 audit(1761786779.191:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1249.174316][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1249.398580][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1249.496162][   T26] audit: type=1326 audit(1761786779.191:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1249.565729][T17875] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1249.726871][T17875] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1249.759383][T17875] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1249.768488][T16301] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1249.770178][   T26] audit: type=1326 audit(1761786779.191:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1249.801057][   T26] audit: type=1326 audit(1761786779.221:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1249.811474][T16301] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1249.823680][   T26] audit: type=1326 audit(1761786779.221:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18138 comm="syz.4.3208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1249.910650][T17875] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1249.927453][T17875] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1249.945981][T17875] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1249.964466][T17875] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1250.427917][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1250.466871][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1250.558219][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1250.612362][T15179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1250.756597][T15179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1250.782539][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1253.037661][T18184] fuse: Bad value for 'fd'
[ 1254.133224][T18209] loop3: detected capacity change from 0 to 1024
[ 1255.495840][T18209] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1256.689630][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1257.136687][T11350] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[ 1257.200964][T18234] binder: 18230:18234 unknown command 1074553619
[ 1257.208307][T18234] binder: 18230:18234 ioctl c0306201 200000000540 returned -22
[ 1257.216799][T18234] binder: 18230:18234 unknown command 1074291477
[ 1257.223167][T18234] binder: 18230:18234 ioctl c0306201 200000000640 returned -22
[ 1257.678494][T11350] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1257.696513][T11350] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1257.805244][T11350] usb 4-1: config 1 has no interface number 0
[ 1257.812730][T11350] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1257.825065][T11350] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1257.841643][T11350] usb 4-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[ 1258.599553][T11350] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1258.609150][T11350] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1258.617741][T11350] usb 4-1: Product: syz
[ 1258.621922][T11350] usb 4-1: Manufacturer: syz
[ 1258.626524][T11350] usb 4-1: SerialNumber: syz
[ 1258.660894][T18229] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1258.687161][T18241] loop5: detected capacity change from 0 to 4096
[ 1258.827237][T18241] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1258.878081][T18241] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1259.046875][T18241] System zones: 0-5
[ 1259.071628][T18241] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1259.537367][   T26] kauditd_printk_skb: 1 callbacks suppressed
[ 1259.537381][   T26] audit: type=1326 audit(1761786790.121:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1260.046379][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1260.197360][   T26] audit: type=1326 audit(1761786790.121:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1260.287080][   T26] audit: type=1326 audit(1761786790.121:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1260.354993][   T26] audit: type=1326 audit(1761786790.121:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1261.803398][   T26] audit: type=1326 audit(1761786790.121:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1261.920695][T11350] cdc_ncm 4-1:1.1: bind() failure
[ 1261.947914][T11350] usb 4-1: USB disconnect, device number 10
[ 1261.995827][   T26] audit: type=1326 audit(1761786790.121:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1262.025513][   T26] audit: type=1326 audit(1761786790.121:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1262.202991][   T26] audit: type=1326 audit(1761786790.131:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1262.447055][   T26] audit: type=1326 audit(1761786790.131:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1262.516458][   T26] audit: type=1326 audit(1761786790.131:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18238 comm="syz.5.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f122f38efc9 code=0x7ffc0000
[ 1263.529945][T18303] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1263.629349][T18303] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1263.655502][T18305] loop2: detected capacity change from 0 to 256
[ 1263.677765][T18303] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1263.689777][T18303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1263.698785][T18303] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1263.746274][T18305] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[ 1263.871490][T18308] loop5: detected capacity change from 0 to 1024
[ 1266.901635][T16286] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1266.989586][T16286] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1268.917025][ T4281] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1269.392457][T18357] loop3: detected capacity change from 0 to 256
[ 1269.437887][T18357] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[ 1269.740461][T18364] binder: 18360:18364 unknown command 1074553619
[ 1269.746940][T18364] binder: 18360:18364 ioctl c0306201 200000000540 returned -22
[ 1269.759789][T18364] binder: 18360:18364 unknown command 1074291477
[ 1269.766244][T18364] binder: 18360:18364 ioctl c0306201 200000000640 returned -22
[ 1273.875919][T18389] loop5: detected capacity change from 0 to 128
[ 1274.727799][T18389] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[ 1276.215933][T18403] loop1: detected capacity change from 0 to 256
[ 1276.286690][T18403] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[ 1276.519799][T18410] syz.4.3274 uses obsolete (PF_INET,SOCK_PACKET)
[ 1278.268598][T18417] binder: 18413:18417 unknown command 1074553619
[ 1278.274978][T18417] binder: 18413:18417 ioctl c0306201 200000000540 returned -22
[ 1278.283085][T18417] binder: 18413:18417 unknown command 1074291477
[ 1278.289473][T18417] binder: 18413:18417 ioctl c0306201 200000000640 returned -22
[ 1278.995268][T17879] Bluetooth: hci4: command 0x1003 tx timeout
[ 1278.998675][ T4281] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1281.278138][T18440] loop1: detected capacity change from 0 to 128
[ 1282.829199][T18459] loop2: detected capacity change from 0 to 256
[ 1284.509552][T18459] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[ 1287.174317][T18496] loop2: detected capacity change from 0 to 128
[ 1287.864786][ T4281] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1287.874553][ T4282] Bluetooth: hci4: command 0x1003 tx timeout
[ 1292.740186][T18545] loop1: detected capacity change from 0 to 4096
[ 1292.749689][T18545] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1292.814082][T18545] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1292.989043][T18545] System zones: 0-5
[ 1293.055000][T18545] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1293.309169][   T26] kauditd_printk_skb: 13 callbacks suppressed
[ 1293.309185][   T26] audit: type=1326 audit(1761786823.941:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1293.402276][   T26] audit: type=1326 audit(1761786823.941:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1293.480179][   T26] audit: type=1326 audit(1761786823.941:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1293.510458][T18569] loop2: detected capacity change from 0 to 128
[ 1293.538900][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1293.598914][T18569] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1293.607968][T18569] ext4 filesystem being mounted at /15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1293.655548][   T26] audit: type=1326 audit(1761786823.941:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1293.973012][   T26] audit: type=1326 audit(1761786823.941:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1294.159492][   T26] audit: type=1326 audit(1761786823.941:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1294.858626][   T26] audit: type=1326 audit(1761786823.941:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1294.937503][   T26] audit: type=1326 audit(1761786823.941:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1295.155265][   T26] audit: type=1326 audit(1761786823.941:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1295.349266][   T26] audit: type=1326 audit(1761786823.941:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18544 comm="syz.1.3310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1295.744079][T17875] EXT4-fs (loop2): unmounting filesystem.
[ 1297.021247][T18613] loop5: detected capacity change from 0 to 1024
[ 1297.312718][T18619] loop3: detected capacity change from 0 to 4096
[ 1297.375420][T18619] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1297.396630][   T41] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[ 1297.439890][T18619] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1297.588446][T18627] loop2: detected capacity change from 0 to 128
[ 1297.616784][   T41] usb 6-1: Using ep0 maxpacket: 32
[ 1297.619658][T18619] System zones: 0-5
[ 1297.625272][   T41] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1297.640975][T18619] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1297.697933][   T41] usb 6-1: config 128 has an invalid interface number: 127 but max is 3
[ 1297.726610][   T41] usb 6-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[ 1297.757457][   T41] usb 6-1: config 128 has 1 interface, different from the descriptor's value: 4
[ 1297.821171][T18629] loop1: detected capacity change from 0 to 512
[ 1297.864152][T18627] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1297.892364][   T41] usb 6-1: config 128 has no interface number 0
[ 1297.900841][T18629] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1297.927716][   T41] usb 6-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[ 1297.940226][T18629] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1297.942120][T18627] FAT-fs (loop2): Filesystem has been set read-only
[ 1297.957854][T18627] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1297.973262][T18627] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1298.041747][   T41] usb 6-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1298.052517][   T41] usb 6-1: config 128 interface 127 has no altsetting 0
[ 1298.063810][   T41] usb 6-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[ 1298.064166][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1298.118526][   T41] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1298.158730][   T41] usb 6-1: Product: syz
[ 1298.162944][   T41] usb 6-1: Manufacturer: syz
[ 1298.235396][   T41] usb 6-1: SerialNumber: syz
[ 1298.272229][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1298.550032][   T41] usb 6-1: USB disconnect, device number 20
[ 1298.565179][T18640] loop1: detected capacity change from 0 to 256
[ 1298.752464][T18640] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[ 1298.853362][T18113] udevd[18113]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1300.161748][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.168241][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.357207][ T4281] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1301.363943][ T4282] Bluetooth: hci4: command 0x1003 tx timeout
[ 1301.580361][T18686] loop1: detected capacity change from 0 to 512
[ 1301.608672][T18686] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1301.782899][   T26] kauditd_printk_skb: 13 callbacks suppressed
[ 1301.782913][   T26] audit: type=1800 audit(1761786832.411:759): pid=18686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3340" name="bus" dev="loop1" ino=1048720 res=0 errno=0
[ 1303.144246][T18707] loop2: detected capacity change from 0 to 256
[ 1303.174468][T18707] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[ 1305.570878][T18730] loop1: detected capacity change from 0 to 2048
[ 1305.659942][T18730] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1307.154947][T18752] loop5: detected capacity change from 0 to 16
[ 1307.227761][T18752] erofs: (device loop5): mounted with root inode @ nid 36.
[ 1308.289200][T18757] syz.5.3359: attempt to access beyond end of device
[ 1308.289200][T18757] loop5: rw=524288, sector=34359738360, nr_sectors = 32 limit=16
[ 1308.303700][T18757] syz.5.3359: attempt to access beyond end of device
[ 1308.303700][T18757] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1308.320835][T18757] syz.5.3359: attempt to access beyond end of device
[ 1308.320835][T18757] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1308.337667][   T26] audit: type=1800 audit(1761786838.951:760): pid=18757 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3359" name="file1" dev="loop5" ino=86 res=0 errno=0
[ 1308.987441][T18769] loop5: detected capacity change from 0 to 164
[ 1309.113958][T18769] rock: directory entry would overflow storage
[ 1309.186997][T18769] rock: sig=0x4f50, size=4, remaining=3
[ 1309.202977][T18769] iso9660: Corrupted directory entry in block 5 of inode 1792
[ 1309.489547][T18779] loop1: detected capacity change from 0 to 128
[ 1309.655458][T18779] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1309.670534][T18779] ext4 filesystem being mounted at /124/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1310.256023][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1312.351163][T18794] loop3: detected capacity change from 0 to 8
[ 1314.638711][T18826] binder: 18818:18826 ioctl c0306201 0 returned -14
[ 1315.636078][T18838] loop2: detected capacity change from 0 to 512
[ 1315.663842][T18838] EXT4-fs: Ignoring removed oldalloc option
[ 1315.724020][T18838] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1315.810978][T18838] EXT4-fs (loop2): 1 truncate cleaned up
[ 1315.857144][T18838] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1316.201075][T18838] loop2: detected capacity change from 512 to 64
[ 1316.623749][   T26] audit: type=1326 audit(1761786847.251:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1316.631098][T17875] EXT4-fs error (device loop2): mb_free_blocks:1810: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[ 1316.670342][   T26] audit: type=1326 audit(1761786847.251:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1316.731334][T17875] EXT4-fs (loop2): unmounting filesystem.
[ 1316.740553][   T26] audit: type=1326 audit(1761786847.271:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1316.815575][   T26] audit: type=1326 audit(1761786847.271:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1316.886391][   T26] audit: type=1326 audit(1761786847.281:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1316.913447][T18863] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1
[ 1316.988765][   T26] audit: type=1326 audit(1761786847.291:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1317.154179][   T26] audit: type=1326 audit(1761786847.291:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1317.284680][   T26] audit: type=1326 audit(1761786847.291:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1317.307566][   T26] audit: type=1326 audit(1761786847.291:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1317.331800][   T26] audit: type=1326 audit(1761786847.291:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18853 comm="syz.4.3381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f0f78efc9 code=0x7ffc0000
[ 1317.778700][T18859] loop1: detected capacity change from 0 to 40427
[ 1317.796727][   T41] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1317.828808][T18859] F2FS-fs (loop1): invalid crc value
[ 1317.857119][T18859] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1317.999790][   T41] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1318.025927][T18859] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1318.026065][   T41] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1318.084824][   T41] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1318.098278][T18859] F2FS-fs (loop1): switch discard_unit option is not allowed
[ 1318.135855][   T41] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1318.182121][   T41] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1318.297271][   T41] usb 4-1: config 0 descriptor??
[ 1318.447558][T18890] overlayfs: failed to resolve './file0': -2
[ 1318.899513][T15713] syz-executor: attempt to access beyond end of device
[ 1318.899513][T15713] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1319.090527][T16312] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1319.104778][   T41] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x7
[ 1319.126647][   T41] plantronics 0003:047F:FFFF.0008: unbalanced collection at end of report description
[ 1319.162876][   T41] plantronics 0003:047F:FFFF.0008: parse failed
[ 1319.197031][   T41] plantronics: probe of 0003:047F:FFFF.0008 failed with error -22
[ 1319.324571][T11350] usb 4-1: USB disconnect, device number 11
[ 1319.425883][T16312] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1319.587179][T16312] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1319.864928][T16312] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1320.616345][T18910] loop2: detected capacity change from 0 to 1024
[ 1320.623746][T18910] EXT4-fs: Ignoring removed orlov option
[ 1320.741735][ T4281] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1320.752488][ T4281] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1320.762608][ T4281] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1320.770839][ T4281] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1320.795719][ T4281] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1320.804888][T17879] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1320.851597][T18910] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1320.867253][T18920] loop1: detected capacity change from 0 to 1024
[ 1320.941028][T18911] loop5: detected capacity change from 0 to 4096
[ 1320.974756][T18911] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1320.994162][T18911] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1321.069917][T18911] System zones: 0-5
[ 1321.077800][T18911] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1321.140070][T17875] EXT4-fs (loop2): unmounting filesystem.
[ 1321.192586][T16299] hfsplus: b-tree write err: -5, ino 4
[ 1321.379977][T16312] tipc: Disabling bearer <eth:syzkaller0>
[ 1321.566787][T16312] tipc: Left network mode
[ 1321.688045][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1321.923639][T18943] loop5: detected capacity change from 0 to 256
[ 1322.286736][T11350] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[ 1322.410025][T18914] chnl_net:caif_netlink_parms(): no params data found
[ 1322.496791][T11350] usb 2-1: Using ep0 maxpacket: 32
[ 1322.526977][T11350] usb 2-1: config 0 has an invalid interface number: 59 but max is 0
[ 1322.545981][T11350] usb 2-1: config 0 has no interface number 0
[ 1322.582008][T11350] usb 2-1: config 0 interface 59 has no altsetting 0
[ 1322.645565][T11350] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1322.688827][T11350] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1322.724474][T18914] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1322.736745][T11350] usb 2-1: Product: syz
[ 1322.744291][T11350] usb 2-1: Manufacturer: syz
[ 1322.749180][T18914] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1322.769615][T11350] usb 2-1: SerialNumber: syz
[ 1322.777768][T18914] device bridge_slave_0 entered promiscuous mode
[ 1322.795097][T18961] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1
[ 1322.828089][T11350] usb 2-1: config 0 descriptor??
[ 1322.869187][T11350] smsc75xx v1.0.0
[ 1322.876276][T11350] smsc75xx 2-1:0.59 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[ 1322.886699][T17879] Bluetooth: hci2: command 0x0409 tx timeout
[ 1322.957001][T11350] smsc75xx: probe of 2-1:0.59 failed with error -22
[ 1323.016885][T18914] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1323.033630][T18914] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1323.128246][T18914] device bridge_slave_1 entered promiscuous mode
[ 1323.152709][T18936] loop2: detected capacity change from 0 to 40427
[ 1323.180986][T18936] F2FS-fs (loop2): invalid crc value
[ 1323.236257][T18936] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1323.412399][T18936] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1323.492099][T18936] F2FS-fs (loop2): switch discard_unit option is not allowed
[ 1323.666209][T18914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1323.732634][T18970] overlayfs: failed to resolve './file0': -2
[ 1324.022436][T18914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1324.381604][T17875] syz-executor: attempt to access beyond end of device
[ 1324.381604][T17875] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1324.405332][T18976] fuse: Bad value for 'fd'
[ 1324.461677][T18914] team0: Port device team_slave_0 added
[ 1324.521642][T18914] team0: Port device team_slave_1 added
[ 1325.246417][T18988] loop5: detected capacity change from 0 to 1024
[ 1325.253555][T18988] EXT4-fs: inline encryption not supported
[ 1325.259541][T18988] EXT4-fs: Ignoring removed bh option
[ 1325.780683][T18914] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1325.794753][T18914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1325.821579][T18914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1325.858103][T18988] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1325.868777][T18988] EXT4-fs (loop5): unmounting filesystem.
[ 1325.893082][   T22] usb 2-1: USB disconnect, device number 5
[ 1325.914367][T16312] device hsr_slave_0 left promiscuous mode
[ 1325.992834][T16312] device hsr_slave_1 left promiscuous mode
[ 1326.146690][T16312] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1327.975734][T16312] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1328.623125][T16312] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1328.630677][T16312] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1328.655096][T16312] device bridge_slave_1 left promiscuous mode
[ 1328.690327][T16312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1328.729752][T19014] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3412'.
[ 1328.783093][T16312] device bridge_slave_0 left promiscuous mode
[ 1328.808403][T16312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1328.941335][T19015] loop2: detected capacity change from 0 to 4096
[ 1328.949326][T16312] device veth1_macvtap left promiscuous mode
[ 1328.957789][T16312] device veth0_macvtap left promiscuous mode
[ 1328.975631][T19015] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1328.985047][T16312] device veth1_vlan left promiscuous mode
[ 1328.999290][T16312] device veth0_vlan left promiscuous mode
[ 1329.025218][T19015] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1329.048354][T19015] System zones: 0-5
[ 1329.062397][T19015] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1329.409875][T19028] loop5: detected capacity change from 0 to 1024
[ 1329.425011][   T26] kauditd_printk_skb: 14 callbacks suppressed
[ 1329.446936][   T26] audit: type=1326 audit(1761786860.001:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1329.511530][T19028] EXT4-fs (loop5): INFO: recovery required on readonly filesystem
[ 1329.519571][T19028] EXT4-fs (loop5): write access will be enabled during recovery
[ 1329.527424][T19028] EXT4-fs (loop5): barriers disabled
[ 1329.538191][T19028] JBD2: no valid journal superblock found
[ 1329.544107][T19028] EXT4-fs (loop5): error loading journal
[ 1330.025110][   T26] audit: type=1326 audit(1761786860.001:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1330.070697][T17875] EXT4-fs (loop2): unmounting filesystem.
[ 1330.286877][   T26] audit: type=1326 audit(1761786860.001:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1330.526699][   T26] audit: type=1326 audit(1761786860.001:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1330.550383][T19042] fuse: Bad value for 'fd'
[ 1330.612882][   T26] audit: type=1326 audit(1761786860.001:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1330.678340][   T26] audit: type=1326 audit(1761786860.001:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1330.740058][   T26] audit: type=1326 audit(1761786860.001:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1330.793247][   T26] audit: type=1326 audit(1761786860.001:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1331.154041][   T26] audit: type=1326 audit(1761786860.001:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1331.176966][   T26] audit: type=1326 audit(1761786860.001:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19011 comm="syz.2.3411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1331.379272][T19037] loop2: detected capacity change from 0 to 40427
[ 1331.426254][T19037] F2FS-fs (loop2): invalid crc value
[ 1331.458093][T19037] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1331.564173][T19037] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1331.592141][T19037] F2FS-fs (loop2): switch discard_unit option is not allowed
[ 1331.976293][T19053] overlayfs: failed to resolve './file0': -2
[ 1332.219049][T16312] team0 (unregistering): Port device team_slave_1 removed
[ 1332.293895][T16312] team0 (unregistering): Port device team_slave_0 removed
[ 1332.382665][T16312] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1332.482885][T16312] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1332.518458][T17875] syz-executor: attempt to access beyond end of device
[ 1332.518458][T17875] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1333.942342][T19059] loop2: detected capacity change from 0 to 128
[ 1334.035727][T19059] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1334.054437][T19059] FAT-fs (loop2): Filesystem has been set read-only
[ 1334.062202][T19059] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1334.082781][T19059] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 548, start 00000401)
[ 1334.145855][T16312] bond0 (unregistering): Released all slaves
[ 1334.230118][T19061] loop2: detected capacity change from 0 to 16
[ 1334.240983][T19061] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1334.285208][T18914] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1334.298785][T18914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1334.332666][T18914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1334.476252][T18914] device hsr_slave_0 entered promiscuous mode
[ 1334.566296][T19063] syz.2.3420: attempt to access beyond end of device
[ 1334.566296][T19063] loop2: rw=524288, sector=34359738360, nr_sectors = 32 limit=16
[ 1334.582660][T19063] syz.2.3420: attempt to access beyond end of device
[ 1334.582660][T19063] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1334.622464][T19063] syz.2.3420: attempt to access beyond end of device
[ 1334.622464][T19063] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16
[ 1334.661987][   T26] kauditd_printk_skb: 2 callbacks suppressed
[ 1334.662163][   T26] audit: type=1800 audit(1761786865.231:797): pid=19063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3420" name="file1" dev="loop2" ino=86 res=0 errno=0
[ 1334.721100][T18914] device hsr_slave_1 entered promiscuous mode
[ 1334.764226][T18914] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1334.800602][T18914] Cannot create hsr debugfs directory
[ 1335.734964][T19069] loop3: detected capacity change from 0 to 512
[ 1336.379052][T19069] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1336.408479][T19069] EXT4-fs (loop3): 1 truncate cleaned up
[ 1336.414299][T19069] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1336.445687][T19071] loop5: detected capacity change from 0 to 128
[ 1336.485597][T19077] input: syz1 as /devices/virtual/input/input16
[ 1336.576325][T19071] FAT-fs (loop5): Unrecognized mount option "s" or missing value
[ 1336.586490][T19076] loop1: detected capacity change from 0 to 4096
[ 1336.607267][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1336.636521][T19076] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1336.666754][T19076] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1336.666844][T19076] System zones: 0-5
[ 1336.697611][T19076] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1336.944957][   T26] audit: type=1326 audit(1761786867.571:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1337.048541][   T26] audit: type=1326 audit(1761786867.571:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1337.147428][   T26] audit: type=1326 audit(1761786867.601:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1337.266633][   T26] audit: type=1326 audit(1761786867.601:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1337.402445][   T26] audit: type=1326 audit(1761786867.601:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1337.425179][   T26] audit: type=1326 audit(1761786867.601:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1337.464134][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1337.907144][   T26] audit: type=1326 audit(1761786867.601:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1338.009429][   T26] audit: type=1326 audit(1761786867.601:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1338.125958][   T26] audit: type=1326 audit(1761786867.601:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19075 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1340.001584][T19107] loop3: detected capacity change from 0 to 128
[ 1340.267189][T19107] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1340.308662][T19112] binder_alloc: 19103: binder_alloc_buf, no vma
[ 1340.316591][T19107] ext4 filesystem being mounted at /170/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1340.614763][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1341.177856][   T26] kauditd_printk_skb: 2 callbacks suppressed
[ 1341.177871][   T26] audit: type=1326 audit(1761786871.811:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1341.337547][   T26] audit: type=1326 audit(1761786871.841:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1341.434754][   T26] audit: type=1326 audit(1761786871.841:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1341.449669][T19129] loop3: detected capacity change from 0 to 4096
[ 1341.500287][T19129] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1341.529533][T18914] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1341.545423][   T26] audit: type=1326 audit(1761786871.841:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1341.546097][T18914] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1341.594921][T19129] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1341.707661][   T26] audit: type=1326 audit(1761786871.841:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1341.707840][T19129] System zones: 
[ 1341.783430][T18914] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1341.897505][T19129] 0-5
[ 1341.937002][   T26] audit: type=1326 audit(1761786871.841:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1341.960414][   T26] audit: type=1326 audit(1761786871.841:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1342.006933][T19129] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1342.015675][T18914] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1342.036791][   T26] audit: type=1326 audit(1761786871.841:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1342.098262][   T26] audit: type=1326 audit(1761786871.841:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1342.141389][   T26] audit: type=1326 audit(1761786871.841:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19120 comm="syz.2.3435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1342.634399][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1342.666985][T19144] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[ 1343.391267][T18914] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1344.274743][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1344.612325][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1345.393891][T18914] 8021q: adding VLAN 0 to HW filter on device team0
[ 1346.062322][T19172] loop2: detected capacity change from 0 to 512
[ 1346.072334][T19174] binder_alloc: 19173: binder_alloc_buf, no vma
[ 1346.081017][T16296] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1346.130256][T16296] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1346.137751][T19172] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1346.167737][T16296] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1346.174877][T16296] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1346.230567][T16296] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1346.281154][T16296] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1346.340601][T19180] loop1: detected capacity change from 0 to 4096
[ 1346.347675][T16296] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1346.386977][T16296] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1346.394116][T16296] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1346.412483][T19180] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1346.429145][T16296] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1346.452411][T19180] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1346.457685][T16296] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1346.468610][T19172] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF
[ 1346.483045][T19180] System zones: 0-5
[ 1346.506265][T19180] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1346.777578][T18914] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1346.790127][   T26] kauditd_printk_skb: 17 callbacks suppressed
[ 1346.790141][   T26] audit: type=1326 audit(1761786877.421:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1346.846635][T18914] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1346.877377][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1346.901012][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1346.911268][   T26] audit: type=1326 audit(1761786877.421:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1346.934931][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1346.961049][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1346.987780][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1346.994900][   T26] audit: type=1326 audit(1761786877.451:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1347.010071][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1347.081150][   T26] audit: type=1326 audit(1761786877.451:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1347.109741][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1347.140362][T19178] loop5: detected capacity change from 0 to 40427
[ 1347.157576][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1347.175995][T19178] F2FS-fs (loop5): invalid crc value
[ 1347.192415][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1347.204975][   T26] audit: type=1326 audit(1761786877.451:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1347.257008][T19178] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1347.276025][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1347.298582][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1347.387777][   T26] audit: type=1326 audit(1761786877.451:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1347.520957][   T26] audit: type=1326 audit(1761786877.451:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1347.580918][T19178] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1347.610611][T19178] F2FS-fs (loop5): switch discard_unit option is not allowed
[ 1347.693482][T19193] loop1: detected capacity change from 0 to 256
[ 1347.970425][   T26] audit: type=1326 audit(1761786877.451:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1348.254946][   T26] audit: type=1326 audit(1761786877.451:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1348.307272][   T26] audit: type=1326 audit(1761786877.451:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19179 comm="syz.1.3446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1348.311294][T19195] loop3: detected capacity change from 0 to 1024
[ 1348.433764][T19197] overlayfs: failed to resolve './file0': -2
[ 1348.520445][T19195] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1348.577637][T19195] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1348.698849][T19195] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.3447: inode has both inline data and extents flags
[ 1348.822979][T19206] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.3447: inode has both inline data and extents flags
[ 1348.964142][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1348.981108][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1348.990463][T14610] EXT4-fs (loop3): unmounting filesystem.
[ 1349.002861][T18914] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1349.102530][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1349.113864][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1349.228357][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1349.241522][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1349.253914][T18914] device veth0_vlan entered promiscuous mode
[ 1349.266390][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1349.697542][T16294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1349.884154][T18914] device veth1_vlan entered promiscuous mode
[ 1350.028058][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1350.060530][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1350.100956][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1350.239442][T15179] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1350.387268][T19227] loop1: detected capacity change from 0 to 128
[ 1350.477789][T18914] device veth0_macvtap entered promiscuous mode
[ 1350.609182][T19227] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1350.620179][T19227] ext4 filesystem being mounted at /146/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1350.762497][T19226] loop2: detected capacity change from 0 to 1024
[ 1350.868528][T18914] device veth1_macvtap entered promiscuous mode
[ 1350.879757][T19226] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1350.895031][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1350.908024][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1351.108868][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1351.119860][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1351.129999][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1351.140723][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1351.176611][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1351.226662][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1351.258389][T18914] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1351.265864][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1351.301564][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1351.312347][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1351.347532][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1351.359867][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1351.502677][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1351.550356][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1352.193736][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1352.224287][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1352.274875][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1352.284851][T18914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1352.295496][T18914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1352.320580][ T7180] syz-executor: attempt to access beyond end of device
[ 1352.320580][ T7180] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1352.336476][T17875] EXT4-fs (loop2): unmounting filesystem.
[ 1352.343824][T18914] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1352.382496][T16278] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1352.412132][T16278] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1352.545225][T19243] loop1: detected capacity change from 0 to 4096
[ 1352.584006][T18914] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1352.604350][T19243] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1352.620585][T18914] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1352.673128][T18914] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1352.901388][T19243] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1353.071813][T18914] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1353.094334][T19243] System zones: 0-5
[ 1353.237692][T19243] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1353.646760][   T26] kauditd_printk_skb: 1 callbacks suppressed
[ 1353.646776][   T26] audit: type=1326 audit(1761786884.251:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1353.690018][T14389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1353.691795][T15178] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1353.698490][T14389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1353.764974][T15178] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1353.796290][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1353.806742][   T26] audit: type=1326 audit(1761786884.251:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1353.830370][   T26] audit: type=1326 audit(1761786884.251:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1353.854380][   T26] audit: type=1326 audit(1761786884.251:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1353.855061][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1353.878924][   T26] audit: type=1326 audit(1761786884.251:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1354.017163][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1354.219981][   T26] audit: type=1326 audit(1761786884.251:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1354.322801][   T26] audit: type=1326 audit(1761786884.251:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1354.416828][T16294] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1354.444188][T16294] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1354.642277][   T26] audit: type=1326 audit(1761786884.251:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1354.689486][   T26] audit: type=1326 audit(1761786884.251:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1354.712979][   T26] audit: type=1326 audit(1761786884.251:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19242 comm="syz.1.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a7ef8efc9 code=0x7ffc0000
[ 1354.868243][T19279] loop1: detected capacity change from 0 to 256
[ 1355.318462][T19283] loop2: detected capacity change from 0 to 1024
[ 1355.360988][T19283] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1356.190970][T19298] loop1: detected capacity change from 0 to 4096
[ 1358.656693][T17879] Bluetooth: hci4: command 0x1003 tx timeout
[ 1358.667337][ T4282] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1358.782472][T17875] EXT4-fs (loop2): unmounting filesystem.
[ 1358.789882][T19298] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1358.957491][T19298] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1358.965884][T19298] System zones: 0-5
[ 1359.083888][T19312] Bluetooth: MGMT ver 1.22
[ 1359.132325][T19298] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1359.319130][T15713] EXT4-fs (loop1): unmounting filesystem.
[ 1359.749198][T19329] loop0: detected capacity change from 0 to 256
[ 1359.775157][T19329] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3ec, utbl_chksum : 0xe619d30d)
[ 1360.036697][T19336] loop0: detected capacity change from 0 to 512
[ 1360.112662][T19336] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c098, mo2=0002]
[ 1360.137355][T19336] System zones: 0-2, 18-18, 34-35
[ 1360.280908][T19336] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1360.300549][T19336] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1360.491230][   T26] kauditd_printk_skb: 1 callbacks suppressed
[ 1360.491245][   T26] audit: type=1800 audit(1761786891.121:858): pid=19336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3483" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1361.316915][T11350] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[ 1362.455791][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1362.462245][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.498267][T11350] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1362.565429][T19362] binder_alloc: 19357: binder_alloc_buf, no vma
[ 1363.072507][T11350] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1363.118479][   T26] audit: type=1326 audit(1761786893.751:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1363.135588][T11350] usb 6-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[ 1363.176158][T11350] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1363.233813][   T26] audit: type=1326 audit(1761786893.801:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f059338efc9 code=0x7ffc0000
[ 1363.264215][T19364] loop2: detected capacity change from 0 to 2048
[ 1363.289317][T11350] usb 6-1: config 0 descriptor??
[ 1363.361035][T19364]  loop2: p1 < > p4
[ 1363.370594][   T26] audit: type=1326 audit(1761786893.801:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f059338f003 code=0x7ffc0000
[ 1363.423184][T19364] loop2: p4 size 8388608 extends beyond EOD, truncated
[ 1363.569530][T11350] usb 6-1: USB disconnect, device number 21
[ 1363.581729][   T26] audit: type=1326 audit(1761786893.841:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f059338da7f code=0x7ffc0000
[ 1363.756736][   T26] audit: type=1326 audit(1761786893.891:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f059338f057 code=0x7ffc0000
[ 1363.874606][   T26] audit: type=1326 audit(1761786893.891:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f059338d810 code=0x7ffc0000
[ 1363.966669][   T26] audit: type=1326 audit(1761786893.891:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f059338ebcb code=0x7ffc0000
[ 1364.097914][T19368] loop5: detected capacity change from 0 to 4096
[ 1364.161186][T18113] udevd[18113]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[ 1364.260151][T19368] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1364.281211][   T26] audit: type=1326 audit(1761786893.951:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f059338dc2a code=0x7ffc0000
[ 1364.346133][T18081] udevd[18081]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[ 1364.349745][T19368] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1364.462581][   T26] audit: type=1326 audit(1761786893.951:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f059338ebcb code=0x7ffc0000
[ 1364.506873][T19368] System zones: 0-5
[ 1364.519824][T19368] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1365.120047][T19338] ------------[ cut here ]------------
[ 1365.126119][T19338] kernel BUG at fs/buffer.c:2666!
[ 1365.295638][ T7180] EXT4-fs (loop5): unmounting filesystem.
[ 1365.346985][T19338] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 1365.353122][T19338] CPU: 0 PID: 19338 Comm: kmmpd-loop0 Not tainted syzkaller #0
[ 1365.360679][T19338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1365.370741][T19338] RIP: 0010:submit_bh_wbc+0x4ac/0x4d0
[ 1365.376129][T19338] Code: 01 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c0 fe ff ff 48 89 ef e8 55 63 e2 ff e9 b3 fe ff ff e8 5b 34 92 ff 0f 0b e8 54 34 92 ff <0f> 0b e8 4d 34 92 ff 0f 0b e8 46 34 92 ff 0f 0b e8 3f 34 92 ff 0f
[ 1365.395747][T19338] RSP: 0018:ffffc90003e97cc8 EFLAGS: 00010293
[ 1365.401827][T19338] RAX: ffffffff81eea20c RBX: 0000000000000000 RCX: ffff88807bda8000
[ 1365.409812][T19338] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1365.417792][T19338] RBP: 0000000000003801 R08: dffffc0000000000 R09: ffffed1004ae217a
[ 1365.425777][T19338] R10: ffffed1004ae217a R11: 1ffff11004ae2179 R12: 1ffff11004ae2179
[ 1365.433765][T19338] R13: 0000000000000000 R14: ffff888025710bc8 R15: ffff88806072c000
[ 1365.441746][T19338] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1365.450688][T19338] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1365.457280][T19338] CR2: 00007f40b7c83000 CR3: 000000004486d000 CR4: 00000000003506f0
[ 1365.465263][T19338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1365.473223][T19338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1365.481187][T19338] Call Trace:
[ 1365.484457][T19338]  <TASK>
[ 1365.487376][T19338]  write_mmp_block_thawed+0x360/0x4f0
[ 1365.492745][T19338]  ? read_mmp_block+0x6f0/0x6f0
[ 1365.497594][T19338]  ? rcu_read_lock_any_held+0xb0/0x120
[ 1365.503068][T19338]  ? rcu_read_lock_bh_held+0xe0/0xe0
[ 1365.508366][T19338]  ? kmmpd+0x337/0x980
[ 1365.512427][T19338]  write_mmp_block+0x13e/0x3a0
[ 1365.517186][T19338]  kmmpd+0x337/0x980
[ 1365.521080][T19338]  kthread+0x29d/0x330
[ 1365.525151][T19338]  ? write_mmp_block_thawed+0x4f0/0x4f0
[ 1365.530695][T19338]  ? kthread_blkcg+0xd0/0xd0
[ 1365.535280][T19338]  ret_from_fork+0x1f/0x30
[ 1365.539698][T19338]  </TASK>
[ 1365.542718][T19338] Modules linked in:
[ 1365.587752][   T26] audit: type=1326 audit(1761786893.951:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f059338ebcb code=0x7ffc0000
[ 1365.684669][   T26] audit: type=1326 audit(1761786894.111:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f059338d6ba code=0x7ffc0000
[ 1365.772583][   T26] audit: type=1326 audit(1761786894.111:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f059338e547 code=0x7ffc0000
[ 1365.848088][   T26] audit: type=1326 audit(1761786894.111:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f059338d6ba code=0x7ffc0000
[ 1365.896779][   T26] audit: type=1326 audit(1761786894.111:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f059338d6ba code=0x7ffc0000
[ 1365.939323][   T26] audit: type=1326 audit(1761786894.121:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f059338d6ba code=0x7ffc0000
[ 1365.964289][   T26] audit: type=1326 audit(1761786894.121:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f059338e547 code=0x7ffc0000
[ 1365.988833][   T26] audit: type=1326 audit(1761786894.121:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f059338d6ba code=0x7ffc0000
[ 1366.018774][   T26] audit: type=1326 audit(1761786894.131:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f059338d6ba code=0x7ffc0000
[ 1366.068638][   T26] audit: type=1326 audit(1761786894.131:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19363 comm="syz.2.3487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f059338d6ba code=0x7ffc0000
[ 1366.094382][T19338] ---[ end trace 0000000000000000 ]---
[ 1366.125290][T19338] RIP: 0010:submit_bh_wbc+0x4ac/0x4d0
[ 1366.131229][T19338] Code: 01 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c0 fe ff ff 48 89 ef e8 55 63 e2 ff e9 b3 fe ff ff e8 5b 34 92 ff 0f 0b e8 54 34 92 ff <0f> 0b e8 4d 34 92 ff 0f 0b e8 46 34 92 ff 0f 0b e8 3f 34 92 ff 0f
[ 1366.153308][T19338] RSP: 0018:ffffc90003e97cc8 EFLAGS: 00010293
[ 1366.161076][T19338] RAX: ffffffff81eea20c RBX: 0000000000000000 RCX: ffff88807bda8000
[ 1366.170932][T19338] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1366.179619][T19338] RBP: 0000000000003801 R08: dffffc0000000000 R09: ffffed1004ae217a
[ 1366.189309][T19338] R10: ffffed1004ae217a R11: 1ffff11004ae2179 R12: 1ffff11004ae2179
[ 1366.197719][T19338] R13: 0000000000000000 R14: ffff888025710bc8 R15: ffff88806072c000
[ 1366.205818][T19338] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1366.216340][T19338] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1366.223326][T19338] CR2: 000055aafc0f0950 CR3: 00000000773f8000 CR4: 00000000003506e0
[ 1366.236339][T19338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1366.264002][T19338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1366.276290][T19338] Kernel panic - not syncing: Fatal exception
[ 1366.282600][T19338] Kernel Offset: disabled
[ 1366.286945][T19338] Rebooting in 86400 seconds..