last executing test programs:

2m10.802056474s ago: executing program 2 (id=1855):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_usb_connect(0x2, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bf97f0000100109050b", @ANYRES64], 0x0)

2m9.301179416s ago: executing program 2 (id=1913):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000000002000000000ff000000850000000f000000850000000500000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="34000000680001000200100000000080000000000000000014"], 0x34}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000)

2m9.250809497s ago: executing program 2 (id=1914):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioperm(0x7, 0x4, 0x7)
quotactl_fd$Q_GETFMT(r0, 0xffffffff80000402, 0x0, 0x0)

2m9.158201298s ago: executing program 2 (id=1915):
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="00058639aa6f0bfbe4b28434ef119376977b00fffbcec7a5fc1f5a72d4fe24156a9f971990e4f372b7"], 0x0, 0x17d, &(0x7f0000001ac0)="$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")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r0 = syz_clone3(&(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
process_vm_writev(r0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/234, 0xea}], 0x1, &(0x7f0000000580)=[{&(0x7f0000000500)=""/13, 0xd}], 0x1, 0x0)

2m9.0019257s ago: executing program 2 (id=1917):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x48e80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000180)={0x0, 0x0, @pic={0x4, 0x7f, 0x0, 0x89, 0x3, 0x3, 0x8, 0x10, 0x90, 0x5, 0x6, 0x1, 0x3, 0x6, 0x9, 0x81}})

2m8.790251753s ago: executing program 2 (id=1921):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000340)={0xff05, 0x4f34, 0x800, 0x4, 0x0, "5f730000a9003f00"})
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x5f)

2m8.747222864s ago: executing program 32 (id=1921):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000340)={0xff05, 0x4f34, 0x800, 0x4, 0x0, "5f730000a9003f00"})
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x5f)

2m2.634535742s ago: executing program 3 (id=2149):
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r0}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, 0x0, 0x0)

2m1.588468258s ago: executing program 3 (id=2180):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r1, &(0x7f0000000040)={0x24, @short={0x2, 0x1, 0xaaa0}}, 0x14)

2m1.564146668s ago: executing program 3 (id=2181):
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000b00)=@newlink={0x44, 0x10, 0x801, 0x1, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, 0x0, 0x10290}, [@IFLA_AF_SPEC={0x24, 0x1a, 0x0, 0x1, [@AF_INET6={0x20, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @private1}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x2}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000080}, 0x0)

2m1.439554809s ago: executing program 3 (id=2184):
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="00058639aa6f0bfbe4b28434ef119376977b00fffbcec7a5fc1f5a72d4fe24156a9f971990e4f372b7"], 0x0, 0x17d, &(0x7f0000001ac0)="$eJzsmLFP+kAUx7/vyg/yMy6uLg4SxcHSFjUuxLA5mogaNwlUghYx0EGYdPH/cHZwdvOPMM7qYFwY3Uxqej3oQQR10MT4PsPj+7h313evyXcoGIb5szw+vNyvFe+EAWASaaTU/89GXCO0+tfb83Jraj1/OfeUv041robPIwBB8PnnJwDcFAz4Kg+Cwd1p9VuE6OstCCwovQOCqfQeBLaVdkHYVfpA042w3jT3a55rlhteJRRWGOwwOGHIDffXPSNUtP5IW2+1O4clz3Ob3yg+ml+3IJDX+tPfV282ljY/GwK20jkQNpVeRao3m2gk2v2nE/H5xg/fnwULFr9NxP4UXBDmNX9KaP6R9evH2Va7s1irl6pu1T1ynNyKtWRZy05WGlEUx/jff+lPE9r5/0bUJimJk5LvN+0o9nMniu85rpD+J5CZjfLQ+5Mju4nWSe0jqTLGmHKGYRiGYRiGYRiGYRiGYZgvMAOSX0EldIo4GcDZkNVvAQAA///an3MA")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r0 = syz_clone3(&(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
process_vm_writev(r0, &(0x7f0000000440)=[{&(0x7f0000000240)=""/234, 0xea}], 0x1, &(0x7f0000000580)=[{&(0x7f0000000500)=""/13, 0xd}], 0x1, 0x0)

2m1.249511042s ago: executing program 3 (id=2186):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0xc008, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRESDEC, @ANYRES16, @ANYRESOCT], 0x41, 0x2f9, &(0x7f0000000e40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fstatfs(r0, 0x0)

2m1.098118164s ago: executing program 3 (id=2191):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f0000000080)={0xa, 0x4e22, 0x80000, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000400)=[@rthdrdstopts={{0x110, 0x29, 0x37, {0x88, 0x2000000000000063, '\x00', [@generic={0x0, 0xeb, "02a859557001a2740567f191745a4ca5a3241005ecc39862dce27808086269fcab8b65dddfa88c26b76ed849c3455d98580ab1cb34970dee4cb1e462d603a0910749cf64825f68222b34e9268fc0accc43c712ea737d60d5e8dffaed6e06edeca533e04835e6ce9d051310457215aa035afc47771c1ca1b2d80e2ec8394120fbf7a73462806d564c08b66178cd814f9dfc4d93d5d898332f6c64bcbb84e32150347142bd33daa92f39971e59f373c01532cfa94d716de5a73c5b779816b01d411ac9e18874966877857309fd3cd8755323d0d524bacff9d9746e81a4791e8f835705006f5a55ac5a4c7768"}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}], 0x110}, 0x0)

2m1.084422475s ago: executing program 33 (id=2191):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f0000000080)={0xa, 0x4e22, 0x80000, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000400)=[@rthdrdstopts={{0x110, 0x29, 0x37, {0x88, 0x2000000000000063, '\x00', [@generic={0x0, 0xeb, "02a859557001a2740567f191745a4ca5a3241005ecc39862dce27808086269fcab8b65dddfa88c26b76ed849c3455d98580ab1cb34970dee4cb1e462d603a0910749cf64825f68222b34e9268fc0accc43c712ea737d60d5e8dffaed6e06edeca533e04835e6ce9d051310457215aa035afc47771c1ca1b2d80e2ec8394120fbf7a73462806d564c08b66178cd814f9dfc4d93d5d898332f6c64bcbb84e32150347142bd33daa92f39971e59f373c01532cfa94d716de5a73c5b779816b01d411ac9e18874966877857309fd3cd8755323d0d524bacff9d9746e81a4791e8f835705006f5a55ac5a4c7768"}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}], 0x110}, 0x0)

1m4.292067748s ago: executing program 5 (id=4320):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000100850000004300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff0000000000030800"], 0x0)

1m4.232687649s ago: executing program 5 (id=4323):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x4c, 0x10, 0x403, 0x0, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x20100}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_ID={0x6, 0x1, 0x4}, @IFLA_VLAN_EGRESS_QOS={0x4}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x4c}, 0x1, 0xba01}, 0x810)

1m4.19881181s ago: executing program 5 (id=4326):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)

1m3.991348863s ago: executing program 5 (id=4340):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x4206, r0)
waitid(0x1, r0, 0x0, 0x8000000a, 0x0)
waitid(0x0, 0x0, 0x0, 0x41000004, 0x0)

1m3.801880885s ago: executing program 5 (id=4348):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000001}, 0x20004000)
unshare(0x22020400)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={r0, 0x20, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x0}}, 0x10)

1m3.766360186s ago: executing program 5 (id=4349):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

47.704025329s ago: executing program 34 (id=4349):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

42.991620077s ago: executing program 6 (id=4911):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xd, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000240), &(0x7f0000000280)=r0}, 0x20)

42.991122687s ago: executing program 6 (id=4914):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)

42.960597298s ago: executing program 6 (id=4916):
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x2008410, &(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYRESHEX], 0x1, 0x5549, &(0x7f0000003d80)="$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")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
write$binfmt_script(r0, &(0x7f0000001800)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='./bus\x00', 0x1a404ac, &(0x7f0000001480)=ANY=[], 0xfe, 0x0, &(0x7f0000000000))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)

42.518337894s ago: executing program 6 (id=4926):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f0000000280)='.\x00', &(0x7f00000002c0)='./file0\x00')

42.181023179s ago: executing program 6 (id=4932):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, 0x0, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
futimesat(0xffffffffffffffff, 0x0, 0x0)

41.748425775s ago: executing program 6 (id=4938):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={&(0x7f0000000480)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4}]}]}, 0x2c}}, 0x0)

41.737893665s ago: executing program 35 (id=4938):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'lo\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={&(0x7f0000000480)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4}]}]}, 0x2c}}, 0x0)

3.738189456s ago: executing program 4 (id=6147):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r0 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x18, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000000000)=""/75, 0x4b}, {&(0x7f0000000140)=""/195, 0xc3}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0xa)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002700)=""/4096, 0x1000}], 0x0, 0xa}, 0x20)

3.719936846s ago: executing program 4 (id=6149):
unshare(0x24020400)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000000)={0x2})

3.665809717s ago: executing program 4 (id=6152):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
socketpair(0x18, 0x0, 0x2, &(0x7f0000004080))

3.633627608s ago: executing program 4 (id=6154):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff09"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

3.563998629s ago: executing program 4 (id=6160):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10)
r1 = io_uring_setup(0x28fe, &(0x7f0000000080)={0x0, 0x0, 0x2})
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r1, 0x11, &(0x7f00000002c0), 0x2)

2.516701274s ago: executing program 4 (id=6188):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)

2.466408385s ago: executing program 1 (id=6190):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0)

2.466152584s ago: executing program 1 (id=6191):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000700)=0x13)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0xfbfffff7, 0x401, 0xd, 0xf7d, 0x18, "010100"})
write(r0, &(0x7f00000000c0)="11", 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x53)

2.409923765s ago: executing program 0 (id=6194):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x3, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

2.378463226s ago: executing program 1 (id=6195):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000540)={&(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x1c0d0)

2.377965506s ago: executing program 0 (id=6196):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001100)=ANY=[@ANYBLOB="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"/849], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000680)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000005304"], 0x14}}, 0x0)

2.342403456s ago: executing program 1 (id=6198):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000402609333340000000000109022400010000000009040000010301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r1}, 0x10)
syz_usb_control_io(r0, &(0x7f00000006c0)={0x18, &(0x7f0000000100)={0x0, 0x5, 0x2, {0x2, 0xd}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

2.333149686s ago: executing program 0 (id=6199):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000009000000000000000020000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getrlimit(0x6, &(0x7f0000000100))

2.272623907s ago: executing program 0 (id=6200):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000008000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x18)
request_key(&(0x7f0000000180)='asymmetric\x00', &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000200)='/!\x00', 0xffffffffffffffff)

2.214115588s ago: executing program 0 (id=6201):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='dd:cb2e')

2.138477s ago: executing program 0 (id=6202):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000540)={0x2c, &(0x7f0000000500)=ANY=[@ANYBLOB="000005"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0xf0}, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="000312"], 0x0, 0x0}, 0x0)

1.217328292s ago: executing program 8 (id=6231):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7b5, &(0x7f0000001f00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x147)
r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r1, r0, 0x0, 0x80000000)
truncate(&(0x7f0000000200)='./file2\x00', 0x7)

1.038157606s ago: executing program 7 (id=6236):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="06000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
pipe2(&(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.037965165s ago: executing program 7 (id=6237):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
rt_sigqueueinfo(0x0, 0x800025, 0x0)

968.826006ms ago: executing program 7 (id=6238):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_clone(0xc0126080, 0x0, 0x0, 0x0, 0x0, 0x0)

936.874657ms ago: executing program 8 (id=6239):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$selinux_access(r1, &(0x7f00000004c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)

687.24213ms ago: executing program 8 (id=6240):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

656.577291ms ago: executing program 7 (id=6241):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)={0x2, 0x9, 0x6, 0x2, 0x2, 0x0, 0x70bd2b, 0x25dfdbff}, 0x10}}, 0x10)

586.206002ms ago: executing program 7 (id=6242):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
chdir(&(0x7f00000003c0)='./file0\x00')
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

585.954472ms ago: executing program 7 (id=6243):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), r0)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000340), r0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={0x20, r1, 0x1, 0x0, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xa}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000090}, 0x0)

585.245052ms ago: executing program 8 (id=6244):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000340)=@file={0x1, './file0\x00'}, 0x6e)

505.913293ms ago: executing program 8 (id=6245):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x204410, &(0x7f0000000740), 0xfe, 0x4a1, &(0x7f00000001c0)="$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")
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0))
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={0x0, 0x6c})

327.714686ms ago: executing program 8 (id=6246):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_read_part_table(0x5be, &(0x7f00000005c0)="$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")

154.557628ms ago: executing program 1 (id=6247):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x101301)
ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200))

0s ago: executing program 1 (id=6248):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sync()

kernel console output (not intermixed with test programs):

 (loop6): invalid namelen(0), ino:0, run fsck to fix.
[  182.334160][ T5627] F2FS-fs (loop6): invalid namelen(0), ino:0, run fsck to fix.
[  182.341629][ T5627] F2FS-fs (loop6): invalid namelen(0), ino:0, run fsck to fix.
[  182.350419][ T5627] F2FS-fs (loop6): invalid namelen(0), ino:0, run fsck to fix.
[  182.358613][ T5627] attempt to access beyond end of device
[  182.358613][ T5627] loop6: rw=2049, want=32808, limit=64
[  182.376908][ T5627] attempt to access beyond end of device
[  182.376908][ T5627] loop6: rw=2049, want=36928, limit=64
[  182.456419][ T7949] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  182.466424][ T7949] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  182.477927][ T7949] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  182.487487][ T7949] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  182.497146][ T7949] usb 1-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  182.638179][  T309] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  182.712940][ T7949] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  182.722381][ T7949] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.730329][ T7949] usb 1-1: Product: syz
[  182.734730][ T7949] usb 1-1: Manufacturer: syz
[  182.739446][ T7949] usb 1-1: SerialNumber: syz
[  182.894638][  T309] usb 5-1: Using ep0 maxpacket: 8
[  182.996331][T11103] x_tables: duplicate underflow at hook 4
[  183.022951][  T309] usb 5-1: config 0 has an invalid interface number: 200 but max is 0
[  183.031120][  T309] usb 5-1: config 0 has no interface number 0
[  183.037889][  T309] usb 5-1: config 0 interface 200 has no altsetting 0
[  183.212463][T11132] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  183.215429][  T309] usb 5-1: New USB device found, idVendor=0b57, idProduct=8528, bcdDevice=6d.39
[  183.233028][  T309] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.243855][  T309] usb 5-1: Product: syz
[  183.248304][  T309] usb 5-1: Manufacturer: syz
[  183.256036][  T309] usb 5-1: SerialNumber: syz
[  183.262449][  T309] usb 5-1: config 0 descriptor??
[  183.536049][   T60] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  183.601175][  T309] input: Hanwang Art Master III 0906 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.200/input/input30
[  183.614178][  T309] usb 5-1: USB disconnect, device number 11
[  183.621516][    T6] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  183.696472][ T7949] cdc_ncm 1-1:1.0: SET_CRC_MODE failed
[  183.749934][ T7949] cdc_ncm 1-1:1.0: bind() failure
[  183.755715][ T7949] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  183.762425][ T7949] cdc_ncm 1-1:1.1: bind() failure
[  183.768584][ T7949] usb 1-1: USB disconnect, device number 11
[  183.803301][   T60] usb 7-1: Using ep0 maxpacket: 8
[  183.878210][    T6] usb 2-1: Using ep0 maxpacket: 32
[  183.963700][   T60] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  183.973928][   T60] usb 7-1: config 0 has no interfaces?
[  184.006460][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  184.017264][    T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  184.026990][    T6] usb 2-1: New USB device found, idVendor=5543, idProduct=0003, bcdDevice= 0.00
[  184.036011][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.045367][    T6] usb 2-1: config 0 descriptor??
[  184.145640][   T60] usb 7-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[  184.154835][   T60] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.162735][   T60] usb 7-1: Product: syz
[  184.166882][   T60] usb 7-1: Manufacturer: syz
[  184.171292][   T60] usb 7-1: SerialNumber: syz
[  184.176719][   T60] usb 7-1: config 0 descriptor??
[  184.237438][   T30] kauditd_printk_skb: 79 callbacks suppressed
[  184.237454][   T30] audit: type=1326 audit(2000000835.929:3318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.267211][   T30] audit: type=1326 audit(2000000835.929:3319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.291226][   T30] audit: type=1326 audit(2000000835.929:3320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.317223][   T30] audit: type=1326 audit(2000000835.929:3321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.341153][   T30] audit: type=1326 audit(2000000835.929:3322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.364903][   T30] audit: type=1326 audit(2000000835.929:3323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.388693][   T30] audit: type=1326 audit(2000000835.966:3324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.412499][  T309] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  184.420490][   T30] audit: type=1326 audit(2000000835.966:3325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.444675][   T30] audit: type=1326 audit(2000000835.985:3326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.469195][ T2917] usb 7-1: USB disconnect, device number 5
[  184.476565][   T30] audit: type=1326 audit(2000000835.985:3327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.0.4665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  184.563590][    T6] uclogic 0003:5543:0003.0016: item fetching failed at offset 0/3
[  184.571647][    T6] uclogic 0003:5543:0003.0016: parse failed
[  184.578218][    T6] uclogic: probe of 0003:5543:0003.0016 failed with error -22
[  184.680203][  T309] usb 5-1: Using ep0 maxpacket: 16
[  184.787363][   T60] usb 2-1: USB disconnect, device number 10
[  184.808281][  T309] usb 5-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  184.819496][  T309] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  184.829411][  T309] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  184.839636][  T309] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 30442, setting to 1024
[  184.851048][  T309] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[  184.860894][  T309] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  184.957993][  T309] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  184.966966][  T309] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  184.975061][  T309] usb 5-1: SerialNumber: syz
[  185.000764][T11143] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  185.027100][  T309] cdc_acm: probe of 5-1:1.0 failed with error -12
[  185.244528][   T60] usb 5-1: USB disconnect, device number 12
[  185.652795][   T39] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  186.091181][   T39] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  186.101993][   T39] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  186.111772][   T39] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  186.120790][   T39] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.129536][   T39] usb 2-1: config 0 descriptor??
[  186.294191][ T2917] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  186.550751][ T2917] usb 5-1: Using ep0 maxpacket: 32
[  186.658007][   T39] hid (null): bogus close delimiter
[  186.671931][T11216] tipc: Enabling of bearer <ib:gre0> rejected, media not registered
[  186.679998][ T2917] usb 5-1: unable to get BOS descriptor or descriptor too short
[  186.687602][ T2917] usb 5-1: no configurations
[  186.697342][ T2917] usb 5-1: can't read configurations, error -22
[  186.792292][T11237] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  186.803878][T11235] loop6: detected capacity change from 0 to 4096
[  186.819616][T11235] EXT4-fs (loop6): Test dummy encryption mode enabled
[  186.831131][T11235] EXT4-fs (loop6): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000008000000,noauto_da_alloc,dioread_nolock,test_dummy_encryption,nobarrier,nodelalloc,minixdf,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[  186.863896][T11235] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  186.882292][   T39] usb 2-1: string descriptor 0 read error: -22
[  187.016160][T11265] IPv6: Can't replace route, no match found
[  187.299172][  T309] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  187.314538][T11297] loop6: detected capacity change from 0 to 1024
[  187.352701][   T39] uclogic 0003:256C:006D.0017: failed retrieving string descriptor #100: -71
[  187.353770][T11297] EXT4-fs (loop6): Ignoring removed nobh option
[  187.361344][   T39] uclogic 0003:256C:006D.0017: failed retrieving pen parameters: -71
[  187.368073][T11297] EXT4-fs (loop6): Ignoring removed bh option
[  187.385426][   T39] uclogic 0003:256C:006D.0017: failed probing pen v1 parameters: -71
[  187.393915][   T39] uclogic 0003:256C:006D.0017: failed probing parameters: -71
[  187.406960][   T39] uclogic: probe of 0003:256C:006D.0017 failed with error -71
[  187.415997][T11297] EXT4-fs (loop6): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,resgid=0x0000000000000000,data_err=ignore,grpquota,nobh,user_xattr,bh,resuid=0x0000000000000000,,errors=continue. Quota mode: writeback.
[  187.418354][   T39] usb 2-1: USB disconnect, device number 11
[  187.564694][T11312] xt_hashlimit: size too large, truncated to 1048576
[  187.566405][  T309] usb 1-1: Using ep0 maxpacket: 16
[  187.694776][  T309] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  187.704960][  T309] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  187.876727][  T309] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  187.885832][  T309] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.893907][  T309] usb 1-1: Product: syz
[  187.898095][  T309] usb 1-1: Manufacturer: syz
[  187.902558][  T309] usb 1-1: SerialNumber: syz
[  188.045562][T11336] netlink: 76 bytes leftover after parsing attributes in process `syz.4.4752'.
[  188.116435][T11346] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  188.118163][T11348] loop6: detected capacity change from 0 to 256
[  188.126069][T11346] SELinux: failed to load policy
[  188.154491][T11348] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  188.193129][T11348] exFAT-fs (loop6): hint_cluster is invalid (17)
[  188.203904][T11348] exFAT-fs (loop6): error, broken FAT chain.
[  188.210411][T11348] exFAT-fs (loop6): Filesystem has been set read-only
[  188.217110][T11348] exFAT-fs (loop6): error, failed to bmap (inode : ffff8881283fdf00 iblock : 64, err : -5)
[  188.292013][T11361] netlink: 'syz.6.4763': attribute type 4 has an invalid length.
[  188.429165][  T309] usb 1-1: 0:2 : does not exist
[  188.542402][T11394] loop6: detected capacity change from 0 to 256
[  188.554548][T11394] exfat: Deprecated parameter 'namecase'
[  188.567820][T11394] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  188.714104][T11399] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.721134][T11399] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.728656][T11399] device bridge_slave_0 entered promiscuous mode
[  188.736407][T11399] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.743487][T11399] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.751534][T11399] device bridge_slave_1 entered promiscuous mode
[  188.827198][T11413] loop6: detected capacity change from 0 to 2048
[  188.835807][T11399] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.842981][T11399] bridge0: port 2(bridge_slave_1) entered forwarding state
[  188.850070][T11399] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.856903][T11399] bridge0: port 1(bridge_slave_0) entered forwarding state
[  188.882928][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  188.888213][   T20] usb 1-1: USB disconnect, device number 12
[  188.896212][ T3981] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.904223][ T3981] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.908365][T11413] EXT4-fs (loop6): Ignoring removed nomblk_io_submit option
[  188.927274][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  188.945209][ T3981] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.952653][ T3981] bridge0: port 1(bridge_slave_0) entered forwarding state
[  188.979453][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  188.988899][ T3981] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.989815][T11413] EXT4-fs (loop6): mounted filesystem without journal. Opts: nodelalloc,jqfmt=vfsold,nomblk_io_submit,jqfmt=vfsv0,journal_dev=0x0000000000000008,inode_readahead_blks=0x0000000000000100,usrquota,noinit_itable,data_err=ignore,,errors=continue. Quota mode: writeback.
[  188.995797][ T3981] bridge0: port 2(bridge_slave_1) entered forwarding state
[  189.040485][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  189.049456][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  189.080191][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  189.082033][T11423] xt_hashlimit: max too large, truncated to 1048576
[  189.094805][T11423] xt_hashlimit: overflow, rate too high: 0
[  189.103178][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  189.122780][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  189.130877][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  189.139563][T11399] device veth0_vlan entered promiscuous mode
[  189.159515][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  189.177200][T11399] device veth1_macvtap entered promiscuous mode
[  189.202926][ T2591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  189.227397][ T2591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  189.315983][T11444] netlink: 112 bytes leftover after parsing attributes in process `syz.7.4779'.
[  189.373744][T11454] netlink: 64 bytes leftover after parsing attributes in process `syz.6.4804'.
[  189.397020][T11458] syz.4.4806[11458] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.397108][T11458] syz.4.4806[11458] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.430473][T11460] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  189.505474][T11472] binfmt_misc: register: failed to install interpreter file ./file0
[  189.645102][T11495] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  189.697931][T11506] netem: change failed
[  189.698038][T11505] usb usb1: usbfs: process 11505 (syz.7.4828) did not claim interface 0 before use
[  189.732153][   T30] kauditd_printk_skb: 89 callbacks suppressed
[  189.732168][   T30] audit: type=1326 audit(2000000841.054:3417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11507 comm="syz.7.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  189.761711][   T30] audit: type=1326 audit(2000000841.054:3418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11507 comm="syz.7.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  189.788136][   T30] audit: type=1326 audit(2000000841.054:3419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11507 comm="syz.7.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  189.813665][   T30] audit: type=1326 audit(2000000841.054:3420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11507 comm="syz.7.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  189.838872][   T30] audit: type=1326 audit(2000000841.054:3421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11507 comm="syz.7.4831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  189.910502][   T39] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  189.918738][T11519] tipc: Started in network mode
[  189.923722][T11519] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  189.932605][T11519] tipc: New replicast peer: fc02:0000:0000:0000:0000:0000:0000:0000
[  189.940770][T11519] tipc: Enabled bearer <udp:syz1>, priority 10
[  190.033833][T11535] device vlan2 entered promiscuous mode
[  190.039803][T11535] device erspan0 entered promiscuous mode
[  190.084328][T11541] tmpfs: Unknown parameter 'nolazytime��'
[  190.192045][   T39] usb 7-1: Using ep0 maxpacket: 16
[  190.235117][T11559] overlayfs: missing 'lowerdir'
[  190.256322][   T30] audit: type=1326 audit(2000000841.534:3422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11560 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  190.280065][   T30] audit: type=1326 audit(2000000841.534:3423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11560 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  190.304892][   T30] audit: type=1326 audit(2000000841.534:3424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11560 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  190.328826][   T30] audit: type=1326 audit(2000000841.534:3425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11560 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  190.352914][   T30] audit: type=1326 audit(2000000841.534:3426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11560 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  190.390523][   T39] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  190.403465][   T39] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  190.592956][   T39] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  190.601904][   T39] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  190.609829][   T39] usb 7-1: Product: syz
[  190.613987][   T39] usb 7-1: Manufacturer: syz
[  190.618528][   T39] usb 7-1: SerialNumber: syz
[  190.787932][ T2917] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  190.831378][   T20] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  191.015958][ T7949] tipc: Node number set to 1
[  191.047984][ T2917] usb 2-1: Using ep0 maxpacket: 16
[  191.091454][   T20] usb 1-1: Using ep0 maxpacket: 16
[  191.123913][   T39] usb 7-1: 0:2 : does not exist
[  191.221454][   T20] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.232895][   T20] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.242548][   T20] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  191.255776][   T20] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  191.265692][   T20] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.274426][   T20] usb 1-1: config 0 descriptor??
[  191.362196][ T2917] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  191.371849][ T2917] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.394624][ T2917] usb 2-1: Product: syz
[  191.398645][ T2917] usb 2-1: Manufacturer: syz
[  191.403066][ T2917] usb 2-1: SerialNumber: syz
[  191.417136][ T2917] usb 2-1: config 0 descriptor??
[  191.460380][ T2917] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[  191.468170][ T2917] usb 2-1: Detected FT232H
[  191.583560][   T39] usb 7-1: USB disconnect, device number 6
[  191.687195][ T2917] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  191.796826][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.803885][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.811044][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.818355][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.825427][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.832535][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.839868][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.847386][   T20] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  191.857642][   T20] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0018/input/input32
[  191.938086][   T20] microsoft 0003:045E:07DA.0018: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  192.020038][   T20] usb 1-1: USB disconnect, device number 13
[  192.208785][ T2917] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  192.427108][ T2917] usb 2-1: USB disconnect, device number 12
[  192.435612][ T2917] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  192.445901][ T2917] ftdi_sio 2-1:0.0: device disconnected
[  192.980401][T11656] SELinux:  policydb version 0 does not match my version range 15-33
[  192.989027][T11656] SELinux: failed to load policy
[  193.077523][T11667] SELinux:  Context system_u:object_r:dhcpd_state_t:s0 is not valid (left unmapped).
[  193.462463][T11710] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  193.493910][T11697] loop6: detected capacity change from 0 to 40427
[  193.554612][T11697] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  193.571108][T11697] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  193.582261][T11697] F2FS-fs (loop6): Found nat_bits in checkpoint
[  193.622106][T11697] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  193.634920][T11697] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  193.642141][T11697] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  193.694404][T11697] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  193.832345][   T20] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  193.925130][T11723] loop6: detected capacity change from 0 to 512
[  193.989884][T11723] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  194.006152][T11723] EXT4-fs (loop6): 1 truncate cleaned up
[  194.011721][T11723] EXT4-fs (loop6): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[  194.045890][ T5627] EXT4-fs error (device loop6): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /542/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  194.068817][ T5627] EXT4-fs error (device loop6): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  194.090228][ T5627] EXT4-fs error (device loop6): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /542/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  194.112778][ T5627] EXT4-fs error (device loop6): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  194.139523][ T5627] EXT4-fs error (device loop6): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /542/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  194.161585][ T5627] EXT4-fs error (device loop6): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  194.181805][ T5627] EXT4-fs error (device loop6): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /542/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  194.203716][ T5627] EXT4-fs error (device loop6): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  194.223679][ T5627] EXT4-fs error (device loop6): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /542/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  194.245839][ T5627] EXT4-fs error (device loop6): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  194.325237][T11745] loop7: detected capacity change from 0 to 512
[  194.354386][ T3980] tipc: Disabling bearer <udp:syz2>
[  194.360862][ T3980] tipc: Left network mode
[  194.366467][T11745] EXT4-fs (loop7): orphan cleanup on readonly fs
[  194.373416][T11745] EXT4-fs error (device loop7): ext4_quota_enable:6375: comm syz.7.4937: Bad quota inum: 11, type: 1
[  194.374281][   T20] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  194.385054][T11745] EXT4-fs warning (device loop7): ext4_enable_quotas:6423: Failed to enable quota tracking (type=1, err=-117, ino=11). Please run e2fsck to fix.
[  194.393907][   T20] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  194.408898][T11745] EXT4-fs (loop7): Cannot turn on quotas: error -117
[  194.432715][   T20] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  194.439377][T11745] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  194.445806][ T2917] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  194.472225][T11745] EXT4-fs (loop7): shut down requested (2)
[  194.593865][T11751] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.601232][T11751] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.610034][T11751] device bridge_slave_0 entered promiscuous mode
[  194.617461][T11751] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.624725][T11751] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.632423][T11751] device bridge_slave_1 entered promiscuous mode
[  194.655866][   T20] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  194.664947][   T20] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.672796][   T20] usb 1-1: Product: syz
[  194.678259][   T20] usb 1-1: Manufacturer: syz
[  194.682704][   T20] usb 1-1: SerialNumber: syz
[  194.734614][T11762] loop7: detected capacity change from 0 to 512
[  194.748884][T11751] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.756038][T11751] bridge0: port 2(bridge_slave_1) entered forwarding state
[  194.763123][T11751] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.769929][T11751] bridge0: port 1(bridge_slave_0) entered forwarding state
[  194.793957][ T2591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  194.801848][ T2591] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.810091][ T2591] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.824839][T11762] EXT4-fs (loop7): orphan cleanup on readonly fs
[  194.831614][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  194.836297][T11762] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.4944: bg 0: block 248: padding at end of block bitmap is not set
[  194.840166][ T3981] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.854705][T11762] EXT4-fs error (device loop7): ext4_acquire_dquot:6188: comm syz.7.4944: Failed to acquire dquot type 1
[  194.860429][ T3981] bridge0: port 1(bridge_slave_0) entered forwarding state
[  194.861127][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  194.873098][T11762] EXT4-fs (loop7): 1 truncate cleaned up
[  194.879496][ T3981] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.894480][ T2917] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.899567][ T3981] bridge0: port 2(bridge_slave_1) entered forwarding state
[  194.927280][ T2917] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.937614][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  194.945635][ T2917] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  194.956457][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  194.965760][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  194.970468][ T2917] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.985174][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  194.998110][ T2917] usb 5-1: config 0 descriptor??
[  194.998420][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  195.004558][   T20] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 14 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  195.019121][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  195.030041][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  195.040084][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  195.047914][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  195.057505][T11762] EXT4-fs (loop7): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,quota,grpjquota=,noquota,abort,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  195.058033][T11769] xt_hashlimit: max too large, truncated to 1048576
[  195.084465][T11751] device veth0_vlan entered promiscuous mode
[  195.100224][ T3980] device bridge_slave_1 left promiscuous mode
[  195.106604][ T3980] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.132183][ T3980] device bridge_slave_0 left promiscuous mode
[  195.145392][ T3980] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.188739][   T30] kauditd_printk_skb: 42 callbacks suppressed
[  195.188757][   T30] audit: type=1400 audit(2000000846.094:3467): avc:  denied  { setopt } for  pid=11778 comm="syz.7.4950" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  195.225603][  T309] usb 1-1: USB disconnect, device number 14
[  195.244280][   T30] audit: type=1400 audit(2000000846.121:3468): avc:  denied  { read write } for  pid=11715 comm="syz.0.4925" name="lp0" dev="devtmpfs" ino=1718 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  195.271400][  T309] usblp0: removed
[  195.275662][   T30] audit: type=1400 audit(2000000846.121:3469): avc:  denied  { open } for  pid=11715 comm="syz.0.4925" path="/dev/usb/lp0" dev="devtmpfs" ino=1718 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  195.342557][T11790] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  195.377782][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  195.387018][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  195.398098][T11751] device veth1_macvtap entered promiscuous mode
[  195.411658][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  195.420411][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  195.429730][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  195.449007][   T30] audit: type=1326 audit(2000000846.334:3470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11797 comm="syz.7.4960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  195.476838][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  195.491402][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  195.516411][   T30] audit: type=1326 audit(2000000846.334:3471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11797 comm="syz.7.4960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  195.542203][   T30] audit: type=1326 audit(2000000846.334:3472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11797 comm="syz.7.4960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  195.565960][ T2917] hid (null): bogus close delimiter
[  195.580519][   T30] audit: type=1326 audit(2000000846.352:3473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11797 comm="syz.7.4960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  195.683505][   T30] audit: type=1400 audit(2000000846.546:3474): avc:  denied  { setattr } for  pid=11820 comm="syz.8.4970" name="file0" dev="tmpfs" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  195.805728][ T2917] usb 5-1: string descriptor 0 read error: -22
[  195.825788][ T7949] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  195.917377][T11852] loop7: detected capacity change from 0 to 256
[  195.931261][   T30] audit: type=1326 audit(2000000846.767:3475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11855 comm="syz.8.4986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  195.962405][   T30] audit: type=1326 audit(2000000846.767:3476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11855 comm="syz.8.4986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  196.055559][T11852] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  196.107555][ T7949] usb 2-1: Using ep0 maxpacket: 32
[  196.185194][T11877] syz.8.4996[11877] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  196.185290][T11877] syz.8.4996[11877] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  196.240847][T11881] loop8: detected capacity change from 0 to 512
[  196.258554][ T7949] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  196.280831][ T7949] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.280913][ T2917] uclogic 0003:256C:006D.0019: failed retrieving string descriptor #100: -71
[  196.318380][ T2917] uclogic 0003:256C:006D.0019: failed retrieving pen parameters: -71
[  196.326727][ T2917] uclogic 0003:256C:006D.0019: failed probing pen v1 parameters: -71
[  196.335395][ T2917] uclogic 0003:256C:006D.0019: failed probing parameters: -71
[  196.343062][ T2917] uclogic: probe of 0003:256C:006D.0019 failed with error -71
[  196.368281][ T2917] usb 5-1: USB disconnect, device number 15
[  196.374231][T11881] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  196.415517][T11881] EXT4-fs (loop8): 1 truncate cleaned up
[  196.421378][T11881] EXT4-fs (loop8): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[  196.453867][T11881] EXT4-fs (loop8): shut down requested (0)
[  196.467463][ T7949] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  196.476814][ T7949] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  196.485250][ T7949] usb 2-1: Product: syz
[  196.497781][ T7949] usb 2-1: Manufacturer: syz
[  196.541495][ T7949] hub 2-1:4.0: USB hub found
[  196.590466][T11899] Invalid ELF header len 16
[  196.779329][ T7949] hub 2-1:4.0: 2 ports detected
[  196.936704][T11910] loop8: detected capacity change from 0 to 40427
[  196.986470][T11910] F2FS-fs (loop8): Fix alignment : internally, start(4096) end(16896) block(12288)
[  196.999567][T11910] F2FS-fs (loop8): invalid crc value
[  197.005330][T11910] F2FS-fs (loop8): invalid crc value
[  197.011265][T11910] F2FS-fs (loop8): Failed to get valid F2FS checkpoint
[  197.104338][ T7949] hub 2-1:4.0: hub_hub_status failed (err = -71)
[  197.122193][ T7949] hub 2-1:4.0: config failed, can't get hub status (err -71)
[  197.159390][   T60] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  197.167022][ T7949] usb 2-1: USB disconnect, device number 13
[  197.218660][T11910] loop8: detected capacity change from 0 to 512
[  197.282140][T11910] EXT4-fs (loop8): Unrecognized mount option "nouid32"errors=continue" or missing value
[  197.429783][   T60] usb 5-1: Using ep0 maxpacket: 32
[  197.565605][T11961] loop8: detected capacity change from 0 to 512
[  197.592362][   T60] usb 5-1: config 0 interface 0 altsetting 156 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.603682][   T60] usb 5-1: config 0 interface 0 altsetting 156 endpoint 0x81 has invalid wMaxPacketSize 0
[  197.614063][T11961] EXT4-fs (loop8): Quota format mount options ignored when QUOTA feature is enabled
[  197.618761][   T60] usb 5-1: config 0 interface 0 has no altsetting 0
[  197.632262][   T60] usb 5-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.00
[  197.643483][   T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.663184][   T60] usb 5-1: config 0 descriptor??
[  197.667029][T11961] EXT4-fs (loop8): mounted filesystem without journal. Opts: grpquota,jqfmt=vfsv0,minixdf,,errors=continue. Quota mode: writeback.
[  197.681929][T11961] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.707897][T11961] EXT4-fs (loop8): shut down requested (1)
[  197.714419][T11961] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop8 ino=12
[  197.723598][T11961] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop8 ino=12
[  197.896876][T11994] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  197.938638][T11770] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  198.004586][T12004] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5053'.
[  198.190253][   T60] apple 0003:05AC:0225.001A: hidraw0: USB HID v0.00 Device [HID 05ac:0225] on usb-dummy_hcd.4-1/input0
[  198.190797][T12021] tipc: Started in network mode
[  198.205955][T11770] usb 2-1: Using ep0 maxpacket: 8
[  198.210888][T12021] tipc: Node identity 2, cluster identity 4711
[  198.216858][T12021] tipc: Node number set to 2
[  198.235698][T12023] 9pnet: p9_errstr2errno: server reported unknown error 滰砦偼(後�
[  198.405916][ T2917] usb 5-1: USB disconnect, device number 16
[  198.415326][  T309] usb 1-1: new low-speed USB device number 15 using dummy_hcd
[  198.512771][T11770] usb 2-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2
[  198.522036][T11770] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.529937][T11770] usb 2-1: Product: syz
[  198.534050][T11770] usb 2-1: Manufacturer: syz
[  198.538566][T11770] usb 2-1: SerialNumber: syz
[  198.543685][T11770] usb 2-1: config 0 descriptor??
[  198.805422][  T309] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  198.814027][  T309] usb 1-1: config 179 has no interface number 0
[  198.820465][  T309] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  198.832782][  T309] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  198.843187][  T309] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  198.854575][  T309] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 58368, setting to 8
[  198.865507][  T309] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  198.878623][  T309] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  198.887553][  T309] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.913742][T12015] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  198.936014][  T309] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  198.957049][  T309] xpad: probe of 1-1:179.65 failed with error -5
[  199.042824][T12032] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12032 comm=syz.8.5065
[  199.156503][  T328] usb 1-1: USB disconnect, device number 15
[  199.202531][T12029] overlayfs: overlapping lowerdir path
[  199.288905][T12055] loop8: detected capacity change from 0 to 1024
[  199.307104][T12057] netem: change failed
[  199.321555][T12055] EXT4-fs (loop8): Ignoring removed oldalloc option
[  199.338193][T12055] EXT4-fs (loop8): mounted filesystem without journal. Opts: grpjquota=,auto_da_alloc=0x0000000000000000,auto_da_alloc=0x0000000000000009,norecovery,debug_want_extra_isize=0x0000000000000080,oldalloc,nodelalloc,usrquota,auto_da_alloc=0x0000000000000053,,errors=continue. Quota mode: writeback.
[  199.392671][T12066] device batadv_slave_1 entered promiscuous mode
[  199.399430][T12065] device batadv_slave_1 left promiscuous mode
[  199.479967][T12079] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.841238][T12100] incfs: Error accessing: ./file0.
[  199.846615][T12100] incfs: mount failed -20
[  200.048330][T12133] xt_hashlimit: size too large, truncated to 1048576
[  200.161183][   T60] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  200.176014][T12142] input: syz0 as /devices/virtual/input/input33
[  200.430400][   T60] usb 9-1: Using ep0 maxpacket: 16
[  200.560468][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  200.579607][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  200.609978][   T60] usb 9-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  200.628100][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.640642][   T60] usb 9-1: config 0 descriptor??
[  200.690249][   T30] kauditd_printk_skb: 61 callbacks suppressed
[  200.690264][   T30] audit: type=1326 audit(2000000851.161:3538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.733264][   T30] audit: type=1326 audit(2000000851.198:3539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.769545][   T30] audit: type=1326 audit(2000000851.198:3540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.797189][   T30] audit: type=1326 audit(2000000851.198:3541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.821553][   T30] audit: type=1326 audit(2000000851.198:3542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.846194][   T30] audit: type=1326 audit(2000000851.198:3543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.870349][   T30] audit: type=1326 audit(2000000851.198:3544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.900908][   T30] audit: type=1326 audit(2000000851.198:3545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.929770][   T30] audit: type=1326 audit(2000000851.198:3546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12183 comm="syz.7.5133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  200.942820][  T329] usb 2-1: USB disconnect, device number 14
[  200.969259][T12198] syz.1.5139[12198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  200.973713][T12198] syz.1.5139[12198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.002602][T12202] loop7: detected capacity change from 0 to 256
[  201.020086][   T30] audit: type=1400 audit(2000000851.456:3547): avc:  denied  { mounton } for  pid=12203 comm="syz.0.5142" path="/905/file0" dev="incremental-fs" ino=4687 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  201.073173][T12202] exFAT-fs (loop7): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  201.125106][T12202] exFAT-fs (loop7): hint_cluster is invalid (17)
[  201.147155][   T60] appleir 0003:05AC:8241.001B: unknown main item tag 0x0
[  201.156737][   T60] appleir 0003:05AC:8241.001B: No inputs registered, leaving
[  201.173607][   T60] appleir 0003:05AC:8241.001B: hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.8-1/input0
[  201.223816][T12225] loop7: detected capacity change from 0 to 256
[  201.389695][T12237] netlink: 'syz.7.5156': attribute type 280 has an invalid length.
[  201.449708][  T309] usb 9-1: USB disconnect, device number 2
[  201.676383][  T329] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  201.760434][T12270] syz.0.5172[12270] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.760497][T12270] syz.0.5172[12270] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.957963][  T329] usb 5-1: Using ep0 maxpacket: 16
[  202.038772][T12296] loop8: detected capacity change from 0 to 8192
[  202.077806][T12296]  loop8: p1 < > p2 < p5 > p3 p4 < >
[  202.084326][T12296] loop8: p3 size 132352 extends beyond EOD, truncated
[  202.099841][T12296] loop8: p5 size 132352 extends beyond EOD, truncated
[  202.109777][  T329] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.124807][  T329] usb 5-1: config 0 interface 0 has no altsetting 0
[  202.131656][  T329] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  202.141945][  T329] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.167982][  T329] usb 5-1: config 0 descriptor??
[  202.271435][T12318] syz.8.5193[12318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  202.271523][T12318] syz.8.5193[12318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  202.677844][  T329] hid (null): unknown global tag 0xd
[  202.696093][  T329] hid (null): global environment stack underflow
[  202.702653][  T329] hid (null): unknown global tag 0xd
[  202.709649][  T329] hid (null): invalid report_size 20669
[  202.736380][T12359] loop8: detected capacity change from 0 to 2048
[  202.772347][T12359] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  202.894291][  T328] usb 5-1: USB disconnect, device number 17
[  202.945268][T12384] syz.8.5222[12384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  202.945383][T12384] syz.8.5222[12384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  203.009934][T12392] x_tables: duplicate underflow at hook 4
[  203.167022][T12421] binder: 12419:12421 ioctl c0306201 0 returned -14
[  203.174052][T12421] binder: 12419:12421 ioctl 89f3 0 returned -22
[  203.343766][T12446] SELinux:  unknown common socket
[  203.351229][T12446] SELinux: failed to load policy
[  203.376020][T12452] fuse: Invalid user_id
[  203.562250][T12476] input: syz1 as /devices/virtual/input/input34
[  203.766982][  T329] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  204.015126][  T329] usb 9-1: Using ep0 maxpacket: 16
[  204.129870][  T329] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.145539][  T329] usb 9-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  204.154993][  T329] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.173104][  T329] usb 9-1: config 0 descriptor??
[  204.178957][T12543] incfs: Options parsing error. -22
[  204.184728][T12543] incfs: mount failed -22
[  204.234618][T12550] netlink: 'syz.0.5302': attribute type 16 has an invalid length.
[  204.242271][T12550] netlink: 'syz.0.5302': attribute type 17 has an invalid length.
[  204.259713][T12550] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  204.267873][T12550] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  204.283477][T12550] device ip6gretap0 left promiscuous mode
[  204.302242][T12550] IPv6: ADDRCONF(NETDEV_CHANGE): wg1: link becomes ready
[  204.311036][  T309] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  204.320372][T12550] IPv6: ADDRCONF(NETDEV_CHANGE): wg1: link becomes ready
[  204.352355][T12550] device veth0_vlan left promiscuous mode
[  204.369488][T12550] device veth0_vlan entered promiscuous mode
[  204.376786][T12550] device veth1_macvtap left promiscuous mode
[  204.383805][T12550] device veth1_macvtap entered promiscuous mode
[  204.387093][T11770] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  204.392609][T12550] device ip6gretap0 entered promiscuous mode
[  204.406984][T12550] A link change request failed with some changes committed already. Interface vlan3 may have been left with an inconsistent configuration, please check.
[  204.433401][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): macsec2: link becomes ready
[  204.453335][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  204.460870][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  204.473449][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  204.481669][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  204.498074][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  204.506834][ T3983] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.513825][ T3983] bridge0: port 2(bridge_slave_1) entered listening state
[  204.521699][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  204.530040][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  204.538729][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  204.547479][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  204.556116][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  204.564505][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  204.573823][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  204.582727][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  204.591539][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  204.603597][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  204.611951][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  204.620576][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  204.629105][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  204.638016][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  204.646626][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  204.655308][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  204.658763][  T329] apple 0003:05AC:024B.001D: item fetching failed at offset 2/69
[  204.672105][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  204.676080][  T329] apple 0003:05AC:024B.001D: parse failed
[  204.682913][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  204.686119][  T329] apple: probe of 0003:05AC:024B.001D failed with error -22
[  204.694907][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  204.712860][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  204.722297][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  204.730292][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  204.738526][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  204.747255][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  204.760896][T11770] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 242, using maximum allowed: 30
[  204.773527][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  204.781723][T11770] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  204.792925][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  204.800609][T11770] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 242
[  204.814511][ T3983] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[  204.822328][T11770] usb 2-1: New USB device found, idVendor=056a, idProduct=00b8, bcdDevice= 0.00
[  204.832021][T11770] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.844690][T11770] usb 2-1: config 0 descriptor??
[  204.850623][  T328] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  204.858574][  T328] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  204.866236][  T329] usb 9-1: USB disconnect, device number 3
[  204.940620][T12582] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5317'.
[  204.949872][T12582] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  205.131059][T12595] netlink: 'syz.0.5322': attribute type 2 has an invalid length.
[  205.194244][T12602] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5325'.
[  205.291651][  T309] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  205.430251][T12611] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12611 comm=syz.8.5329
[  205.442708][T12611] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=12611 comm=syz.8.5329
[  205.576533][T11770] usbhid 2-1:0.0: can't add hid device: -71
[  205.583130][T11770] usbhid: probe of 2-1:0.0 failed with error -71
[  205.598187][T11770] usb 2-1: USB disconnect, device number 15
[  205.685403][  T309] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  205.758907][T12648] loop8: detected capacity change from 0 to 128
[  205.783353][T12650] loop7: detected capacity change from 0 to 128
[  205.845895][T12648] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  205.856962][T12648] ext4 filesystem being mounted at /116/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  205.874006][   T30] kauditd_printk_skb: 148 callbacks suppressed
[  205.874023][   T30] audit: type=1326 audit(2000000856.169:3696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12657 comm="syz.4.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083c935169 code=0x7ffc0000
[  205.877393][T12648] syz.8.5346 (pid 12648) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  205.884756][   T30] audit: type=1326 audit(2000000856.179:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12657 comm="syz.4.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f083c935169 code=0x7ffc0000
[  205.940926][ T2591] attempt to access beyond end of device
[  205.940926][ T2591] loop7: rw=1, want=1041, limit=128
[  205.947801][   T30] audit: type=1326 audit(2000000856.239:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12657 comm="syz.4.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083c935169 code=0x7ffc0000
[  205.981022][   T30] audit: type=1326 audit(2000000856.249:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12657 comm="syz.4.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083c935169 code=0x7ffc0000
[  206.012442][   T30] audit: type=1326 audit(2000000856.249:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12657 comm="syz.4.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f083c935169 code=0x7ffc0000
[  206.066150][   T30] audit: type=1326 audit(2000000856.249:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12657 comm="syz.4.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083c935169 code=0x7ffc0000
[  206.139709][   T30] audit: type=1326 audit(2000000856.249:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12657 comm="syz.4.5360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f083c935169 code=0x7ffc0000
[  206.623979][T12701] incfs: Error accessing: ./file0.
[  206.629306][T12701] incfs: mount failed -20
[  206.672632][T12703] loop8: detected capacity change from 0 to 1024
[  206.741363][T12703] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  206.772718][   T30] audit: type=1400 audit(2000000857.072:3703): avc:  denied  { map } for  pid=12702 comm="syz.8.5370" path="/129/file1/file1" dev="loop8" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  206.798897][   T30] audit: type=1400 audit(2000000857.092:3704): avc:  denied  { execute } for  pid=12702 comm="syz.8.5370" path="/129/file1/file1" dev="loop8" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  207.095861][   T30] audit: type=1400 audit(2000000857.385:3705): avc:  denied  { connect } for  pid=12720 comm="syz.7.5377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  207.233667][T12734] netlink: 'syz.7.5382': attribute type 7 has an invalid length.
[  207.243449][  T329] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  207.278683][T12734] netlink: 'syz.7.5382': attribute type 8 has an invalid length.
[  207.296842][T12734] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5382'.
[  207.467717][T12748] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5389'.
[  207.538602][T12759] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  207.620506][T12768] loop7: detected capacity change from 0 to 2048
[  207.644450][  T329] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  207.673007][  T329] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  207.720819][T12768] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  207.766796][  T329] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  207.780989][  T329] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  207.797774][  T329] usb 9-1: SerialNumber: syz
[  207.982644][T12789] xt_hashlimit: size too large, truncated to 1048576
[  208.089177][  T329] usb 9-1: 0:2 : does not exist
[  208.095611][  T329] usb 9-1: USB disconnect, device number 4
[  208.600238][T12836] netlink: 'syz.8.5429': attribute type 16 has an invalid length.
[  208.608051][T12836] netlink: 'syz.8.5429': attribute type 17 has an invalid length.
[  208.621643][T12836] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.628540][T12836] bridge0: port 1(bridge_slave_0) entered forwarding state
[  208.635837][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  208.661727][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  208.661802][T12840] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  208.670569][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  208.687821][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  208.701531][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  208.714019][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  208.722489][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  208.730744][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  208.739715][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  208.773875][  T309] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  208.805925][T12836] syz.8.5429 (12836) used greatest stack depth: 18784 bytes left
[  208.953017][T12865] binder: 12864:12865 ioctl c0306201 200000000240 returned -14
[  209.025565][  T309] usb 2-1: Using ep0 maxpacket: 16
[  209.131017][  T329] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  209.151567][  T309] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.162625][  T309] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.181965][  T309] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  209.194784][  T309] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  209.203663][  T309] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.216415][  T309] usb 2-1: config 0 descriptor??
[  209.382433][  T329] usb 9-1: Using ep0 maxpacket: 16
[  209.466483][   T39] usb 5-1: new low-speed USB device number 18 using dummy_hcd
[  209.550556][  T329] usb 9-1: config index 0 descriptor too short (expected 16456, got 72)
[  209.558838][  T329] usb 9-1: config 0 has an invalid interface number: 125 but max is 1
[  209.567537][  T329] usb 9-1: config 0 has an invalid interface number: 125 but max is 1
[  209.575812][  T329] usb 9-1: config 0 has an invalid interface number: 125 but max is 1
[  209.583845][  T329] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 2
[  209.592584][  T329] usb 9-1: config 0 has no interface number 0
[  209.598395][  T329] usb 9-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  209.609832][  T329] usb 9-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  209.624259][  T329] usb 9-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  209.634303][  T329] usb 9-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  209.647645][  T329] usb 9-1: config 0 interface 125 has no altsetting 0
[  209.654624][  T329] usb 9-1: config 0 interface 125 has no altsetting 2
[  209.719247][  T309] kovaplus 0003:1E7D:2D50.001E: unknown main item tag 0x0
[  209.726243][  T309] kovaplus 0003:1E7D:2D50.001E: unknown main item tag 0x0
[  209.733340][  T309] kovaplus 0003:1E7D:2D50.001E: unknown main item tag 0x0
[  209.741132][  T309] kovaplus 0003:1E7D:2D50.001E: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.1-1/input0
[  209.844392][  T329] usb 9-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  209.853288][  T329] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.861235][  T329] usb 9-1: Product: syz
[  209.865581][   T39] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  209.874059][   T39] usb 5-1: config 179 has no interface number 0
[  209.880505][  T329] usb 9-1: Manufacturer: syz
[  209.884943][  T329] usb 9-1: SerialNumber: syz
[  209.890092][   T39] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  209.901836][   T39] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  209.912117][  T329] usb 9-1: config 0 descriptor??
[  209.917152][   T39] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  209.928504][   T39] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 58368, setting to 8
[  209.939532][   T39] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  209.952828][   T39] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  209.963349][   T39] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.992394][T12868] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  210.014420][   T39] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  210.045164][   T39] xpad: probe of 5-1:179.65 failed with error -5
[  210.228806][   T39] usb 5-1: USB disconnect, device number 18
[  210.404654][  T309] kovaplus 0003:1E7D:2D50.001E: couldn't init struct kovaplus_device
[  210.412757][  T309] kovaplus 0003:1E7D:2D50.001E: couldn't install mouse
[  210.420066][  T309] kovaplus: probe of 0003:1E7D:2D50.001E failed with error -71
[  210.428803][  T309] usb 2-1: USB disconnect, device number 16
[  211.351906][T12910] loop7: detected capacity change from 0 to 512
[  211.390368][T12913] netlink: 'syz.1.5462': attribute type 16 has an invalid length.
[  211.399060][T12913] netlink: 'syz.1.5462': attribute type 17 has an invalid length.
[  211.427637][T12913] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.434563][T12913] bridge0: port 2(bridge_slave_1) entered forwarding state
[  211.441713][T12913] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.448624][T12913] bridge0: port 1(bridge_slave_0) entered forwarding state
[  211.457592][T12910] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002]
[  211.467575][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  211.467591][   T30] audit: type=1326 audit(2000000861.560:3725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12921 comm="syz.0.5465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.472154][T12910] System zones: 
[  211.497471][   T30] audit: type=1326 audit(2000000861.560:3726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12921 comm="syz.0.5465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.519273][T12913] device batadv_slave_1 entered promiscuous mode
[  211.535710][T12910] 0-2, 18-18, 34-35
[  211.550477][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  211.551486][T12910] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  211.558743][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  211.572444][   T30] audit: type=1326 audit(2000000861.560:3727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12921 comm="syz.0.5465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.578042][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  211.608108][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  211.609256][T12910] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.635642][   T30] audit: type=1326 audit(2000000861.635:3728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12921 comm="syz.0.5465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.641449][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  211.683553][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  211.700814][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  211.701726][   T30] audit: type=1326 audit(2000000861.748:3729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12927 comm="syz.0.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.714963][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  211.742247][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  211.751882][ T3980] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  211.761997][   T30] audit: type=1326 audit(2000000861.748:3730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12927 comm="syz.0.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.815310][   T30] audit: type=1326 audit(2000000861.757:3731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12927 comm="syz.0.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.842055][   T30] audit: type=1326 audit(2000000861.757:3732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12927 comm="syz.0.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.867988][   T30] audit: type=1326 audit(2000000861.757:3733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12927 comm="syz.0.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.897954][   T30] audit: type=1326 audit(2000000861.757:3734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12927 comm="syz.0.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  211.947751][T12945] syz.1.5475[12945] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  211.947860][T12945] syz.1.5475[12945] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  212.008874][T12953] SELinux:  Context system_u:object_r:ptmx_t:s0 is not valid (left unmapped).
[  212.037513][  T309] usb 9-1: USB disconnect, device number 5
[  212.072964][T12962] sit: Src spoofed 1.0.0.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[  212.385582][T13013] syz.4.5507[13013] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  212.385675][T13013] syz.4.5507[13013] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  212.402030][T13015] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5509'.
[  212.479210][T13022] loop8: detected capacity change from 0 to 2048
[  212.536042][T13032] netlink: 'syz.4.5518': attribute type 16 has an invalid length.
[  212.549941][T13032] netlink: 'syz.4.5518': attribute type 17 has an invalid length.
[  212.558081][T13022] EXT4-fs (loop8): Ignoring removed mblk_io_submit option
[  212.577460][T13032] bridge0: port 2(bridge_slave_1) entered blocking state
[  212.584636][T13032] bridge0: port 2(bridge_slave_1) entered forwarding state
[  212.591987][T13032] bridge0: port 1(bridge_slave_0) entered blocking state
[  212.598945][T13032] bridge0: port 1(bridge_slave_0) entered forwarding state
[  212.609455][T13022] EXT4-fs (loop8): mounted filesystem without journal. Opts: data_err=ignore,mblk_io_submit,i_version,,errors=continue. Quota mode: none.
[  212.609495][T13032] device bridge0 entered promiscuous mode
[  212.642891][T13032] IPv6: ADDRCONF(NETDEV_CHANGE): wg1: link becomes ready
[  212.650125][T13032] IPv6: ADDRCONF(NETDEV_CHANGE): wg1: link becomes ready
[  212.702853][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  212.733157][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  212.747231][T13043] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5520'.
[  212.756962][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  212.765131][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  212.773511][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  212.783079][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  212.791414][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  212.800332][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  212.808553][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  212.817199][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  212.847651][T13043] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  212.989166][T13062] loop8: detected capacity change from 0 to 512
[  213.015334][T13062] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  213.129302][T13072] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5532'.
[  213.185165][  T328] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  213.347031][T13099] device batadv_slave_1 entered promiscuous mode
[  213.371703][T13098] device batadv_slave_1 left promiscuous mode
[  213.415822][T13103] loop7: detected capacity change from 0 to 512
[  213.437124][T13107] xt_hashlimit: size too large, truncated to 1048576
[  213.443781][  T328] usb 2-1: Using ep0 maxpacket: 32
[  213.501383][T13103] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  213.534243][T13103] EXT4-fs (loop7): 1 truncate cleaned up
[  213.548683][T13103] EXT4-fs (loop7): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  213.569972][  T328] usb 2-1: config 0 interface 0 altsetting 156 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  213.609801][  T328] usb 2-1: config 0 interface 0 altsetting 156 endpoint 0x81 has invalid wMaxPacketSize 0
[  213.643485][T13126] xt_hashlimit: size too large, truncated to 1048576
[  213.649251][  T328] usb 2-1: config 0 interface 0 has no altsetting 0
[  213.664690][  T328] usb 2-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.00
[  213.694306][  T328] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.726349][  T328] usb 2-1: config 0 descriptor??
[  213.970891][T13139] netlink: 116 bytes leftover after parsing attributes in process `syz.4.5565'.
[  214.147419][T13151] loop8: detected capacity change from 0 to 128
[  214.248246][  T328] apple 0003:05AC:0225.001F: hidraw0: USB HID v0.00 Device [HID 05ac:0225] on usb-dummy_hcd.1-1/input0
[  214.445274][T13192] loop8: detected capacity change from 0 to 256
[  214.465029][  T328] usb 2-1: USB disconnect, device number 17
[  214.494033][T13203] loop7: detected capacity change from 0 to 1024
[  214.539095][T13192] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  214.551674][T13203] EXT4-fs (loop7): Ignoring removed nobh option
[  214.572536][T13203] EXT4-fs (loop7): Ignoring removed bh option
[  214.596266][T13203] EXT4-fs (loop7): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  214.616139][T13203] EXT4-fs (loop7): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[  214.666380][T13203] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:3876: comm syz.7.5597: Allocating blocks 497-513 which overlap fs metadata
[  214.773451][T13218] netlink: 'syz.4.5603': attribute type 6 has an invalid length.
[  214.824012][T13226] loop7: detected capacity change from 0 to 512
[  214.911053][T13226] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.5606: inode #1: comm syz.7.5606: iget: illegal inode #
[  214.938448][T13226] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.5606: error while reading EA inode 1 err=-117
[  214.964731][T13226] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.5606: inode #1: comm syz.7.5606: iget: illegal inode #
[  214.988561][T13226] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.5606: error while reading EA inode 1 err=-117
[  215.002029][T13226] EXT4-fs (loop7): 1 orphan inode deleted
[  215.008174][T13226] EXT4-fs (loop7): mounted filesystem without journal. Opts: usrjquota=,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,grpquota,usrjquota=,journal_dev=0x0000000000000dcc,,errors=continue. Quota mode: writeback.
[  215.294581][T13284] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5634'.
[  215.367868][T13292] loop7: detected capacity change from 0 to 512
[  215.428743][T13292] EXT4-fs (loop7): Ignoring removed oldalloc option
[  215.435633][T13292] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  215.446050][T13292] EXT4-fs (loop7): warning: checktime reached, running e2fsck is recommended
[  215.454992][T13292] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c09c, mo2=0002]
[  215.462935][T13292] System zones: 0-2, 18-18, 34-34
[  215.468932][T13292] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1054: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  215.484322][T13292] EXT4-fs (loop7): 1 truncate cleaned up
[  215.489783][T13292] EXT4-fs (loop7): mounted filesystem without journal. Opts: oldalloc,minixdf,,errors=continue. Quota mode: none.
[  215.526475][  T329] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  215.534029][ T7949] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  215.794671][  T329] usb 1-1: Using ep0 maxpacket: 32
[  215.945911][  T329] usb 1-1: config 0 interface 0 altsetting 156 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  215.964808][T13329] loop8: detected capacity change from 0 to 1024
[  215.971371][ T7949] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.981478][  T329] usb 1-1: config 0 interface 0 altsetting 156 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.991528][ T7949] usb 5-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  216.000902][  T329] usb 1-1: config 0 interface 0 has no altsetting 0
[  216.007912][ T7949] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.016142][  T329] usb 1-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.00
[  216.025944][  T329] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.034296][ T7949] usb 5-1: config 0 descriptor??
[  216.040307][  T329] usb 1-1: config 0 descriptor??
[  216.060986][T13329] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  216.076509][T13329] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  216.152947][T13347] netlink: 176 bytes leftover after parsing attributes in process `syz.8.5662'.
[  216.206500][T13355] loop8: detected capacity change from 0 to 256
[  216.221220][T13357] loop7: detected capacity change from 0 to 256
[  216.352773][T13371] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev ?, type ?) errno=-22
[  216.364177][T13371] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  216.397075][T13375] loop7: detected capacity change from 0 to 512
[  216.420976][T13375] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  216.436953][T13375] ext4 filesystem being mounted at /174/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  216.517147][T13390] netlink: 4344 bytes leftover after parsing attributes in process `syz.7.5681'.
[  216.539991][ T7949] lenovo 0003:17EF:6047.0020: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.4-1/input0
[  216.569111][  T329] apple 0003:05AC:0225.0021: hidraw1: USB HID v0.00 Device [HID 05ac:0225] on usb-dummy_hcd.0-1/input0
[  216.584353][T13400] input: syz0 as /devices/virtual/input/input37
[  216.612406][T13402] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5688'.
[  216.626779][T13404] loop8: detected capacity change from 0 to 256
[  216.660899][T13408] loop7: detected capacity change from 0 to 4096
[  216.745216][T13408] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  216.764327][ T7949] lenovo 0003:17EF:6047.0020: Failed to switch F7/9/11 mode: -71
[  216.783218][   T60] usb 1-1: USB disconnect, device number 16
[  216.789427][ T7949] lenovo 0003:17EF:6047.0020: Failed to switch middle button: -71
[  216.840635][ T7949] lenovo 0003:17EF:6047.0020: Fn-lock setting failed: -71
[  216.861239][ T7949] lenovo 0003:17EF:6047.0020: Sensitivity setting failed: -71
[  216.873963][ T7949] usb 5-1: USB disconnect, device number 19
[  216.905285][   T30] kauditd_printk_skb: 126 callbacks suppressed
[  216.905303][   T30] audit: type=1326 audit(2000000866.631:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  216.936708][   T30] audit: type=1326 audit(2000000866.631:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  216.961007][   T30] audit: type=1326 audit(2000000866.631:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  216.986778][   T30] audit: type=1326 audit(2000000866.631:3864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  217.016636][   T30] audit: type=1326 audit(2000000866.631:3865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  217.040737][   T30] audit: type=1326 audit(2000000866.631:3866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  217.065042][   T30] audit: type=1326 audit(2000000866.631:3867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  217.089418][   T30] audit: type=1326 audit(2000000866.631:3868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  217.115128][T13432] loop8: detected capacity change from 0 to 8192
[  217.123999][   T30] audit: type=1326 audit(2000000866.631:3869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  217.160643][   T30] audit: type=1326 audit(2000000866.631:3870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13426 comm="syz.8.5698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  217.194797][T13437] loop7: detected capacity change from 0 to 128
[  217.422159][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  217.782455][T13508] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5735'.
[  217.797929][T13508] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5735'.
[  218.713343][T13604] netem: change failed
[  219.113837][T11770] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  219.350762][  T328] hid-generic BE03:0000:0A9B.0022: item fetching failed at offset 0/2
[  219.359842][  T328] hid-generic: probe of BE03:0000:0A9B.0022 failed with error -22
[  219.379236][T11770] usb 1-1: Using ep0 maxpacket: 32
[  219.509312][T11770] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[  219.518253][T11770] usb 1-1: config 0 has no interface number 0
[  219.549739][T13654] loop8: detected capacity change from 0 to 512
[  219.608032][T13654] EXT4-fs (loop8): mounted filesystem without journal. Opts: noauto_da_alloc,grpjquota=,noquota,norecovery,bsddf,,errors=continue. Quota mode: writeback.
[  219.623812][T13654] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.693459][T11770] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  219.709067][T11770] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.726355][T11770] usb 1-1: Product: syz
[  219.730364][T11770] usb 1-1: Manufacturer: syz
[  219.734798][T11770] usb 1-1: SerialNumber: syz
[  219.746501][T11770] usb 1-1: config 0 descriptor??
[  219.791265][T11770] smsc95xx v2.0.0
[  220.008846][T13683] device veth1_macvtap left promiscuous mode
[  220.014955][T13683] device macsec0 entered promiscuous mode
[  220.060484][T13692] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  220.071583][T13692] FAT-fs (loop3): unable to read boot sector
[  220.257405][T13723] syz.8.5834[13723] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.257472][T13723] syz.8.5834[13723] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.267396][T11770] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  220.292137][T11770] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  220.379316][T13733] xt_hashlimit: size too large, truncated to 1048576
[  220.537962][   T60] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  220.570442][T11770] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  220.586428][T11770] smsc95xx: probe of 1-1:0.67 failed with error -71
[  220.607234][T11770] usb 1-1: USB disconnect, device number 17
[  220.685897][T13743] binfmt_misc: register: failed to install interpreter file ./file0
[  220.798481][T13752] loop8: detected capacity change from 0 to 512
[  220.830769][   T60] usb 2-1: Using ep0 maxpacket: 32
[  220.837953][T13752] EXT4-fs (loop8): mounted filesystem without journal. Opts: resgid=0x0000000000000000,noload,noblock_validity,,errors=continue. Quota mode: none.
[  220.859054][T13752] EXT4-fs (loop8): Couldn't remount RDWR because of unprocessed orphan inode list.  Please umount/remount instead
[  220.960369][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  220.971375][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.980996][   T60] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  220.990090][   T60] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.002196][   T60] usb 2-1: config 0 descriptor??
[  221.100106][T13764] loop8: detected capacity change from 0 to 1024
[  221.125283][T13768] syz.0.5853[13768] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  221.125351][T13768] syz.0.5853[13768] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  221.150203][T13764] EXT4-fs (loop8): Ignoring removed orlov option
[  221.169091][T13764] EXT4-fs (loop8): Ignoring removed bh option
[  221.175831][T13764] EXT4-fs (loop8): Ignoring removed nomblk_io_submit option
[  221.220862][T13764] EXT4-fs (loop8): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,bh,max_batch_time=0x0000000000000000,nomblk_io_submit,,errors=continue. Quota mode: none.
[  221.254728][T13764] incfs: Unexpected inode type
[  221.377572][T13793] loop8: detected capacity change from 0 to 256
[  221.415199][  T329] Bluetooth: hci0: command 0x1003 tx timeout
[  221.421349][   T47] Bluetooth: hci0: sending frame failed (-49)
[  221.429033][T13793] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  221.441746][T13793] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  221.515694][   T60] savu 0003:1E7D:2D5A.0023: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  221.549373][T13801] SELinux: security_context_str_to_sid(lidatetrans) failed for (dev ?, type ?) errno=-22
[  221.562036][T13801] SELinux: security_context_str_to_sid(lidatetrans) failed for (dev bpf, type bpf) errno=-22
[  221.805705][  T328] usb 2-1: USB disconnect, device number 18
[  222.243487][T13807] loop7: detected capacity change from 0 to 512
[  222.278284][T13807] EXT4-fs (loop7): 1 orphan inode deleted
[  222.284055][T13807] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  222.296155][T13807] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.360399][   T30] kauditd_printk_skb: 83 callbacks suppressed
[  222.360417][   T30] audit: type=1400 audit(2000000003.814:3954): avc:  denied  { ioctl } for  pid=13816 comm="syz.0.5874" path="socket:[68022]" dev="sockfs" ino=68022 ioctlcmd=0x7436 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  222.655222][   T30] audit: type=1326 audit(2000000004.081:3955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.727815][   T30] audit: type=1326 audit(2000000004.081:3956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.789727][   T30] audit: type=1326 audit(2000000004.081:3957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.823986][T13853] loop8: detected capacity change from 0 to 512
[  222.844190][   T30] audit: type=1326 audit(2000000004.081:3958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.873856][   T30] audit: type=1326 audit(2000000004.081:3959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.898085][   T30] audit: type=1326 audit(2000000004.081:3960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.931372][   T30] audit: type=1326 audit(2000000004.081:3961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.956303][   T30] audit: type=1326 audit(2000000004.081:3962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13846 comm="syz.8.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  222.967873][T13871] loop7: detected capacity change from 0 to 512
[  222.989759][T13853] EXT4-fs (loop8): mounted filesystem without journal. Opts: errors=remount-ro,i_version,. Quota mode: writeback.
[  223.018321][T13853] ext4 filesystem being mounted at /260/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.053910][T13871] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  223.066245][T13871] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.096806][T13871] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  223.142713][T13871] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28
[  223.179572][T13871] EXT4-fs (loop7): This should not happen!! Data will be lost
[  223.179572][T13871] 
[  223.223232][T13871] EXT4-fs (loop7): Total free blocks count 0
[  223.229934][T13871] EXT4-fs (loop7): Free/Dirty block details
[  223.245048][T13871] EXT4-fs (loop7): free_blocks=65280
[  223.250577][T13871] EXT4-fs (loop7): dirty_blocks=31
[  223.256787][T13871] EXT4-fs (loop7): Block reservation details
[  223.264490][T13871] EXT4-fs (loop7): i_reserved_data_blocks=31
[  223.285363][   T30] audit: type=1326 audit(2000000004.663:3963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13903 comm="syz.8.5912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cc7b59169 code=0x7ffc0000
[  223.310192][  T328] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  223.342289][T13909] syz.8.5915[13909] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  223.342447][T13909] syz.8.5915[13909] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  223.569907][  T328] usb 1-1: Using ep0 maxpacket: 8
[  223.656979][T11770] Bluetooth: hci0: command 0x1001 tx timeout
[  223.667588][   T47] Bluetooth: hci0: sending frame failed (-49)
[  223.680097][T13944] loop7: detected capacity change from 0 to 512
[  223.701241][T13944] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  223.721501][  T328] usb 1-1: config 0 has no interfaces?
[  223.727007][  T328] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  223.737389][  T328] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.739135][T13944] EXT4-fs (loop7): 1 truncate cleaned up
[  223.755682][  T328] usb 1-1: config 0 descriptor??
[  223.764852][T13944] EXT4-fs (loop7): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[  223.841133][T13944] EXT4-fs error (device loop7): mb_free_blocks:1865: group 0, inode 16: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[  223.856900][T13944] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #16: comm syz.7.5931: invalid indirect mapped block 3489660928 (level 0)
[  224.185613][T13958] SELinux:  policydb version 0 does not match my version range 15-33
[  224.193942][T13958] SELinux: failed to load policy
[  224.232697][T13876] UDC core: couldn't find an available UDC or it's busy: -16
[  224.240576][T13876] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  224.249350][T11770] usb 1-1: USB disconnect, device number 18
[  224.542634][T13974] sit: non-ECT from 0.0.0.0 with TOS=0x3
[  224.611270][T13977] loop7: detected capacity change from 0 to 512
[  224.692486][T13977] EXT4-fs (loop7): mounted filesystem without journal. Opts: errors=remount-ro,i_version,. Quota mode: writeback.
[  224.707037][T13977] ext4 filesystem being mounted at /226/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.872471][T14009] x_tables: duplicate underflow at hook 1
[  224.872739][T14010] loop7: detected capacity change from 0 to 512
[  224.915278][T14010] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  224.933775][T14010] EXT4-fs (loop7): invalid journal inode
[  224.945195][T14010] EXT4-fs (loop7): can't get journal size
[  224.952941][T14010] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c118, mo2=0002]
[  224.961645][T14010] System zones: 1-12, 13-13
[  224.967539][T14010] EXT4-fs (loop7): 1 truncate cleaned up
[  224.973146][T14010] EXT4-fs (loop7): mounted filesystem without journal. Opts: norecovery,grpquota,debug,discard,,errors=continue. Quota mode: writeback.
[  225.145718][T14038] loop8: detected capacity change from 0 to 8192
[  225.190590][T14038] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  225.347434][T14060] incfs: Error accessing: ./bus.
[  225.352631][T14060] incfs: mount failed -2
[  225.908843][T11770] Bluetooth: hci0: command 0x1009 tx timeout
[  225.933900][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x1
[  225.942726][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  225.950944][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  225.961700][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  225.970091][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x2
[  225.978678][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  225.986492][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  225.994412][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.014885][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.024941][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.032463][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x2
[  226.049582][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.058389][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.066171][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.083676][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.091871][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.102235][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.111163][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.124243][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.134442][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.143333][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.158085][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.165446][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.173310][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.190440][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.202451][T14159] usb usb8: usbfs: process 14159 (syz.8.6026) did not claim interface 0 before use
[  226.217855][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.226529][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.234176][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.242382][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.252360][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.260149][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.268737][T11770] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  226.278099][T11770] hid-generic 0000:0000:0000.0024: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  226.474695][T14191] SELinux: security_context_str_to_sid(system_u) failed for (dev ?, type ?) errno=-22
[  226.484409][T14191] fuse: Bad value for 'fd'
[  226.544702][T14198] syz.0.6045[14198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.544803][T14198] syz.0.6045[14198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  227.034996][  T329] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  227.139349][T14218] loop7: detected capacity change from 0 to 40427
[  227.232615][T14218] F2FS-fs (loop7): Insane cp_payload (553648128 >= 504)
[  227.239606][T14218] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  227.247966][T14218] F2FS-fs (loop7): fault_injection options not supported
[  227.255079][T14218] F2FS-fs (loop7): fault_type options not supported
[  227.262941][T14218] F2FS-fs (loop7): invalid crc value
[  227.269873][T14218] F2FS-fs (loop7): Found nat_bits in checkpoint
[  227.302696][T14218] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  227.309712][  T329] usb 9-1: Using ep0 maxpacket: 32
[  227.314866][T14218] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  227.344671][T14218] attempt to access beyond end of device
[  227.344671][T14218] loop7: rw=2049, want=45232, limit=40427
[  227.357450][T14218] attempt to access beyond end of device
[  227.357450][T14218] loop7: rw=2049, want=45240, limit=40427
[  227.376272][T11399] attempt to access beyond end of device
[  227.376272][T11399] loop7: rw=2049, want=45248, limit=40427
[  227.435754][  T329] usb 9-1: config 0 has an invalid interface number: 67 but max is 0
[  227.443804][  T329] usb 9-1: config 0 has no interface number 0
[  227.641791][  T329] usb 9-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  227.650766][  T329] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.671322][  T329] usb 9-1: Product: syz
[  227.675851][  T329] usb 9-1: Manufacturer: syz
[  227.681069][  T329] usb 9-1: SerialNumber: syz
[  227.694807][  T329] usb 9-1: config 0 descriptor??
[  227.750815][  T329] smsc95xx v2.0.0
[  228.215415][  T329] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  228.233330][  T329] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  228.545765][T14267] device vlan3 entered promiscuous mode
[  228.551500][  T329] smsc95xx 9-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  228.569517][  T329] smsc95xx: probe of 9-1:0.67 failed with error -71
[  228.576348][T14267] device veth0_virt_wifi entered promiscuous mode
[  228.596114][  T329] usb 9-1: USB disconnect, device number 6
[  228.610513][T14267] device veth0_virt_wifi left promiscuous mode
[  228.758780][   T30] kauditd_printk_skb: 128 callbacks suppressed
[  228.758798][   T30] audit: type=1326 audit(2000000521.723:4092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14270 comm="syz.1.6075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  228.825893][   T30] audit: type=1326 audit(2000000521.750:4093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14270 comm="syz.1.6075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  228.875714][   T30] audit: type=1326 audit(2000000521.750:4094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14270 comm="syz.1.6075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  228.921581][   T30] audit: type=1326 audit(2000000521.750:4095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14270 comm="syz.1.6075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  228.984958][   T30] audit: type=1326 audit(2000000521.750:4096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14270 comm="syz.1.6075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7421328169 code=0x7ffc0000
[  229.163860][T14295] netlink: 9 bytes leftover after parsing attributes in process `syz.8.6086'.
[  229.176199][T14295] device gretap0 entered promiscuous mode
[  229.187435][T14295] netlink: 5 bytes leftover after parsing attributes in process `syz.8.6086'.
[  229.196840][T14295] 0猉功D: renamed from gretap0
[  229.209156][T14295] device 
30猉功D left promiscuous mode
[  229.223483][T14295] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  229.298792][T14303] xt_hashlimit: max too large, truncated to 1048576
[  229.607985][   T30] audit: type=1326 audit(2000000522.508:4097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.0.6094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  229.679010][   T30] audit: type=1326 audit(2000000522.508:4098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.0.6094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  229.753020][   T30] audit: type=1326 audit(2000000522.535:4099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.0.6094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  229.833883][   T30] audit: type=1326 audit(2000000522.563:4100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.0.6094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  229.886601][   T30] audit: type=1326 audit(2000000522.572:4101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14313 comm="syz.0.6094" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f0d68f94169 code=0x7ffc0000
[  230.121053][  T329] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  230.391776][  T329] usb 1-1: Using ep0 maxpacket: 16
[  230.532641][  T329] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  230.554159][  T329] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  230.574721][  T329] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  230.629959][  T329] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  230.663171][  T329] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.686909][  T329] usb 1-1: config 0 descriptor??
[  230.782060][  T328] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  230.793131][  T328] hid-generic 0000:0000:0000.0025: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  231.030777][T14365] loop7: detected capacity change from 0 to 256
[  231.039462][T14367] netlink: 88 bytes leftover after parsing attributes in process `syz.4.6119'.
[  231.053359][T14365] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  231.063475][T14367] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6119'.
[  231.149729][  T328] usb 2-1: new full-speed USB device number 19 using dummy_hcd
[  231.205020][  T329] kovaplus 0003:1E7D:2D50.0026: unknown main item tag 0x0
[  231.227443][  T329] kovaplus 0003:1E7D:2D50.0026: unknown main item tag 0x0
[  231.234744][  T329] kovaplus 0003:1E7D:2D50.0026: unknown main item tag 0x0
[  231.254009][  T329] kovaplus 0003:1E7D:2D50.0026: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.0-1/input0
[  231.389154][T14385] netlink: 9 bytes leftover after parsing attributes in process `syz.7.6127'.
[  231.399787][T14387] binfmt_misc: register: failed to install interpreter file ./file0
[  231.410056][T14385] device gretap0 entered promiscuous mode
[  231.434060][T14385] netlink: 5 bytes leftover after parsing attributes in process `syz.7.6127'.
[  231.453082][T14385] 0猉功D: renamed from gretap0
[  231.458319][T14385] device 
30猉功D left promiscuous mode
[  231.475315][T14385] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  231.539568][  T328] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  231.562158][  T328] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  231.578938][T14393] netlink: 88 bytes leftover after parsing attributes in process `syz.7.6131'.
[  231.588193][T14393] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6131'.
[  231.724468][T14401] syz.4.6136[14401] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.724569][T14401] syz.4.6136[14401] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.745381][  T328] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  231.776533][  T328] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  231.787457][  T328] usb 2-1: Product: syz
[  231.798395][  T328] usb 2-1: Manufacturer: syz
[  231.809341][  T328] usb 2-1: SerialNumber: syz
[  231.918695][  T329] kovaplus 0003:1E7D:2D50.0026: couldn't init struct kovaplus_device
[  231.936436][  T329] kovaplus 0003:1E7D:2D50.0026: couldn't install mouse
[  231.951738][  T329] kovaplus: probe of 0003:1E7D:2D50.0026 failed with error -71
[  231.984598][  T329] usb 1-1: USB disconnect, device number 19
[  232.167704][  T328] usb 2-1: 0:2 : does not exist
[  232.177474][  T328] usb 2-1: USB disconnect, device number 19
[  232.407418][  T433] udevd[433]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  232.992848][T14495] 9pnet: Insufficient options for proto=fd
[  233.154684][T14503] loop8: detected capacity change from 0 to 256
[  233.197899][T14503] exfat: Deprecated parameter 'utf8'
[  233.255819][T14503] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xc61f63e4, utbl_chksum : 0xe619d30d)
[  233.309786][T14492] loop7: detected capacity change from 0 to 40427
[  233.400045][T14492] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  233.432721][T14492] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  233.523002][T14492] F2FS-fs (loop7): Found nat_bits in checkpoint
[  233.598711][T14492] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  233.605799][T14492] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  233.654988][T14520] netlink: 52 bytes leftover after parsing attributes in process `syz.0.6186'.
[  233.702315][T14506] loop8: detected capacity change from 0 to 40427
[  233.736500][ T4093] Bluetooth: hci0: Frame reassembly failed (-84)
[  233.778285][T14506] F2FS-fs (loop8): Found nat_bits in checkpoint
[  233.835578][T14506] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  233.900582][T14506] attempt to access beyond end of device
[  233.900582][T14506] loop8: rw=2049, want=53256, limit=40427
[  233.912237][T14506] attempt to access beyond end of device
[  233.912237][T14506] loop8: rw=2049, want=53288, limit=40427
[  233.925866][T14506] attempt to access beyond end of device
[  233.925866][T14506] loop8: rw=2049, want=53320, limit=40427
[  233.937613][T14506] attempt to access beyond end of device
[  233.937613][T14506] loop8: rw=2049, want=53368, limit=40427
[  233.957730][T14506] attempt to access beyond end of device
[  233.957730][T14506] loop8: rw=2049, want=53408, limit=40427
[  233.979278][T14506] attempt to access beyond end of device
[  233.979278][T14506] loop8: rw=2049, want=53256, limit=40427
[  233.995820][T14506] attempt to access beyond end of device
[  233.995820][T14506] loop8: rw=2049, want=53288, limit=40427
[  234.011210][T14506] attempt to access beyond end of device
[  234.011210][T14506] loop8: rw=2049, want=53320, limit=40427
[  234.022940][T14506] attempt to access beyond end of device
[  234.022940][T14506] loop8: rw=2049, want=53368, limit=40427
[  234.040779][T14506] attempt to access beyond end of device
[  234.040779][T14506] loop8: rw=2049, want=53408, limit=40427
[  234.171860][ T1551] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  234.206700][T14565] loop7: detected capacity change from 0 to 512
[  234.260078][T14565] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  234.271454][T14565] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.366737][T11770] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  234.572740][ T1551] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.583681][ T1551] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.594657][ T1551] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  234.603549][ T1551] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.625163][ T1551] usb 2-1: config 0 descriptor??
[  234.746079][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  234.758489][T11770] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.771327][T11770] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.781987][T11770] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  234.791169][T11770] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.813946][T11770] usb 1-1: config 0 descriptor??
[  234.883944][T14618] syz.7.6228[14618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  234.884028][T14618] syz.7.6228[14618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  234.896521][T14618] hub 9-0:1.0: USB hub found
[  234.915301][T14618] hub 9-0:1.0: 1 port detected
[  234.991596][T14626] loop8: detected capacity change from 0 to 2048
[  235.063762][T14626] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  235.071354][T14637] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6235'.
[  235.095034][T14637] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6235'.
[  235.098130][T14626] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  235.119068][T14626] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  235.140814][T14626] EXT4-fs (loop8): This should not happen!! Data will be lost
[  235.140814][T14626] 
[  235.153370][T14626] EXT4-fs (loop8): Total free blocks count 0
[  235.159981][T14626] EXT4-fs (loop8): Free/Dirty block details
[  235.168674][T14626] EXT4-fs (loop8): free_blocks=2415919104
[  235.169437][ T1551] keytouch 0003:0926:3333.0027: fixing up Keytouch IEC report descriptor
[  235.174237][T14626] EXT4-fs (loop8): dirty_blocks=32
[  235.187732][ T1551] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0027/input/input38
[  235.189832][T14626] EXT4-fs (loop8): Block reservation details
[  235.205470][   T30] kauditd_printk_skb: 34 callbacks suppressed
[  235.205486][   T30] audit: type=1326 audit(2000003105.682:4136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.222542][T14626] EXT4-fs (loop8): i_reserved_data_blocks=2
[  235.254491][   T30] audit: type=1326 audit(2000003105.682:4137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.287797][   T30] audit: type=1326 audit(2000003105.710:4138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.292175][ T1551] keytouch 0003:0926:3333.0027: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  235.323692][   T30] audit: type=1326 audit(2000003105.710:4139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.356403][   T30] audit: type=1326 audit(2000003105.710:4140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.385013][   T30] audit: type=1326 audit(2000003105.710:4141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.417225][   T30] audit: type=1326 audit(2000003105.710:4142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.443309][   T30] audit: type=1326 audit(2000003105.710:4143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.467475][   T30] audit: type=1326 audit(2000003105.710:4144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.491651][ T1551] usb 2-1: USB disconnect, device number 20
[  235.492156][   T30] audit: type=1326 audit(2000003105.710:4145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14641 comm="syz.7.6237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9e86e1169 code=0x7ffc0000
[  235.580111][T11770] usb 1-1: string descriptor 0 read error: -22
[  235.630559][T11399] ------------[ cut here ]------------
[  235.646560][T11399] WARNING: CPU: 1 PID: 11399 at fs/inode.c:332 drop_nlink+0xc1/0x110
[  235.654642][T11399] Modules linked in:
[  235.658476][T11399] CPU: 1 PID: 11399 Comm: syz-executor Not tainted 5.15.178-syzkaller-00034-g5e1b899f19c3 #0
[  235.673110][T11399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  235.684563][T11399] RIP: 0010:drop_nlink+0xc1/0x110
[  235.690793][T11399] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 d7 f5 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 9f 88 ae ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[  235.702754][T14659] loop8: detected capacity change from 0 to 512
[  235.711393][T11399] RSP: 0018:ffffc900026e7c88 EFLAGS: 00010293
[  235.724081][T11399] RAX: ffffffff81c1e411 RBX: 0000000000000000 RCX: ffff888138e0e2c0
[  235.732366][T11399] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  235.740393][T11399] RBP: ffffc900026e7cb0 R08: ffffffff81c1e394 R09: 0000000000000003
[  235.748300][T11399] R10: fffff520004dcf80 R11: dffffc0000000001 R12: dffffc0000000000
[  235.756448][T11399] R13: 1ffff11022cba5da R14: ffff8881165d2e88 R15: ffff8881165d2ed0
[  235.759678][T14659] EXT4-fs error (device loop8): ext4_orphan_get:1401: inode #15: comm syz.8.6245: casefold flag without casefold feature
[  235.764684][T11399] FS:  00005555637dd500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  235.777523][T14659] EXT4-fs error (device loop8): ext4_orphan_get:1406: comm syz.8.6245: couldn't read orphan inode 15 (err -117)
[  235.797760][T11399] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  235.804175][T11399] CR2: 0000001b2ef0fff8 CR3: 0000000118c8c000 CR4: 00000000003506a0
[  235.812346][T11399] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  235.822238][T11770] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.0028/input/input39
[  235.833956][T14659] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  235.845093][T11399] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  235.853306][T11399] Call Trace:
[  235.858142][T11399]  <TASK>
[  235.861436][T11770] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.0028/input/input40
[  235.878799][T11770] uclogic 0003:256C:006D.0028: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.0-1/input0
[  235.882283][T11399]  ? show_regs+0x58/0x60
[  235.895081][T11399]  ? __warn+0x160/0x2f0
[  235.899564][T11399]  ? drop_nlink+0xc1/0x110
[  235.903945][T11399]  ? report_bug+0x3d9/0x5b0
[  235.908373][T11399]  ? drop_nlink+0xc1/0x110
[  235.912733][T11399]  ? handle_bug+0x41/0x70
[  235.917212][T11399]  ? exc_invalid_op+0x1b/0x50
[  235.921737][T11399]  ? asm_exc_invalid_op+0x1b/0x20
[  235.927316][T11399]  ? drop_nlink+0x44/0x110
[  235.931706][T11399]  ? drop_nlink+0xc1/0x110
[  235.937395][T11399]  ? drop_nlink+0xc1/0x110
[  235.942130][T11399]  ? drop_nlink+0xc1/0x110
[  235.946395][T11399]  shmem_rmdir+0x59/0x90
[  235.954826][T11399]  vfs_rmdir+0x324/0x470
[  235.959273][T11770] Bluetooth: hci0: command 0x1003 tx timeout
[  235.960454][   T47] Bluetooth: hci0: sending frame failed (-49)
[  235.965479][T11399]  incfs_kill_sb+0x113/0x230
[  235.975801][T11399]  deactivate_locked_super+0xad/0x110
[  235.983387][T11399]  deactivate_super+0xbe/0xf0
[  235.988050][T11399]  cleanup_mnt+0x45c/0x510
[  235.992455][T11399]  __cleanup_mnt+0x19/0x20
[  235.996986][T11399]  task_work_run+0x129/0x190
[  236.001485][T11399]  exit_to_user_mode_loop+0xc4/0xe0
[  236.024212][T11399]  exit_to_user_mode_prepare+0x5a/0xa0
[  236.029641][T11399]  syscall_exit_to_user_mode+0x26/0x160
[  236.035741][T14663] loop8: detected capacity change from 0 to 2048
[  236.045931][T11399]  do_syscall_64+0x47/0xb0
[  236.046941][  T329] usb 1-1: USB disconnect, device number 20
[  236.050809][T11399]  ? clear_bhb_loop+0x35/0x90
[  236.060882][T11399]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  236.067890][T11399] RIP: 0033:0x7ff9e86e2497
[  236.073034][T11399] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  236.097279][T11399] RSP: 002b:00007fff4588b948 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  236.108039][T11399] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007ff9e86e2497
[  236.117152][T11399] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff4588ba00
[  236.126310][T11399] RBP: 00007fff4588ba00 R08: 0000000000000000 R09: 0000000000000000
[  236.134658][T11399] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff4588ca90
[  236.142585][T11399] R13: 00007ff9e876208c R14: 00000000000384af R15: 00007fff4588cad0
[  236.150603][T11399]  </TASK>
[  236.153646][T11399] ---[ end trace 451651c76fe251b0 ]---
[  236.164052][T11399] ==================================================================
[  236.171955][T11399] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[  236.176260][T14663] GPT:first_usable_lbas don't match.
[  236.178026][T11399] Write of size 4 at addr 0000000000000170 by task syz-executor/11399
[  236.183144][T14663] GPT:34 != 290
[  236.191137][T11399] 
[  236.191147][T11399] CPU: 0 PID: 11399 Comm: syz-executor Tainted: G        W         5.15.178-syzkaller-00034-g5e1b899f19c3 #0
[  236.191173][T11399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  236.191185][T11399] Call Trace:
[  236.191194][T11399]  <TASK>
[  236.191204][T11399]  dump_stack_lvl+0x151/0x1c0
[  236.195515][T14663] GPT: Use GNU Parted to correct GPT errors.
[  236.196773][T11399]  ? io_uring_drop_tctx_refs+0x190/0x190
[  236.208590][T14663]  loop8: p1 p2 p3
[  236.218132][T11399]  ? _raw_spin_lock+0xa4/0x1b0
[  236.248374][T11399]  ? _raw_spin_trylock_bh+0x190/0x190
[  236.253548][T11399]  kasan_report+0x16f/0x1c0
[  236.257902][T11399]  ? ihold+0x20/0x60
[  236.261790][T11399]  ? ihold+0x20/0x60
[  236.265523][T11399]  kasan_check_range+0x293/0x2a0
[  236.270298][T11399]  __kasan_check_write+0x14/0x20
[  236.275070][T11399]  ihold+0x20/0x60
[  236.278626][T11399]  vfs_rmdir+0x201/0x470
[  236.282708][T11399]  incfs_kill_sb+0x113/0x230
[  236.287135][T11399]  deactivate_locked_super+0xad/0x110
[  236.292342][T11399]  deactivate_super+0xbe/0xf0
[  236.296852][T11399]  cleanup_mnt+0x45c/0x510
[  236.301105][T11399]  __cleanup_mnt+0x19/0x20
[  236.305453][T11399]  task_work_run+0x129/0x190
[  236.309871][T11399]  exit_to_user_mode_loop+0xc4/0xe0
[  236.314906][T11399]  exit_to_user_mode_prepare+0x5a/0xa0
[  236.320198][T11399]  syscall_exit_to_user_mode+0x26/0x160
[  236.325579][T11399]  do_syscall_64+0x47/0xb0
[  236.329833][T11399]  ? clear_bhb_loop+0x35/0x90
[  236.334359][T11399]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  236.340164][T11399] RIP: 0033:0x7ff9e86e2497
[  236.344423][T11399] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  236.364137][T11399] RSP: 002b:00007fff4588b948 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  236.372379][T11399] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007ff9e86e2497
[  236.380270][T11399] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff4588ba00
[  236.388271][T11399] RBP: 00007fff4588ba00 R08: 0000000000000000 R09: 0000000000000000
[  236.396097][T11399] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff4588ca90
[  236.404134][T11399] R13: 00007ff9e876208c R14: 00000000000384af R15: 00007fff4588cad0
[  236.412046][T11399]  </TASK>
[  236.414884][T11399] ==================================================================
[  236.422796][T11399] Disabling lock debugging due to kernel taint
[  236.442003][T11399] BUG: kernel NULL pointer dereference, address: 0000000000000170
[  236.449846][T11399] #PF: supervisor write access in kernel mode
[  236.455743][T11399] #PF: error_code(0x0002) - not-present page
[  236.461560][T11399] PGD 106bae067 P4D 106bae067 PUD 0 
[  236.466684][T11399] Oops: 0002 [#1] PREEMPT SMP KASAN
[  236.471716][T11399] CPU: 1 PID: 11399 Comm: syz-executor Tainted: G    B   W         5.15.178-syzkaller-00034-g5e1b899f19c3 #0
[  236.483090][T11399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  236.493122][T11399] RIP: 0010:ihold+0x25/0x60
[  236.497450][T11399] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 b1 80 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 c0 ed f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 34 84 ae
[  236.517075][T11399] RSP: 0018:ffffc900026e7cc8 EFLAGS: 00010246
[  236.522965][T11399] RAX: ffff888138e0e200 RBX: 0000000000000001 RCX: ffff888138e0e2c0
[  236.530862][T11399] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff
[  236.541209][T11399] RBP: ffffc900026e7cd8 R08: ffffffff8141a9ab R09: 0000000000000003
[  236.549201][T11399] R10: fffffbfff0e9aa4c R11: dffffc0000000001 R12: dffffc0000000000
[  236.557106][T11399] R13: ffff888112f0faa0 R14: 0000000000000000 R15: 1ffff110225e1f5a
[  236.564996][T11399] FS:  00005555637dd500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  236.573861][T11399] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  236.580272][T11399] CR2: 0000000000000170 CR3: 0000000118c8c000 CR4: 00000000003506a0
[  236.588082][T11399] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  236.595891][T11399] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  236.603891][T11399] Call Trace:
[  236.607001][T11399]  <TASK>
[  236.609783][T11399]  ? __die_body+0x62/0xb0
[  236.613957][T11399]  ? __die+0x7e/0x90
[  236.617688][T11399]  ? page_fault_oops+0x7f9/0xa90
[  236.622541][T11399]  ? __kasan_check_write+0x14/0x20
[  236.627575][T11399]  ? kernelmode_fixup_or_oops+0xd0/0xd0
[  236.633042][T11399]  ? __schedule+0xcd4/0x1590
[  236.637680][T11399]  ? exc_page_fault+0x510/0x7f0
[  236.642401][T11399]  ? asm_exc_page_fault+0x27/0x30
[  236.647307][T11399]  ? check_panic_on_warn+0x5b/0xb0
[  236.652350][T11399]  ? ihold+0x25/0x60
[  236.656076][T11399]  ? ihold+0x20/0x60
[  236.659810][T11399]  vfs_rmdir+0x201/0x470
[  236.663893][T11399]  incfs_kill_sb+0x113/0x230
[  236.668578][T11399]  deactivate_locked_super+0xad/0x110
[  236.674566][T11399]  deactivate_super+0xbe/0xf0
[  236.679078][T11399]  cleanup_mnt+0x45c/0x510
[  236.683347][T11399]  __cleanup_mnt+0x19/0x20
[  236.687679][T11399]  task_work_run+0x129/0x190
[  236.692095][T11399]  exit_to_user_mode_loop+0xc4/0xe0
[  236.697652][T11399]  exit_to_user_mode_prepare+0x5a/0xa0
[  236.702950][T11399]  syscall_exit_to_user_mode+0x26/0x160
[  236.708333][T11399]  do_syscall_64+0x47/0xb0
[  236.712576][T11399]  ? clear_bhb_loop+0x35/0x90
[  236.717090][T11399]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  236.722817][T11399] RIP: 0033:0x7ff9e86e2497
[  236.727076][T11399] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  236.746518][T11399] RSP: 002b:00007fff4588b948 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  236.755209][T11399] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007ff9e86e2497
[  236.763010][T11399] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff4588ba00
[  236.770815][T11399] RBP: 00007fff4588ba00 R08: 0000000000000000 R09: 0000000000000000
[  236.778722][T11399] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff4588ca90
[  236.786525][T11399] R13: 00007ff9e876208c R14: 00000000000384af R15: 00007fff4588cad0
[  236.794341][T11399]  </TASK>
[  236.797198][T11399] Modules linked in:
[  236.800949][T11399] CR2: 0000000000000170
[  236.804940][T11399] ---[ end trace 451651c76fe251b1 ]---
[  236.810240][T11399] RIP: 0010:ihold+0x25/0x60
[  236.814575][T11399] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 b1 80 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 c0 ed f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 34 84 ae
[  236.834116][T11399] RSP: 0018:ffffc900026e7cc8 EFLAGS: 00010246
[  236.840101][T11399] RAX: ffff888138e0e200 RBX: 0000000000000001 RCX: ffff888138e0e2c0
[  236.847909][T11399] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff
[  236.856425][T11399] RBP: ffffc900026e7cd8 R08: ffffffff8141a9ab R09: 0000000000000003
[  236.864488][T11399] R10: fffffbfff0e9aa4c R11: dffffc0000000001 R12: dffffc0000000000
[  236.872297][T11399] R13: ffff888112f0faa0 R14: 0000000000000000 R15: 1ffff110225e1f5a
[  236.880292][T11399] FS:  00005555637dd500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  236.889050][T11399] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  236.895652][T11399] CR2: 0000000000000170 CR3: 0000000118c8c000 CR4: 00000000003506a0
[  236.903653][T11399] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  236.912137][T11399] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  236.919962][T11399] Kernel panic - not syncing: Fatal exception
[  236.926095][T11399] Kernel Offset: disabled
[  236.930325][T11399] Rebooting in 86400 seconds..