last executing test programs:

8.659878268s ago: executing program 3:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r0 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
sendfile(r0, r0, 0x0, 0x800000009)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x0, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000340))

8.203300428s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000d8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000088500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000040)='jbd2_handle_stats\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000400)='jbd2_handle_stats\x00', r1}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)

8.177701402s ago: executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003500)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x61, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000690000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007b000000850000009e00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_page_free_batched\x00', r5}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020706500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000180)='percpu_free_percpu\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYRESOCT=r1, @ANYRES16, @ANYRESHEX, @ANYRESHEX=r4, @ANYRES64=r2, @ANYRESOCT=r0], &(0x7f0000000200)='GPL\x00', 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0)

7.795604611s ago: executing program 4:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x138, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), 0x0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
io_setup(0x23, &(0x7f0000000280))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getrlimit(0x1, &(0x7f0000000040))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0x22c8, &(0x7f0000000240)=ANY=[@ANYRESDEC=r0, @ANYRESOCT, @ANYRES16=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

7.756588087s ago: executing program 3:
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x6718, 0x158e76b9, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @dev}}}})
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000280)={0x2, {0x2, 0x0, 0x0, 0x45}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xb6, 0x9f, 0x2d, 0x40, 0x195d, 0x7002, 0x6f7, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1b, 0xcd, 0xec}}]}}]}}, 0x0)

7.314734766s ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002300007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x7a)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000240)={<r5=>0xffffffffffffffff})
close(r5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

7.292593059s ago: executing program 2:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x458, 0x138, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), 0x0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r0, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
io_setup(0x23, &(0x7f0000000280)=<r1=>0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getrlimit(0x1, &(0x7f0000000040))
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000700)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x5, 0x0, r6, 0x0}])
ioctl$BINDER_WRITE_READ(r6, 0x40046208, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

6.355738342s ago: executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
unshare(0x24060400)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
ppoll(&(0x7f0000000080)=[{r0}, {r1, 0xb32b}], 0x2, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r4=>r2, @ANYBLOB="0000000000000000b702000000ddff008500000086000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r3}, 0x10)
munlockall()
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0)
mkdir(&(0x7f00000002c0)='./file1/file1\x00', 0x0)
rmdir(&(0x7f0000000700)='./file1/file1\x00')
mkdir(&(0x7f0000000480)='./file0\x00', 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
pipe2$9p(&(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r7 = dup(r6)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}})
write$FUSE_BMAP(r7, &(0x7f0000000100)={0x18}, 0x65)
write$FUSE_DIRENTPLUS(r7, &(0x7f0000000180)=ANY=[@ANYRES32=r4], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r7, &(0x7f00000000c0)={0x14c}, 0x137)
chdir(&(0x7f0000000000)='./file0\x00')
mount$incfs(0x0, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x442, 0x0)

6.228077583s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000280), &(0x7f00000001c0)}, 0x20)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x5, 0x7, &(0x7f0000000240)=ANY=[@ANYRES16, @ANYRES32, @ANYRES8=r5], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x0, 0x0)
renameat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', r6, &(0x7f0000000140)='./file1\x00')
setsockopt$inet_buf(r1, 0x0, 0x4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

6.108982921s ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='ext4_drop_inode\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000018000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='ext4_drop_inode\x00', r3}, 0x10)
unlink(&(0x7f0000000140)='./cgroup\x00')

5.909626791s ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002300007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x7a)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000240)={<r5=>0xffffffffffffffff})
close(r5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

5.120283423s ago: executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
r1 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8), 0x8)
read(r1, &(0x7f0000000740)=""/384, 0x200008c0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r2 = socket(0x10, 0x0, 0x0)
bind$netlink(r2, &(0x7f0000177ff4), 0xc)
write(r2, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
write(r2, &(0x7f0000000000)='\"', 0x1)

5.068135891s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f0000000040)}, 0x20)
r0 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$restrict_keyring(0xa, r0, &(0x7f0000000280)='asymmetric\x00', &(0x7f0000000040))

5.031857986s ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000540)="76389e147583ddd0569ba56a5cfd55", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

5.023151367s ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r1}, 0x55)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r3, &(0x7f0000000040), 0x0, 0x0, 0x0)

5.015737669s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002300007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x7a)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
close(r4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

4.997502832s ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003500)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x61, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000690000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007b000000850000009e00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_page_free_batched\x00', r5}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020706500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000180)='percpu_free_percpu\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYRESOCT=r1, @ANYRES16, @ANYRESHEX, @ANYRESHEX=r4, @ANYRES64=r2, @ANYRESOCT=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

2.970027363s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000d8ffffffb703000008000000b70400000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000088500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000040)='jbd2_handle_stats\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000400)='jbd2_handle_stats\x00', r1}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)

2.940020478s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000280), &(0x7f00000001c0)}, 0x20)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000440)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$inet_buf(r1, 0x0, 0x4, 0x0, 0x0)

2.895806854s ago: executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
unshare(0x24060400)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
ppoll(&(0x7f0000000080)=[{r0}, {r1, 0xb32b}], 0x2, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000000ddff00850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
munlockall()
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0)
mkdir(&(0x7f00000002c0)='./file1/file1\x00', 0x0)
rmdir(&(0x7f0000000700)='./file1/file1\x00')
mkdir(&(0x7f0000000480)='./file0\x00', 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
pipe2$9p(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r5 = dup(r4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r5}})
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x65)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000180)=ANY=[@ANYRES32], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f00000000c0)={0x14c}, 0x137)
chdir(&(0x7f0000000000)='./file0\x00')
mount$incfs(0x0, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x442, 0x0)

2.882571646s ago: executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

2.86058225s ago: executing program 1:
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x6718, 0x158e76b9, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @dev}}}})
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000280)={0x2, {0x2, 0x0, 0x0, 0x45}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xb6, 0x9f, 0x2d, 0x40, 0x195d, 0x7002, 0x6f7, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1b, 0xcd, 0xec}}]}}]}}, 0x0)

2.833512554s ago: executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000280), &(0x7f00000001c0)}, 0x20)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x5, 0x7, &(0x7f0000000240)=ANY=[@ANYRES16, @ANYRES32, @ANYRES8=r5], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x0, 0x0)
renameat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', r6, &(0x7f0000000140)='./file1\x00')
setsockopt$inet_buf(r1, 0x0, 0x4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.675594439s ago: executing program 3:
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x6718, 0x158e76b9, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @dev}}}})
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000280)={0x2, {0x2, 0x0, 0x0, 0x45}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xb6, 0x9f, 0x2d, 0x40, 0x195d, 0x7002, 0x6f7, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1b, 0xcd, 0xec}}]}}]}}, 0x0)

2.350418118s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002300007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x7a)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000240)={<r5=>0xffffffffffffffff})
close(r5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

1.920857555s ago: executing program 4:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000540)="76389e147583ddd0569ba56a5cfd55", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.914821495s ago: executing program 4:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="fb", 0x1}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x0)

1.891494389s ago: executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
r1 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8), 0x8)
read(r1, &(0x7f0000000740)=""/384, 0x200008c0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r2 = socket(0x10, 0x0, 0x0)
bind$netlink(r2, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r2, &(0x7f0000000140), 0x0)
write(r2, &(0x7f0000000000)='\"', 0x1)

1.88617261s ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002300007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x7a)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
close(r4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

0s ago: executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
r1 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8), 0x8)
read(r1, &(0x7f0000000740)=""/384, 0x200008c0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r2 = socket(0x10, 0x0, 0x0)
bind$netlink(r2, &(0x7f0000177ff4), 0xc)
write(r2, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
write(r2, &(0x7f0000000000)='\"', 0x1)

kernel console output (not intermixed with test programs):

t pid=14937 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186a0e7f29 code=0x7ffc0000
[  892.235804][T14962] loop2: detected capacity change from 0 to 1024
[  892.258422][   T30] audit: type=1326 audit(1718756379.385:2359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14937 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f186a0e7f29 code=0x7ffc0000
[  892.283595][   T30] audit: type=1326 audit(1718756379.385:2360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14937 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f186a0e7f29 code=0x7ffc0000
[  892.307770][   T30] audit: type=1326 audit(1718756379.385:2361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14937 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f186a0e7f29 code=0x7ffc0000
[  892.456533][T14966] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  893.245814][T14962] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  893.276826][T14962] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  893.630158][T14975] loop4: detected capacity change from 0 to 512
[  893.800270][T14975] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  893.846557][T14962] syz-executor.2[14962] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  893.847958][T14962] syz-executor.2[14962] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  893.900916][T14975] EXT4-fs (loop4): 1 orphan inode deleted
[  893.918198][T14975] EXT4-fs (loop4): 1 truncate cleaned up
[  893.923656][T14975] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[  893.982212][T14962] input: syz1 as /devices/virtual/input/input23
[  895.301887][T15031] loop2: detected capacity change from 0 to 256
[  895.866173][T15044] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  896.658751][T15048] loop3: detected capacity change from 0 to 512
[  896.738424][T15048] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  896.738470][T15059] loop1: detected capacity change from 0 to 256
[  896.749823][T15048] ext4 filesystem being mounted at /root/syzkaller-testdir3025763933/syzkaller.v3F7XI/101/file0 supports timestamps until 2038 (0x7fffffff)
[  897.375177][T13427] __quota_error: 85 callbacks suppressed
[  897.375195][T13427] Quota error (device loop3): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  897.391262][T13427] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  897.475760][T15073] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  898.530908][T15084] bridge0: port 1(bridge_slave_0) entered blocking state
[  898.537985][T15084] bridge0: port 1(bridge_slave_0) entered disabled state
[  898.545323][T15084] device bridge_slave_0 entered promiscuous mode
[  898.552261][T15084] bridge0: port 2(bridge_slave_1) entered blocking state
[  898.564894][T15084] bridge0: port 2(bridge_slave_1) entered disabled state
[  898.572405][T15084] device bridge_slave_1 entered promiscuous mode
[  898.638032][T15084] bridge0: port 2(bridge_slave_1) entered blocking state
[  898.644920][T15084] bridge0: port 2(bridge_slave_1) entered forwarding state
[  898.652034][T15084] bridge0: port 1(bridge_slave_0) entered blocking state
[  898.658824][T15084] bridge0: port 1(bridge_slave_0) entered forwarding state
[  898.692998][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  898.700813][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[  898.756484][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[  898.787370][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  898.795427][ T7218] bridge0: port 1(bridge_slave_0) entered blocking state
[  898.802311][ T7218] bridge0: port 1(bridge_slave_0) entered forwarding state
[  898.811031][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  898.825092][ T7218] bridge0: port 2(bridge_slave_1) entered blocking state
[  898.832127][ T7218] bridge0: port 2(bridge_slave_1) entered forwarding state
[  898.849124][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  898.864910][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  898.901676][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  898.916466][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  898.936780][T15084] device veth0_vlan entered promiscuous mode
[  898.956214][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  898.964392][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  898.974956][T15084] device veth1_macvtap entered promiscuous mode
[  898.984683][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  898.992285][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  898.999842][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  899.008171][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  899.016921][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  899.034831][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  899.043336][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  899.052141][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  899.060532][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  899.088738][T15110] loop3: detected capacity change from 0 to 256
[  899.197510][   T42] usb 1-1: new high-speed USB device number 116 using dummy_hcd
[  899.269385][  T396] device bridge_slave_1 left promiscuous mode
[  899.276162][  T396] bridge0: port 2(bridge_slave_1) entered disabled state
[  899.286029][  T396] device bridge_slave_0 left promiscuous mode
[  899.292672][  T396] bridge0: port 1(bridge_slave_0) entered disabled state
[  899.308305][  T396] device veth1_macvtap left promiscuous mode
[  899.326397][T15112] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  899.370452][  T396] device veth0_vlan left promiscuous mode
[  899.466201][   T42] usb 1-1: Using ep0 maxpacket: 16
[  899.588148][T15118] loop4: detected capacity change from 0 to 1024
[  899.619238][T15118] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  899.631068][T15118] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  899.637666][T15120] syz-executor.2[15120] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  899.657352][T15120] syz-executor.2[15120] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  899.669889][T15118] syz-executor.4[15118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  899.681649][T15118] syz-executor.4[15118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  899.703227][T15118] input: syz1 as /devices/virtual/input/input24
[  899.746214][   T42] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  899.755156][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  899.763036][   T42] usb 1-1: Product: syz
[  899.767069][  T333] usb 2-1: new high-speed USB device number 93 using dummy_hcd
[  899.774448][   T42] usb 1-1: Manufacturer: syz
[  899.778932][   T42] usb 1-1: SerialNumber: syz
[  899.785150][   T42] r8152-cfgselector 1-1: config 0 descriptor??
[  899.996093][   T20] usb 3-1: new high-speed USB device number 117 using dummy_hcd
[  900.136219][  T333] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  900.145107][  T333] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  900.153834][  T333] usb 2-1: config 0 descriptor??
[  900.266133][ T8390] usb 4-1: new high-speed USB device number 102 using dummy_hcd
[  900.386217][   T20] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  900.395141][   T20] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  900.404238][   T20] usb 3-1: config 0 descriptor??
[  900.409254][T15114] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  900.420073][T15114] FAT-fs (loop3): unable to read boot sector
[  900.626171][ T8390] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  900.635185][ T8390] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  900.643845][ T8390] usb 4-1: config 0 descriptor??
[  900.650909][T15124] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  900.661743][T15124] FAT-fs (loop5): unable to read boot sector
[  900.716221][  T333] usb 2-1: Cannot read MAC address
[  900.721383][  T333] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[  900.730177][  T333] usb 2-1: USB disconnect, device number 93
[  900.887733][T15128] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  900.898535][T15128] FAT-fs (loop7): unable to read boot sector
[  900.976310][   T20] usb 3-1: Cannot read MAC address
[  900.981389][   T20] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71
[  900.990328][   T20] usb 3-1: USB disconnect, device number 117
[  901.186177][ T8390] usb 4-1: Cannot read MAC address
[  901.223630][ T8390] MOSCHIP usb-ethernet driver: probe of 4-1:0.0 failed with error -71
[  901.232639][ T8390] usb 4-1: USB disconnect, device number 102
[  901.806799][ T8390] Bluetooth: hci0: command 0x1003 tx timeout
[  901.814493][T12462] Bluetooth: hci0: sending frame failed (-49)
[  901.966159][   T42] r8152-cfgselector 1-1: Unknown version 0x0000
[  901.986162][   T42] r8152-cfgselector 1-1: Unknown version 0x0000
[  901.992873][   T42] r8152-cfgselector 1-1: bad CDC descriptors
[  902.062025][   T42] r8152-cfgselector 1-1: Unknown version 0x0000
[  902.079831][   T42] r8152-cfgselector 1-1: USB disconnect, device number 116
[  902.616254][  T473] usb 1-1: new high-speed USB device number 117 using dummy_hcd
[  903.146233][  T473] usb 1-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[  903.155238][  T473] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  903.163576][  T473] usb 1-1: Product: syz
[  903.168954][  T473] usb 1-1: Manufacturer: syz
[  903.178477][  T473] usb 1-1: SerialNumber: syz
[  903.183625][  T473] usb 1-1: config 0 descriptor??
[  903.366180][   T60] usb 3-1: new high-speed USB device number 118 using dummy_hcd
[  903.449404][   T42] usb 1-1: USB disconnect, device number 117
[  903.726278][   T60] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  903.735629][   T60] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  903.777934][   T60] usb 3-1: config 0 descriptor??
[  903.886334][   T42] Bluetooth: hci0: command 0x1001 tx timeout
[  903.892257][T12462] Bluetooth: hci0: sending frame failed (-49)
[  903.926124][  T313] usb 4-1: new high-speed USB device number 103 using dummy_hcd
[  904.017581][T15176] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  904.028363][T15176] FAT-fs (loop5): unable to read boot sector
[  904.140124][T15195] loop1: detected capacity change from 0 to 1024
[  904.176100][  T313] usb 4-1: Using ep0 maxpacket: 16
[  904.177193][T15195] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  904.188924][T15193] loop0: detected capacity change from 0 to 40427
[  904.196273][T15195] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  904.213769][T15193] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  904.229056][T15195] syz-executor.1[15195] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  904.229141][T15195] syz-executor.1[15195] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  904.234932][T15193] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  904.264242][T15193] F2FS-fs (loop0): Found nat_bits in checkpoint
[  904.279440][T15195] input: syz1 as /devices/virtual/input/input25
[  904.297326][T15193] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  904.304277][T15193] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  904.316316][   T60] usb 3-1: Cannot read MAC address
[  904.321452][   T60] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71
[  904.332009][   T60] usb 3-1: USB disconnect, device number 118
[  904.357758][T15202] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  904.526263][  T313] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  904.535202][  T313] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  904.542987][  T313] usb 4-1: Product: syz
[  904.546992][  T313] usb 4-1: Manufacturer: syz
[  904.551376][  T313] usb 4-1: SerialNumber: syz
[  904.556480][  T313] r8152-cfgselector 4-1: config 0 descriptor??
[  905.128452][T15214] loop0: detected capacity change from 0 to 256
[  905.394887][T15216] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  906.055750][   T60] Bluetooth: hci0: command 0x1009 tx timeout
[  906.170078][T15225] loop2: detected capacity change from 0 to 256
[  906.256136][  T313] r8152-cfgselector 4-1: Unknown version 0x0000
[  906.276192][  T313] r8152-cfgselector 4-1: Unknown version 0x0000
[  906.282729][  T313] r8152-cfgselector 4-1: bad CDC descriptors
[  906.349105][T15231] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  907.079729][  T677] Bluetooth: hci1: command 0x1003 tx timeout
[  907.085917][  T313] r8152-cfgselector 4-1: Unknown version 0x0000
[  907.092084][T15203] Bluetooth: hci1: sending frame failed (-49)
[  907.098456][  T313] r8152-cfgselector 4-1: USB disconnect, device number 103
[  907.582994][T15245] loop0: detected capacity change from 0 to 256
[  907.857533][T15249] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  907.878179][T15251] syz-executor.2[15251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  907.878454][T15251] syz-executor.2[15251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  907.926125][  T313] usb 4-1: new high-speed USB device number 104 using dummy_hcd
[  907.958220][T15253] loop2: detected capacity change from 0 to 256
[  908.185548][T15256] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  909.166201][   T20] Bluetooth: hci1: command 0x1001 tx timeout
[  909.172189][T15203] Bluetooth: hci1: sending frame failed (-49)
[  909.206196][  T313] usb 4-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[  909.215113][  T313] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  909.222917][  T313] usb 4-1: Product: syz
[  909.226894][  T313] usb 4-1: Manufacturer: syz
[  909.231286][  T313] usb 4-1: SerialNumber: syz
[  909.236836][  T313] usb 4-1: config 0 descriptor??
[  909.481504][   T60] usb 4-1: USB disconnect, device number 104
[  909.813870][T15271] loop2: detected capacity change from 0 to 256
[  910.032899][T15276] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  911.228820][T15292] loop3: detected capacity change from 0 to 256
[  911.256150][  T313] Bluetooth: hci1: command 0x1009 tx timeout
[  913.343985][T15309] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  913.944315][T15312] device pim6reg1 entered promiscuous mode
[  914.125010][T15318] loop4: detected capacity change from 0 to 1024
[  914.215064][T15318] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  914.234709][T15318] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  914.262250][T15318] syz-executor.4[15318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  914.262351][T15318] syz-executor.4[15318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  914.279202][T15318] input: syz1 as /devices/virtual/input/input26
[  915.236127][T15283] usb 1-1: new high-speed USB device number 118 using dummy_hcd
[  915.317852][T15340] loop2: detected capacity change from 0 to 256
[  915.346617][T15340] exfat: Bad value for 'umask'
[  916.385068][T15359] loop3: detected capacity change from 0 to 512
[  916.521152][T15359] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  916.558028][T15359] ext4 filesystem being mounted at /root/syzkaller-testdir3086471954/syzkaller.dmUVwH/14/file0 supports timestamps until 2038 (0x7fffffff)
[  916.678723][  T409] Bluetooth: hci0: command 0x1003 tx timeout
[  916.686179][T12462] Bluetooth: hci0: sending frame failed (-49)
[  916.709804][T15084] Quota error (device loop3): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  916.720346][T15084] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  916.766218][T15283] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  916.856163][T15283] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  916.875252][T15283] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  916.883939][T15283] usb 1-1: SerialNumber: syz
[  916.981113][T15363] bridge0: port 1(bridge_slave_0) entered blocking state
[  916.988126][T15363] bridge0: port 1(bridge_slave_0) entered disabled state
[  916.995453][T15363] device bridge_slave_0 entered promiscuous mode
[  917.004956][T15363] bridge0: port 2(bridge_slave_1) entered blocking state
[  917.011982][T15363] bridge0: port 2(bridge_slave_1) entered disabled state
[  917.019414][T15363] device bridge_slave_1 entered promiscuous mode
[  917.089267][T15363] bridge0: port 2(bridge_slave_1) entered blocking state
[  917.096397][T15363] bridge0: port 2(bridge_slave_1) entered forwarding state
[  917.103587][T15363] bridge0: port 1(bridge_slave_0) entered blocking state
[  917.110560][T15363] bridge0: port 1(bridge_slave_0) entered forwarding state
[  917.163780][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  917.172572][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[  917.180596][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[  917.199292][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  917.207695][  T409] bridge0: port 1(bridge_slave_0) entered blocking state
[  917.214595][  T409] bridge0: port 1(bridge_slave_0) entered forwarding state
[  917.222223][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  917.231518][  T409] bridge0: port 2(bridge_slave_1) entered blocking state
[  917.238426][  T409] bridge0: port 2(bridge_slave_1) entered forwarding state
[  917.259365][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  917.267674][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  917.282786][T15363] device veth0_vlan entered promiscuous mode
[  917.291505][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  917.300668][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  917.308789][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  917.316323][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  917.332705][T15363] device veth1_macvtap entered promiscuous mode
[  917.341394][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  917.354790][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  917.364793][T11157] device bridge_slave_1 left promiscuous mode
[  917.372193][T11157] bridge0: port 2(bridge_slave_1) entered disabled state
[  917.380268][T11157] device bridge_slave_0 left promiscuous mode
[  917.386542][T11157] bridge0: port 1(bridge_slave_0) entered disabled state
[  917.394584][T11157] device veth1_macvtap left promiscuous mode
[  917.400522][T11157] device veth0_vlan left promiscuous mode
[  917.484130][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  917.559234][T15382] syz-executor.3[15382] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  917.559300][T15382] syz-executor.3[15382] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  917.577741][T15283] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  917.735419][T15389] loop3: detected capacity change from 0 to 16
[  917.818806][T15389] erofs: (device loop3): mounted with root inode @ nid 36.
[  918.082219][  T722] usb 1-1: USB disconnect, device number 118
[  918.113849][  T722] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  919.531218][T15283] Bluetooth: hci0: command 0x1001 tx timeout
[  919.537144][T12462] Bluetooth: hci0: sending frame failed (-49)
[  921.878206][T15441] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15441 comm=syz-executor.2
[  921.888306][ T7218] Bluetooth: hci0: command 0x1009 tx timeout
[  922.279785][T15455] loop3: detected capacity change from 0 to 40427
[  922.376455][T15455] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  922.393765][T15455] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  922.413109][T15455] F2FS-fs (loop3): Found nat_bits in checkpoint
[  922.442749][T15455] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  922.449946][T15455] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  922.676115][  T473] usb 2-1: new high-speed USB device number 94 using dummy_hcd
[  922.696158][   T42] usb 3-1: new high-speed USB device number 119 using dummy_hcd
[  922.844772][T15467] loop0: detected capacity change from 0 to 256
[  922.887152][T15467] exfat: Bad value for 'umask'
[  922.936220][   T42] usb 3-1: Using ep0 maxpacket: 16
[  922.963345][T15470] syz-executor.3[15470] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  922.963411][T15470] syz-executor.3[15470] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  923.046299][  T473] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  923.125882][T15472] loop3: detected capacity change from 0 to 16
[  923.197179][T15472] erofs: (device loop3): mounted with root inode @ nid 36.
[  923.286655][  T473] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  923.307854][  T473] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  923.346315][   T42] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  923.388987][   T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  923.406745][  T473] usb 2-1: SerialNumber: syz
[  923.459757][   T42] usb 3-1: Product: syz
[  923.481587][   T42] usb 3-1: Manufacturer: syz
[  923.519162][   T42] usb 3-1: SerialNumber: syz
[  923.573033][   T42] r8152-cfgselector 3-1: config 0 descriptor??
[  924.304474][  T473] cdc_ether 2-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42
[  925.620078][  T333] usb 2-1: USB disconnect, device number 94
[  925.743503][  T333] cdc_ether 2-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device
[  926.389584][T15525] loop4: detected capacity change from 0 to 512
[  926.404178][   T42] r8152-cfgselector 3-1: Unknown version 0x0000
[  926.459623][T15525] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  926.546398][   T42] r8152-cfgselector 3-1: Unknown version 0x0000
[  926.590615][T15525] EXT4-fs (loop4): 1 orphan inode deleted
[  926.596264][T15525] EXT4-fs (loop4): 1 truncate cleaned up
[  926.601677][T15525] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[  926.606840][T15533] syz-executor.2[15533] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.622624][T15533] syz-executor.2[15533] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.642337][   T42] r8152-cfgselector 3-1: bad CDC descriptors
[  926.785183][   T42] r8152-cfgselector 3-1: Unknown version 0x0000
[  926.794274][   T42] r8152-cfgselector 3-1: USB disconnect, device number 119
[  926.853273][T15550] loop2: detected capacity change from 0 to 16
[  926.967059][T15550] erofs: (device loop2): mounted with root inode @ nid 36.
[  926.972115][  T333] usb 4-1: new high-speed USB device number 105 using dummy_hcd
[  927.376171][  T333] usb 4-1: Using ep0 maxpacket: 8
[  927.507537][  T333] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  927.517780][  T333] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  927.530980][  T333] usb 4-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  927.539934][  T333] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  927.548672][  T333] usb 4-1: config 0 descriptor??
[  927.586563][  T333] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  927.946121][ T7218] usb 5-1: new high-speed USB device number 103 using dummy_hcd
[  927.963389][   T42] usb 3-1: new high-speed USB device number 120 using dummy_hcd
[  928.346240][   T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  928.362199][   T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  928.372043][   T42] usb 3-1: New USB device found, idVendor=0810, idProduct=0002, bcdDevice= 0.00
[  928.381157][   T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  928.392561][   T42] usb 3-1: config 0 descriptor??
[  928.406282][ T7218] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  928.526172][ T7218] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  928.535090][ T7218] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  928.542880][ T7218] usb 5-1: SerialNumber: syz
[  928.676120][  T313] usb 2-1: new high-speed USB device number 95 using dummy_hcd
[  928.880692][   T42] pantherlord 0003:0810:0002.0059: unknown main item tag 0x0
[  928.889061][   T42] pantherlord 0003:0810:0002.0059: unknown main item tag 0x0
[  928.901915][   T42] pantherlord 0003:0810:0002.0059: unknown main item tag 0x0
[  928.912546][   T42] pantherlord 0003:0810:0002.0059: hidraw0: USB HID v0.00 Device [HID 0810:0002] on usb-dummy_hcd.2-1/input0
[  928.931982][T15592] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.0'.
[  929.030726][   T42] pantherlord 0003:0810:0002.0059: no output reports found
[  929.120254][   T42] usb 4-1: USB disconnect, device number 105
[  929.203557][  T331] usb 3-1: USB disconnect, device number 120
[  929.297357][ T7218] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42
[  929.308729][  T313] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  929.317759][  T313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  929.346344][  T313] usb 2-1: config 0 descriptor??
[  929.588186][T15583] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  929.598953][T15583] FAT-fs (loop3): unable to read boot sector
[  929.670132][T15615] syz-executor.0[15615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  929.670182][T15615] syz-executor.0[15615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  929.698839][ T7218] usb 5-1: USB disconnect, device number 103
[  929.717900][ T7218] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device
[  929.856008][T15632] loop0: detected capacity change from 0 to 16
[  929.889124][T15632] erofs: (device loop0): mounted with root inode @ nid 36.
[  930.166325][  T313] usb 2-1: Cannot read MAC address
[  930.171347][  T313] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[  930.570156][  T313] usb 2-1: USB disconnect, device number 95
[  930.617559][T15656] loop0: detected capacity change from 0 to 256
[  930.683137][T15656] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  930.756110][   T42] usb 4-1: new high-speed USB device number 106 using dummy_hcd
[  931.046217][   T42] usb 4-1: Using ep0 maxpacket: 8
[  931.166174][   T42] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  931.182327][   T42] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  931.196239][   T42] usb 4-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  931.205312][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  931.224006][   T42] usb 4-1: config 0 descriptor??
[  931.266716][   T42] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  931.386089][T15299] usb 3-1: new high-speed USB device number 121 using dummy_hcd
[  931.635244][T15299] usb 3-1: Using ep0 maxpacket: 8
[  931.798420][T15681] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.0'.
[  931.876143][T15299] usb 3-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  931.894826][T15299] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  931.950914][T15683] syz-executor.4[15683] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  931.950994][T15683] syz-executor.4[15683] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  932.025018][T15299] usb 3-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  932.045813][T15299] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  932.058662][T15299] usb 3-1: config 0 descriptor??
[  932.096564][T15299] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  932.806135][T15299] usb 1-1: new high-speed USB device number 119 using dummy_hcd
[  932.806160][T15696] syz-executor.4[15696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  932.813706][T15696] syz-executor.4[15696] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  932.988956][T15700] loop4: detected capacity change from 0 to 16
[  933.032833][T15699] loop1: detected capacity change from 0 to 256
[  933.041532][T15700] erofs: (device loop4): mounted with root inode @ nid 36.
[  933.138064][  T331] usb 4-1: USB disconnect, device number 106
[  933.197972][T15299] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  933.211516][T15699] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  933.286407][T15299] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  933.295672][T15299] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  933.304370][T15299] usb 1-1: SerialNumber: syz
[  934.257326][  T313] usb 3-1: USB disconnect, device number 121
[  934.285177][T15714] syz-executor.2[15714] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  934.285255][T15714] syz-executor.2[15714] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  934.444644][T15721] loop2: detected capacity change from 0 to 16
[  934.536076][  T331] usb 4-1: new high-speed USB device number 107 using dummy_hcd
[  934.546389][T15721] erofs: (device loop2): mounted with root inode @ nid 36.
[  934.686080][  T333] usb 2-1: new high-speed USB device number 96 using dummy_hcd
[  934.697813][T15299] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  934.796125][  T331] usb 4-1: Using ep0 maxpacket: 8
[  934.916151][  T331] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  934.935277][  T331] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  934.956138][  T333] usb 2-1: device descriptor read/64, error -71
[  934.963046][  T331] usb 4-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  934.982396][  T331] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  935.005545][  T331] usb 4-1: config 0 descriptor??
[  935.046618][  T331] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  935.137355][  T722] usb 1-1: USB disconnect, device number 119
[  935.156470][  T722] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  935.260745][T15745] loop2: detected capacity change from 0 to 1024
[  935.350204][T15745] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  935.356111][  T333] usb 2-1: device descriptor read/64, error -71
[  935.387621][T15745] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  935.456292][T15745] syz-executor.2[15745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  935.456361][T15745] syz-executor.2[15745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  935.477041][T15745] input: syz1 as /devices/virtual/input/input27
[  935.569113][T15745] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  935.626123][  T333] usb 2-1: new high-speed USB device number 97 using dummy_hcd
[  935.896078][  T333] usb 2-1: device descriptor read/64, error -71
[  935.966076][T15299] usb 1-1: new high-speed USB device number 120 using dummy_hcd
[  936.206112][T15299] usb 1-1: Using ep0 maxpacket: 32
[  936.273075][  T722] usb 4-1: USB disconnect, device number 107
[  936.286381][  T333] usb 2-1: device descriptor read/64, error -71
[  936.487181][  T333] usb usb2-port1: attempt power cycle
[  936.526303][T15299] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  936.536743][T15299] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  936.544673][T15299] usb 1-1: Product: syz
[  936.550664][T15299] usb 1-1: Manufacturer: syz
[  936.555187][T15299] usb 1-1: SerialNumber: syz
[  936.586327][T15299] usb 1-1: config 0 descriptor??
[  936.906099][  T333] usb 2-1: new high-speed USB device number 98 using dummy_hcd
[  936.996169][   T42] usb 5-1: new high-speed USB device number 104 using dummy_hcd
[  937.076169][  T333] usb 2-1: device descriptor read/8, error -71
[  937.236123][   T42] usb 5-1: Using ep0 maxpacket: 8
[  937.416216][   T42] usb 5-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  937.426603][  T333] usb 2-1: device descriptor read/8, error -71
[  937.433953][   T42] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  937.459129][   T42] usb 5-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  937.468834][T15299] (unnamed net_device) (uninitialized): Assigned a random MAC address: 86:fd:e0:15:b0:a6
[  937.480311][   T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  937.527102][T15299] rtl8150 1-1:0.0: eth1: rtl8150 is detected
[  937.589497][   T42] usb 5-1: config 0 descriptor??
[  937.730532][T15299] usb 1-1: USB disconnect, device number 120
[  937.746688][  T331] Bluetooth: hci0: command 0x1003 tx timeout
[  937.756338][T12462] Bluetooth: hci0: sending frame failed (-49)
[  937.786668][   T42] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  937.822394][T15809] syz-executor.1[15809] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  937.822488][T15809] syz-executor.1[15809] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  938.366085][T15299] usb 4-1: new high-speed USB device number 108 using dummy_hcd
[  938.766717][T15299] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  938.866131][T15299] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  938.875153][T15299] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  938.885108][T15299] usb 4-1: SerialNumber: syz
[  938.917126][T15840] loop1: detected capacity change from 0 to 40427
[  938.930870][T15840] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  938.939398][T15840] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  938.953737][T15840] F2FS-fs (loop1): Found nat_bits in checkpoint
[  938.984827][T15840] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  938.991741][T15840] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  939.414993][   T42] usb 5-1: USB disconnect, device number 104
[  939.703626][T15299] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  939.810628][  T331] Bluetooth: hci0: command 0x1001 tx timeout
[  939.826783][T12462] Bluetooth: hci0: sending frame failed (-49)
[  939.984653][T15862] loop4: detected capacity change from 0 to 40427
[  940.017062][T15862] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  940.024883][T15862] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  940.039986][T15862] F2FS-fs (loop4): Found nat_bits in checkpoint
[  940.075950][T15862] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  940.085234][T15862] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  940.093182][T15299] usb 4-1: USB disconnect, device number 108
[  940.100250][T15299] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  940.163743][  T722] usb 2-1: new high-speed USB device number 100 using dummy_hcd
[  940.446195][  T722] usb 2-1: device descriptor read/64, error -71
[  940.776119][  T331] usb 1-1: new high-speed USB device number 121 using dummy_hcd
[  940.964198][  T722] usb 2-1: device descriptor read/64, error -71
[  941.001389][T15919] syz-executor.4[15919] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  941.001491][T15919] syz-executor.4[15919] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  941.246146][  T722] usb 2-1: new high-speed USB device number 101 using dummy_hcd
[  941.436114][  T331] usb 1-1: Using ep0 maxpacket: 32
[  941.536201][  T722] usb 2-1: device descriptor read/64, error -71
[  941.761834][T15925] loop3: detected capacity change from 0 to 40427
[  941.776197][  T331] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  941.785363][  T331] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  941.793218][  T331] usb 1-1: Product: syz
[  941.797247][  T331] usb 1-1: Manufacturer: syz
[  941.801595][  T331] usb 1-1: SerialNumber: syz
[  941.806656][  T331] usb 1-1: config 0 descriptor??
[  941.866777][T15925] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  941.874565][T15925] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  941.884864][T15925] F2FS-fs (loop3): Found nat_bits in checkpoint
[  941.896208][  T409] Bluetooth: hci0: command 0x1009 tx timeout
[  941.910604][T15925] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  941.917586][T15925] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  941.926373][  T722] usb 2-1: device descriptor read/64, error -71
[  941.973167][   T30] audit: type=1326 audit(1718756429.485:2447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  941.987123][T15933] bridge: RTM_NEWNEIGH with invalid ether address
[  941.997424][   T30] audit: type=1326 audit(1718756429.485:2448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.027354][   T30] audit: type=1326 audit(1718756429.485:2449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.051562][   T30] audit: type=1326 audit(1718756429.485:2450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.075469][  T722] usb usb2-port1: attempt power cycle
[  942.076276][   T30] audit: type=1326 audit(1718756429.485:2451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.104491][   T30] audit: type=1326 audit(1718756429.485:2452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.129897][   T30] audit: type=1326 audit(1718756429.485:2453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.154448][   T30] audit: type=1326 audit(1718756429.485:2454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.192108][   T30] audit: type=1326 audit(1718756429.485:2455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.219425][   T30] audit: type=1326 audit(1718756429.485:2456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15926 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  942.506166][  T722] usb 2-1: new high-speed USB device number 102 using dummy_hcd
[  942.616142][  T331] (unnamed net_device) (uninitialized): Assigned a random MAC address: 5a:f9:19:06:b8:5e
[  942.628274][  T331] rtl8150 1-1:0.0: eth1: rtl8150 is detected
[  942.648369][  T331] usb 1-1: USB disconnect, device number 121
[  942.676121][  T722] usb 2-1: device descriptor read/8, error -71
[  942.794541][T15938] loop3: detected capacity change from 0 to 40427
[  942.816753][T15938] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  942.824749][T15938] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  942.835431][T15938] F2FS-fs (loop3): Found nat_bits in checkpoint
[  942.858775][T15938] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  942.865658][T15938] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  942.986468][  T722] usb 2-1: device descriptor read/8, error -71
[  944.536125][  T722] usb 2-1: new high-speed USB device number 104 using dummy_hcd
[  944.696268][  T331] usb 4-1: new high-speed USB device number 109 using dummy_hcd
[  944.703777][  T409] usb 1-1: new high-speed USB device number 122 using dummy_hcd
[  944.776083][  T722] usb 2-1: Using ep0 maxpacket: 8
[  944.896156][  T722] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  944.906366][  T722] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  944.919199][  T722] usb 2-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  944.928118][  T722] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  944.939894][  T722] usb 2-1: config 0 descriptor??
[  944.976235][  T409] usb 1-1: Using ep0 maxpacket: 8
[  944.977064][  T722] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  945.076259][  T331] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  945.096239][  T409] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  945.106393][  T409] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  945.119019][  T409] usb 1-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  945.127939][  T409] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  945.136318][  T409] usb 1-1: config 0 descriptor??
[  945.166240][  T331] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  945.175093][  T331] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  945.198552][  T409] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  945.206066][  T331] usb 4-1: SerialNumber: syz
[  945.216100][T15299] usb 5-1: new high-speed USB device number 105 using dummy_hcd
[  945.456126][T15299] usb 5-1: Using ep0 maxpacket: 16
[  945.736169][T15299] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  945.745088][T15299] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  945.752894][T15299] usb 5-1: Product: syz
[  945.756875][T15299] usb 5-1: Manufacturer: syz
[  945.761271][T15299] usb 5-1: SerialNumber: syz
[  945.766493][T15299] r8152-cfgselector 5-1: config 0 descriptor??
[  945.907401][  T331] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  946.309935][  T313] usb 4-1: USB disconnect, device number 109
[  946.326728][  T313] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  946.336635][  T409] usb 3-1: new high-speed USB device number 122 using dummy_hcd
[  946.408299][   T42] usb 1-1: USB disconnect, device number 122
[  946.716234][  T409] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  946.727090][  T409] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  946.736983][  T409] usb 3-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  946.745868][  T409] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  946.754335][  T409] usb 3-1: config 0 descriptor??
[  946.776115][   T42] usb 1-1: new high-speed USB device number 123 using dummy_hcd
[  947.046097][   T42] usb 1-1: device descriptor read/64, error -71
[  947.059103][  T722] usb 2-1: USB disconnect, device number 104
[  947.316159][  T409] usbhid 3-1:0.0: can't add hid device: -71
[  947.322054][  T409] usbhid: probe of 3-1:0.0 failed with error -71
[  947.329185][  T409] usb 3-1: USB disconnect, device number 122
[  947.446122][   T42] usb 1-1: device descriptor read/64, error -71
[  947.466133][  T722] usb 2-1: new high-speed USB device number 105 using dummy_hcd
[  947.716109][   T42] usb 1-1: new high-speed USB device number 124 using dummy_hcd
[  947.802050][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  947.802066][   T30] audit: type=1326 audit(1718756435.315:2460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  947.803273][T16065] bridge: RTM_NEWNEIGH with invalid ether address
[  947.808345][   T30] audit: type=1326 audit(1718756435.315:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  947.862067][   T30] audit: type=1326 audit(1718756435.315:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  947.862216][  T722] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  948.282094][  T722] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  948.293537][  T722] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  948.304030][  T722] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  948.320842][   T30] audit: type=1326 audit(1718756435.315:2463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  948.359892][   T30] audit: type=1326 audit(1718756435.315:2464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  948.377126][  T722] usb 2-1: config 0 descriptor??
[  948.388694][T15299] r8152-cfgselector 5-1: Unknown version 0x0000
[  948.394678][   T30] audit: type=1326 audit(1718756435.315:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  948.418631][T15299] r8152-cfgselector 5-1: Unknown version 0x0000
[  948.424751][T15299] r8152-cfgselector 5-1: bad CDC descriptors
[  948.430666][   T30] audit: type=1326 audit(1718756435.315:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  948.457300][   T30] audit: type=1326 audit(1718756435.315:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  948.466246][   T42] usb 1-1: device descriptor read/64, error -71
[  948.487268][T15299] r8152-cfgselector 5-1: Unknown version 0x0000
[  948.487426][   T30] audit: type=1326 audit(1718756435.315:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  948.517895][   T30] audit: type=1326 audit(1718756435.315:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16058 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  948.525961][T15299] r8152-cfgselector 5-1: USB disconnect, device number 105
[  948.996329][  T722] usbhid 2-1:0.0: can't add hid device: -71
[  949.003455][  T722] usbhid: probe of 2-1:0.0 failed with error -71
[  949.017051][  T722] usb 2-1: USB disconnect, device number 105
[  949.066192][   T42] usb 1-1: device descriptor read/64, error -71
[  949.186280][   T42] usb usb1-port1: attempt power cycle
[  949.816175][   T42] usb 1-1: new high-speed USB device number 125 using dummy_hcd
[  949.907697][ T7218] usb 5-1: new high-speed USB device number 106 using dummy_hcd
[  949.926328][   T42] usb 1-1: Using ep0 maxpacket: 16
[  950.226187][   T42] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  950.235269][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  950.243077][   T42] usb 1-1: Product: syz
[  950.247010][   T42] usb 1-1: Manufacturer: syz
[  950.251433][   T42] usb 1-1: SerialNumber: syz
[  950.256436][   T42] r8152-cfgselector 1-1: config 0 descriptor??
[  950.446312][ T7218] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  950.507671][T16108] syz-executor.1[16108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  950.507836][T16108] syz-executor.1[16108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  950.556199][ T7218] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  950.576845][ T7218] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  950.584850][ T7218] usb 5-1: SerialNumber: syz
[  951.036095][  T313] usb 2-1: new high-speed USB device number 106 using dummy_hcd
[  951.106114][  T409] usb 3-1: new high-speed USB device number 123 using dummy_hcd
[  951.327568][ T7218] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42
[  951.346183][  T313] usb 2-1: device descriptor read/64, error -71
[  951.496321][  T409] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  951.507139][  T409] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  951.516827][  T409] usb 3-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  951.525725][  T409] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  951.534084][  T409] usb 3-1: config 0 descriptor??
[  951.729158][  T909] usb 5-1: USB disconnect, device number 106
[  951.746551][  T909] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device
[  951.756198][  T313] usb 2-1: device descriptor read/64, error -71
[  952.106125][  T409] usbhid 3-1:0.0: can't add hid device: -71
[  952.112626][  T409] usbhid: probe of 3-1:0.0 failed with error -71
[  952.121288][  T409] usb 3-1: USB disconnect, device number 123
[  952.127256][  T313] usb 2-1: new high-speed USB device number 107 using dummy_hcd
[  952.416081][  T313] usb 2-1: device descriptor read/64, error -71
[  952.576162][   T42] r8152-cfgselector 1-1: Unknown version 0x0000
[  952.587628][T16195] syz-executor.3[16195] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  952.587717][T16195] syz-executor.3[16195] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  952.601830][   T42] r8152-cfgselector 1-1: Unknown version 0x0000
[  952.646124][   T42] r8152-cfgselector 1-1: bad CDC descriptors
[  952.717216][   T42] r8152-cfgselector 1-1: Unknown version 0x0000
[  952.724706][   T42] r8152-cfgselector 1-1: USB disconnect, device number 125
[  952.791119][T16204] bridge: RTM_NEWNEIGH with invalid ether address
[  953.007700][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  953.007745][   T30] audit: type=1326 audit(1718756440.465:2482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e682c7f29 code=0x7ffc0000
[  953.012257][  T313] usb 2-1: device descriptor read/64, error -71
[  953.014260][   T30] audit: type=1326 audit(1718756440.465:2483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16196 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e682c7f29 code=0x7ffc0000
[  953.166182][  T313] usb usb2-port1: attempt power cycle
[  953.412700][T16212] loop3: detected capacity change from 0 to 256
[  953.650660][T16217] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  953.926120][  T313] usb 2-1: new high-speed USB device number 108 using dummy_hcd
[  954.094554][   T30] audit: type=1400 audit(1718756441.605:2484): avc:  denied  { connect } for  pid=16222 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  954.886497][  T313] usb 2-1: device not accepting address 108, error -71
[  954.956331][  T409] usb 5-1: new high-speed USB device number 107 using dummy_hcd
[  955.099988][T16240] bridge0: port 2(bridge_slave_1) entered disabled state
[  955.426068][ T7218] usb 1-1: new high-speed USB device number 126 using dummy_hcd
[  955.546158][  T409] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  955.615747][T16245] syz-executor.2[16245] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  955.615828][T16245] syz-executor.2[16245] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  955.656275][  T409] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  955.676876][  T409] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  955.688872][  T409] usb 5-1: SerialNumber: syz
[  955.826173][ T7218] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  955.838740][ T7218] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  955.866582][ T7218] usb 1-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  955.875625][ T7218] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  955.888158][ T7218] usb 1-1: config 0 descriptor??
[  956.236138][  T313] usb 2-1: new high-speed USB device number 109 using dummy_hcd
[  956.387387][  T409] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42
[  956.426272][T15283] usb 4-1: new high-speed USB device number 110 using dummy_hcd
[  956.456239][ T7218] usbhid 1-1:0.0: can't add hid device: -71
[  956.462011][ T7218] usbhid: probe of 1-1:0.0 failed with error -71
[  956.471516][ T7218] usb 1-1: USB disconnect, device number 126
[  956.506280][  T313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  956.517214][  T313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  956.527113][  T313] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  956.536009][  T313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  956.545263][  T313] usb 2-1: config 0 descriptor??
[  956.706066][T15283] usb 4-1: device descriptor read/64, error -71
[  956.789229][ T7218] usb 5-1: USB disconnect, device number 107
[  956.806472][ T7218] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device
[  957.246137][  T313] usbhid 2-1:0.0: can't add hid device: -71
[  957.251922][  T313] usbhid: probe of 2-1:0.0 failed with error -71
[  957.258105][T15283] usb 4-1: device descriptor read/64, error -71
[  957.264874][  T313] usb 2-1: USB disconnect, device number 109
[  957.338023][T16315] loop4: detected capacity change from 0 to 1024
[  957.397424][T16315] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  957.418675][T16315] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  957.458948][T16315] syz-executor.4[16315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  957.459030][T16315] syz-executor.4[16315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  957.479589][T16315] input: syz1 as /devices/virtual/input/input28
[  957.485340][T16317] loop2: detected capacity change from 0 to 40427
[  957.536108][T15283] usb 4-1: new high-speed USB device number 111 using dummy_hcd
[  957.553305][T16315] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  957.560496][T16317] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  957.574405][T16317] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  957.589066][T16317] F2FS-fs (loop2): Found nat_bits in checkpoint
[  957.625447][T16317] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  957.632440][T16317] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  958.028791][T16332] syz-executor.0[16332] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  958.028891][T16332] syz-executor.0[16332] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  958.426916][T15283] usb 4-1: device descriptor read/64, error -71
[  959.265207][T16341] loop1: detected capacity change from 0 to 512
[  959.532636][T16341] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  959.566088][   T42] Bluetooth: hci0: command 0x1003 tx timeout
[  959.574213][T12462] Bluetooth: hci0: sending frame failed (-49)
[  959.577624][T16341] EXT4-fs (loop1): 1 orphan inode deleted
[  959.585669][T16341] EXT4-fs (loop1): 1 truncate cleaned up
[  959.591187][T16341] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[  959.716155][ T7218] usb 3-1: new high-speed USB device number 124 using dummy_hcd
[  959.956077][ T7218] usb 3-1: Using ep0 maxpacket: 32
[  960.016146][T15283] usb 4-1: device descriptor read/64, error -71
[  960.136219][T15283] usb usb4-port1: attempt power cycle
[  960.236122][ T7218] usb 3-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  960.244987][ T7218] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  960.253086][ T7218] usb 3-1: Product: syz
[  960.257508][ T7218] usb 3-1: Manufacturer: syz
[  960.261930][ T7218] usb 3-1: SerialNumber: syz
[  960.267274][ T7218] usb 3-1: config 0 descriptor??
[  960.546117][T15283] usb 4-1: new high-speed USB device number 112 using dummy_hcd
[  961.203224][ T7218] (unnamed net_device) (uninitialized): Assigned a random MAC address: ca:55:5c:9e:4f:e5
[  961.369620][T15283] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  961.656202][   T42] Bluetooth: hci0: command 0x1001 tx timeout
[  961.662620][T12462] Bluetooth: hci0: sending frame failed (-49)
[  961.749091][ T7218] rtl8150 3-1:0.0: eth1: rtl8150 is detected
[  961.757252][ T7218] usb 3-1: USB disconnect, device number 124
[  961.836194][T15283] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  961.845219][T15283] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  961.876098][T15283] usb 4-1: SerialNumber: syz
[  961.896809][T16378] syz-executor.1[16378] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  961.896910][T16378] syz-executor.1[16378] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  962.587661][T15283] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  962.821898][T16402] loop0: detected capacity change from 0 to 256
[  962.989546][  T333] usb 4-1: USB disconnect, device number 112
[  963.006916][  T333] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  963.052864][T16404] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  963.566312][ T7218] usb 2-1: new high-speed USB device number 110 using dummy_hcd
[  963.726109][  T333] Bluetooth: hci0: command 0x1009 tx timeout
[  965.276546][T16452] syz-executor.0[16452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  965.276649][T16452] syz-executor.0[16452] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  965.444810][ T7218] usb 2-1: no configurations
[  965.461040][ T7218] usb 2-1: can't read configurations, error -22
[  965.542454][   T30] audit: type=1326 audit(1718756453.055:2485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.594269][   T30] audit: type=1326 audit(1718756453.085:2486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.616072][ T7218] usb 2-1: new high-speed USB device number 111 using dummy_hcd
[  965.626459][   T30] audit: type=1326 audit(1718756453.085:2487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.663574][   T30] audit: type=1326 audit(1718756453.085:2488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.687796][   T30] audit: type=1326 audit(1718756453.085:2489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.712013][   T30] audit: type=1326 audit(1718756453.085:2490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.738713][   T30] audit: type=1326 audit(1718756453.085:2491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.762909][   T30] audit: type=1326 audit(1718756453.085:2492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.787424][   T30] audit: type=1326 audit(1718756453.085:2493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.811895][   T30] audit: type=1326 audit(1718756453.085:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16458 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  965.936198][ T7218] usb 2-1: device descriptor read/all, error -71
[  965.946107][ T7218] usb usb2-port1: attempt power cycle
[  966.096061][T15283] usb 4-1: new high-speed USB device number 113 using dummy_hcd
[  966.137242][   T42] usb 3-1: new high-speed USB device number 125 using dummy_hcd
[  966.182534][T16474] loop0: detected capacity change from 0 to 256
[  966.405761][T16477] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  966.576471][   T42] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  966.706440][   T42] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  966.729276][   T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  966.779158][   T42] usb 3-1: SerialNumber: syz
[  967.531746][   T42] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  967.666134][T15283] usb 4-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[  967.675028][T15283] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  967.683289][T15283] usb 4-1: Product: syz
[  967.687326][T15283] usb 4-1: Manufacturer: syz
[  967.691704][T15283] usb 4-1: SerialNumber: syz
[  967.696834][T15283] usb 4-1: config 0 descriptor??
[  967.909970][T16517] syz-executor.1[16517] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  967.910041][T16517] syz-executor.1[16517] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  967.910243][  T722] usb 3-1: USB disconnect, device number 125
[  967.939029][ T7218] usb 4-1: USB disconnect, device number 113
[  967.960552][  T722] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  968.156103][   T42] usb 5-1: new high-speed USB device number 108 using dummy_hcd
[  968.477252][T16549] syz-executor.2[16549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  968.477309][T16549] syz-executor.2[16549] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  968.566171][   T42] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  968.599438][T16555] loop0: detected capacity change from 0 to 256
[  968.635366][   T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  968.650449][T16556] loop2: detected capacity change from 0 to 16
[  968.662369][   T42] usb 5-1: config 0 descriptor??
[  968.766247][T16556] erofs: (device loop2): mounted with root inode @ nid 36.
[  968.859465][T16560] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  969.004376][T16515] blk_update_request: I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  969.043700][T16515] FAT-fs (loop9): unable to read boot sector
[  969.546292][   T42] usb 5-1: Cannot read MAC address
[  969.565100][   T42] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[  969.648378][   T42] usb 5-1: USB disconnect, device number 108
[  969.732771][T16572] loop2: detected capacity change from 0 to 1024
[  969.787792][T16572] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  969.798402][T16576] loop0: detected capacity change from 0 to 1024
[  969.810479][T16572] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  969.842075][T16572] syz-executor.2[16572] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  969.842160][T16572] syz-executor.2[16572] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  969.861855][T16572] input: syz1 as /devices/virtual/input/input29
[  969.867468][T16576] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[  969.906243][T16576] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  969.934722][T16576] syz-executor.0[16576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  969.934822][T16576] syz-executor.0[16576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  969.950471][T16576] input: syz1 as /devices/virtual/input/input30
[  969.990266][T16572] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  970.034129][T16576] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  970.269451][   T42] usb 4-1: new high-speed USB device number 114 using dummy_hcd
[  972.050399][ T7218] Bluetooth: hci0: command 0x1003 tx timeout
[  972.056763][T16600] syz-executor.4[16600] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.056882][T16600] syz-executor.4[16600] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  972.069715][  T722] Bluetooth: hci1: command 0x1003 tx timeout
[  972.087270][T15203] Bluetooth: hci1: sending frame failed (-49)
[  972.288325][T16602] loop4: detected capacity change from 0 to 16
[  973.076300][T15203] Bluetooth: hci0: sending frame failed (-49)
[  973.246956][   T42] usb 4-1: device descriptor read/all, error -71
[  973.253739][T16602] erofs: (device loop4): mounted with root inode @ nid 36.
[  973.342601][T16610] syz-executor.3[16610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  973.342796][T16610] syz-executor.3[16610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  973.516100][  T722] usb 2-1: new high-speed USB device number 113 using dummy_hcd
[  973.583649][T16612] loop3: detected capacity change from 0 to 16
[  973.637813][T16612] erofs: (device loop3): mounted with root inode @ nid 36.
[  973.836056][  T722] usb 2-1: Using ep0 maxpacket: 8
[  973.976113][  T722] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  973.995709][  T722] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  974.008903][  T722] usb 2-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  974.026108][  T722] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  974.035196][  T722] usb 2-1: config 0 descriptor??
[  974.096620][  T722] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  974.126113][  T722] Bluetooth: hci1: command 0x1001 tx timeout
[  974.132005][T15203] Bluetooth: hci1: sending frame failed (-49)
[  974.407737][T16620] ------------[ cut here ]------------
[  974.413038][T16620] WARNING: CPU: 0 PID: 16620 at mm/page_alloc.c:5751 __alloc_pages+0x770/0x8f0
[  974.422339][T16620] Modules linked in:
[  974.426352][T16620] CPU: 1 PID: 16620 Comm: syz-executor.3 Not tainted 5.15.149-syzkaller-00165-g85445b5a2107 #0
[  974.437435][T16620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  974.447774][T16620] RIP: 0010:__alloc_pages+0x770/0x8f0
[  974.452979][T16620] Code: df e9 aa fb ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ba fb ff ff e8 5f 11 05 00 48 ba 00 00 00 00 00 fc ff df e9 a6 fb ff ff <0f> 0b 45 31 e4 e9 73 fc ff ff 48 8d 4c 24 40 80 e1 07 80 c1 03 38
[  974.472855][T16620] RSP: 0018:ffffc90000c87a20 EFLAGS: 00010246
[  974.479201][T16620] RAX: 0000000000000004 RBX: 0000000000040dc0 RCX: ffffc90000c87a03
[  974.487460][T16620] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffffc90000c87ab8
[  974.495262][T16620] RBP: ffffc90000c87b30 R08: dffffc0000000000 R09: ffffc90000c87a90
[  974.503558][T16620] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  974.511906][T16620] R13: 1ffff92000190f4c R14: 1ffff92000190f4e R15: 1ffff92000190f48
[  974.520046][T16620] FS:  00007f66700ea6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  974.529101][T16620] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  974.535658][T16620] CR2: 00000000ffffffff CR3: 000000012c699000 CR4: 00000000003506a0
[  974.543744][T16620] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  974.551936][T16620] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  974.559905][T16620] Call Trace:
[  974.563083][T16620]  <TASK>
[  974.565864][T16620]  ? show_regs+0x58/0x60
[  974.570758][T16620]  ? __warn+0x160/0x2f0
[  974.574838][T16620]  ? __alloc_pages+0x770/0x8f0
[  974.579603][T16620]  ? report_bug+0x3d9/0x5b0
[  974.583930][T16620]  ? __alloc_pages+0x770/0x8f0
[  974.588863][T16620]  ? handle_bug+0x41/0x70
[  974.593015][T16620]  ? exc_invalid_op+0x1b/0x50
[  974.598031][T16620]  ? asm_exc_invalid_op+0x1b/0x20
[  974.602982][T16620]  ? __alloc_pages+0x770/0x8f0
[  974.607810][T16620]  ? prep_new_page+0x110/0x110
[  974.612400][T16620]  ? do_vfs_ioctl+0xbc1/0x2a80
[  974.617322][T16620]  ? memcpy+0x56/0x70
[  974.621124][T16620]  ? __x64_compat_sys_ioctl+0x90/0x90
[  974.626596][T16620]  kmalloc_order+0x4a/0x160
[  974.631008][T16620]  kmalloc_order_trace+0x1a/0xb0
[  974.635692][T16620]  __kmalloc+0x19c/0x270
[  974.640092][T16620]  input_mt_init_slots+0xcf/0xa50
[  974.645025][T16620]  ? mutex_lock_interruptible+0xb6/0x1e0
[  974.650657][T16620]  uinput_create_device+0x522/0x630
[  974.655760][T16620]  uinput_ioctl_handler+0xa63/0x16a0
[  974.661062][T16620]  ? uinput_release+0x50/0x50
[  974.665605][T16620]  ? selinux_file_ioctl+0x3cc/0x540
[  974.673308][T16620]  ? __fget_files+0x31e/0x380
[  974.677887][T16620]  uinput_ioctl+0x28/0x30
[  974.682050][T16620]  ? uinput_poll+0x120/0x120
[  974.686640][T16620]  __se_sys_ioctl+0x114/0x190
[  974.691199][T16620]  __x64_sys_ioctl+0x7b/0x90
[  974.695640][T16620]  do_syscall_64+0x3d/0xb0
[  974.700209][T16620]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  974.706272][T16620] RIP: 0033:0x7f6670d6ff29
[  974.710507][T16620] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  974.730255][T16620] RSP: 002b:00007f66700ea0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  974.738731][T16620] RAX: ffffffffffffffda RBX: 00007f6670ea6f80 RCX: 00007f6670d6ff29
[  974.746782][T16620] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[  974.754588][T16620] RBP: 00007f6670ddf074 R08: 0000000000000000 R09: 0000000000000000
[  974.762714][T16620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  974.770986][T16620] R13: 000000000000000b R14: 00007f6670ea6f80 R15: 00007ffd15dafa48
[  974.778847][T16620]  </TASK>
[  974.781653][T16620] ---[ end trace ae6f689f0910b8e7 ]---
[  974.933802][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  974.933817][   T30] audit: type=1326 audit(1718756462.445:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  974.985437][   T30] audit: type=1326 audit(1718756462.445:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  975.022813][T16628] bridge0: port 2(bridge_slave_1) entered disabled state
[  975.116978][   T30] audit: type=1326 audit(1718756462.445:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  975.164247][   T30] audit: type=1326 audit(1718756462.445:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  975.192117][   T30] audit: type=1326 audit(1718756462.445:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  975.218293][   T30] audit: type=1326 audit(1718756462.445:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  975.243923][   T30] audit: type=1326 audit(1718756462.445:2524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  975.313698][   T30] audit: type=1326 audit(1718756462.445:2525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  977.473232][   T30] audit: type=1326 audit(1718756462.445:2526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  977.501306][T15283] Bluetooth: hci0: command 0x1001 tx timeout
[  977.507464][T15203] Bluetooth: hci0: sending frame failed (-49)
[  977.514475][ T7218] Bluetooth: hci1: command 0x1009 tx timeout
[  977.517958][T16642] syz-executor.3[16642] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  977.520389][T16642] syz-executor.3[16642] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  977.520452][  T313] usb 2-1: USB disconnect, device number 113
[  977.546874][   T30] audit: type=1326 audit(1718756462.445:2527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16626 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fabcea7bf29 code=0x7ffc0000
[  977.663409][T16654] loop1: detected capacity change from 0 to 256
[  977.735853][T16656] loop3: detected capacity change from 0 to 16
[  977.818405][T16608] usb 5-1: new high-speed USB device number 109 using dummy_hcd
[  977.857735][T16656] erofs: (device loop3): mounted with root inode @ nid 36.
[  977.922784][T16658] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  979.036229][T16608] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  979.094619][T16667] syz-executor.3[16667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  979.094705][T16667] syz-executor.3[16667] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  979.236541][T16608] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  979.257754][T16608] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  979.265698][T16608] usb 5-1: SerialNumber: syz
[  980.068571][  T409] Bluetooth: hci0: command 0x1009 tx timeout
[  980.077346][   T30] kauditd_printk_skb: 58 callbacks suppressed
[  980.077358][   T30] audit: type=1326 audit(1718756467.595:2586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.107635][   T30] audit: type=1326 audit(1718756467.595:2587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.165214][   T30] audit: type=1326 audit(1718756467.595:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.259965][   T30] audit: type=1326 audit(1718756467.595:2589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.339562][   T30] audit: type=1326 audit(1718756467.595:2590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.363469][   T30] audit: type=1326 audit(1718756467.595:2591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.387269][   T30] audit: type=1326 audit(1718756467.595:2592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.411137][   T30] audit: type=1326 audit(1718756467.595:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.435230][   T30] audit: type=1326 audit(1718756467.595:2594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.459056][   T30] audit: type=1326 audit(1718756467.595:2595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16673 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6670d6ff29 code=0x7ffc0000
[  980.496076][  T313] usb 2-1: new high-speed USB device number 114 using dummy_hcd
[  980.634367][T16674] loop3: detected capacity change from 0 to 131072
[  980.690009][T16674] F2FS-fs (loop3): Segment count (31) mismatch with total segments from devices (0)
[  980.699538][T16674] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  980.724737][T16674] F2FS-fs (loop3): invalid crc value
[  980.746151][  T313] usb 2-1: Using ep0 maxpacket: 8
[  980.762481][T16674] F2FS-fs (loop3): Found nat_bits in checkpoint
[  980.788330][T16674] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  980.795215][T16674] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  980.804207][T16608] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42
[  980.814984][T16674] F2FS-fs (loop3): sanity_check_inode: corrupted inode footer i_ino=7, ino,nid: [993787911, 7] run fsck to fix.
[  981.083676][T16688] loop0: detected capacity change from 0 to 512
[  981.139677][T16688] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  981.158852][  T313] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  981.178601][  T313] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  981.317779][   T42] usb 5-1: USB disconnect, device number 109
[  981.334878][   T42] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device
[  981.341252][  T313] usb 2-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  981.353538][  T313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  981.354575][T16688] EXT4-fs (loop0): 1 orphan inode deleted
[  981.367224][T16688] EXT4-fs (loop0): 1 truncate cleaned up
[  981.368383][  T313] usb 2-1: config 0 descriptor??
[  981.372674][T16688] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[  981.417252][  T313] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  981.581331][T16719] loop2: detected capacity change from 0 to 256
[  981.839225][T16735] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  982.561109][T16742] loop4: detected capacity change from 0 to 1024
[  982.652213][T16608] usb 2-1: USB disconnect, device number 114
[  982.658873][T16742] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  982.856211][   T42] usb 4-1: new high-speed USB device number 116 using dummy_hcd
[  982.889068][  T313] usb 1-1: new high-speed USB device number 127 using dummy_hcd
[  982.906769][T16742] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  982.942859][T16742] syz-executor.4[16742] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  982.942939][T16742] syz-executor.4[16742] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  982.963264][T16742] input: syz1 as /devices/virtual/input/input32
[  983.046733][T16742] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  983.136127][  T313] usb 1-1: Using ep0 maxpacket: 8
[  983.826186][  T313] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  983.836300][  T313] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  983.848965][  T313] usb 1-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  983.858162][  T313] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  984.316109][   T42] usb 4-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[  984.338386][   T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  984.407918][   T42] usb 4-1: Product: syz
[  984.427878][   T42] usb 4-1: Manufacturer: syz
[  984.449478][   T42] usb 4-1: SerialNumber: syz
[  984.509884][   T42] usb 4-1: config 0 descriptor??
[  984.692058][T16770] loop1: detected capacity change from 0 to 256
[  984.707636][  T313] usb 1-1: config 0 descriptor??
[  984.733332][  T313] usb 1-1: can't set config #0, error -71
[  984.753663][  T313] usb 1-1: USB disconnect, device number 127
[  984.765390][  T409] usb 4-1: USB disconnect, device number 116
[  984.993152][T16788] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  987.238634][   T42] Bluetooth: hci0: command 0x1003 tx timeout
[  987.244498][T12462] Bluetooth: hci0: sending frame failed (-49)
[  987.387354][T16800] loop2: detected capacity change from 0 to 256
[  988.663038][T16810] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  989.326139][   T42] Bluetooth: hci0: command 0x1001 tx timeout
[  989.332362][T12462] Bluetooth: hci0: sending frame failed (-49)
[  989.513573][T16825] syz-executor.2[16825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  989.513675][T16825] syz-executor.2[16825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  989.652673][T16826] loop0: detected capacity change from 0 to 256
[  990.336398][T16836] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  990.671502][T16838] loop2: detected capacity change from 0 to 16
[  990.789672][T16838] erofs: (device loop2): mounted with root inode @ nid 36.
[  991.004839][T16855] loop0: detected capacity change from 0 to 256
[  991.012535][T16854] loop3: detected capacity change from 0 to 256
[  991.713771][T16856] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  991.723522][T16859] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  991.733048][   T42] Bluetooth: hci0: command 0x1009 tx timeout
[  992.237668][T16864] loop0: detected capacity change from 0 to 512
[  992.268458][T16872] loop2: detected capacity change from 0 to 256
[  992.269605][T16873] loop3: detected capacity change from 0 to 256
[  992.282181][T16864] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  992.293203][T16864] ext4 filesystem being mounted at /root/syzkaller-testdir3208245865/syzkaller.jvJd3e/109/file0 supports timestamps until 2038 (0x7fffffff)
[  992.311740][   T30] kauditd_printk_skb: 66 callbacks suppressed
[  992.311755][   T30] audit: type=1400 audit(1718756479.825:2662): avc:  denied  { watch } for  pid=16863 comm="syz-executor.0" path="/root/syzkaller-testdir3208245865/syzkaller.jvJd3e/109/file0/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  992.312158][T16864] overlayfs: failed to resolve './file1': -2
[  992.495660][T16883] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  993.006168][T16892] loop0: detected capacity change from 0 to 256
[  993.152855][T16894] loop1: detected capacity change from 0 to 256
[  993.198861][T16899] syz-executor.3[16899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  993.198963][T16899] syz-executor.3[16899] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  993.217334][T16894] exfat: Bad value for 'umask'
[  993.358621][T16904] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  993.385777][T16905] loop3: detected capacity change from 0 to 16
[  993.687470][T16905] erofs: (device loop3): mounted with root inode @ nid 36.
[  994.589822][T16925] loop1: detected capacity change from 0 to 512
[  994.649517][T16925] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  994.867731][T16931] loop0: detected capacity change from 0 to 256
[  994.886523][T16925] EXT4-fs (loop1): 1 orphan inode deleted
[  994.892382][T16925] EXT4-fs (loop1): 1 truncate cleaned up
[  994.898541][T16925] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[  994.903686][T16939] loop2: detected capacity change from 0 to 256
[  994.925584][T16941] loop3: detected capacity change from 0 to 256
[  994.956691][T16941] exfat: Bad value for 'umask'
[  995.270893][T16939] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  995.376351][   T42] usb 5-1: new high-speed USB device number 110 using dummy_hcd
[  995.610768][T16966] syz-executor.1[16966] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  995.610819][T16966] syz-executor.1[16966] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  995.780548][T16970] loop1: detected capacity change from 0 to 16
[  995.798704][T16971] loop0: detected capacity change from 0 to 256
[  995.806099][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  995.821777][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  995.836072][   T42] usb 5-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  995.845823][   T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  995.854713][   T42] usb 5-1: config 0 descriptor??
[  995.936933][T16970] erofs: (device loop1): mounted with root inode @ nid 36.
[  996.040515][T16975] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  996.136525][T16976] loop2: detected capacity change from 0 to 512
[  996.177073][T16976] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  996.196767][T16976] EXT4-fs (loop2): 1 orphan inode deleted
[  996.202331][T16976] EXT4-fs (loop2): 1 truncate cleaned up
[  996.208061][T16976] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000000010000,block_validity,quota,. Quota mode: writeback.
[  996.313373][   T30] audit: type=1400 audit(1718756483.805:2663): avc:  denied  { read write } for  pid=16936 comm="syz-executor.4" name="uhid" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  996.441221][   T30] audit: type=1400 audit(1718756483.805:2664): avc:  denied  { open } for  pid=16936 comm="syz-executor.4" path="/dev/uhid" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  996.519081][T16991] loop0: detected capacity change from 0 to 256
[  996.535378][T16991] exfat: Bad value for 'umask'
[  996.557776][T16999] loop3: detected capacity change from 0 to 256
[  997.296081][T16608] usb 3-1: new high-speed USB device number 126 using dummy_hcd
[  997.386059][  T313] usb 2-1: new high-speed USB device number 115 using dummy_hcd
[  997.506105][T15299] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  997.626077][  T313] usb 2-1: Using ep0 maxpacket: 8
[  997.666143][T16608] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  997.676970][T16608] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  997.686616][T16608] usb 3-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  997.695568][T16608] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  997.704393][T16608] usb 3-1: config 0 descriptor??
[  997.746179][  T313] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  997.756442][  T313] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  997.769489][  T313] usb 2-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  997.778407][  T313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  997.786848][  T313] usb 2-1: config 0 descriptor??
[  997.826615][  T313] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  997.896168][T15299] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  997.907054][T15299] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  997.916711][T15299] usb 1-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  997.925757][T15299] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  997.935036][T15299] usb 1-1: config 0 descriptor??
[  998.086267][   T42] usbhid 5-1:0.0: can't add hid device: -71
[  998.092937][   T42] usbhid: probe of 5-1:0.0 failed with error -71
[  998.105234][   T42] usb 5-1: USB disconnect, device number 110
[  998.546110][   T42] usb 5-1: new high-speed USB device number 111 using dummy_hcd
[  998.956138][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  998.967046][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  998.976809][   T42] usb 5-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  998.985698][   T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  998.994369][   T42] usb 5-1: config 0 descriptor??
[  999.056183][  T722] usb 4-1: new high-speed USB device number 117 using dummy_hcd
[  999.306075][  T722] usb 4-1: Using ep0 maxpacket: 8
[  999.426146][  T722] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  999.436308][  T722] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  999.449039][  T722] usb 4-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[  999.458040][  T722] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  999.466463][  T722] usb 4-1: config 0 descriptor??
[  999.516189][   T42] usbhid 5-1:0.0: can't add hid device: -71
[  999.522014][   T42] usbhid: probe of 5-1:0.0 failed with error -71
[  999.528841][  T722] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  999.536858][   T42] usb 5-1: USB disconnect, device number 111
[  999.961423][T17053] loop4: detected capacity change from 0 to 256
[  999.982857][   T42] usb 2-1: USB disconnect, device number 115
[ 1000.413519][T16608] usbhid 3-1:0.0: can't add hid device: -71
[ 1000.463816][T17065] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 1000.670186][T16608] usbhid: probe of 3-1:0.0 failed with error -71
[ 1000.746253][T15299] usbhid 1-1:0.0: can't add hid device: -71
[ 1000.759746][T15299] usbhid: probe of 1-1:0.0 failed with error -71
[ 1000.785309][T16608] usb 3-1: USB disconnect, device number 126
[ 1000.789737][T17067] loop0: detected capacity change from 0 to 256
[ 1000.818044][T15299] usb 1-1: USB disconnect, device number 2
[ 1001.210540][T17076] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1001.366640][   T42] usb 2-1: new high-speed USB device number 116 using dummy_hcd
[ 1001.617582][  T425] usb 4-1: USB disconnect, device number 117
[ 1001.800854][   T42] usb 2-1: Using ep0 maxpacket: 8
[ 1002.018455][   T30] audit: type=1326 audit(1718756489.535:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.042829][   T42] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[ 1002.054286][   T30] audit: type=1326 audit(1718756489.535:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.057799][   T42] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1002.480378][   T42] usb 2-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[ 1002.582194][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1002.640536][   T30] audit: type=1326 audit(1718756489.535:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.664797][   T42] usb 2-1: config 0 descriptor??
[ 1002.672479][   T30] audit: type=1326 audit(1718756489.535:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.739201][   T30] audit: type=1326 audit(1718756489.535:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.739666][   T42] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1002.763392][   T30] audit: type=1326 audit(1718756489.535:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.778245][T17098] syz-executor.0[17098] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1002.794006][T17098] syz-executor.0[17098] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1002.795206][   T30] audit: type=1326 audit(1718756489.535:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.842980][   T30] audit: type=1326 audit(1718756489.535:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.868746][   T30] audit: type=1326 audit(1718756489.535:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.892930][   T30] audit: type=1326 audit(1718756489.535:2674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17084 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c374e7f29 code=0x7ffc0000
[ 1002.936235][T17104] loop4: detected capacity change from 0 to 256
[ 1003.029851][T17106] loop0: detected capacity change from 0 to 16
[ 1003.086162][  T425] usb 4-1: new high-speed USB device number 118 using dummy_hcd
[ 1003.148525][T17106] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1003.535872][T17113] syz-executor.2[17113] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1003.535933][T17113] syz-executor.2[17113] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1003.676087][  T425] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.697618][  T425] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1003.706432][  T425] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1003.715520][  T425] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1003.727018][  T425] usb 4-1: config 0 descriptor??
[ 1004.009425][T17123] loop4: detected capacity change from 0 to 256
[ 1004.018185][   T42] usb 2-1: USB disconnect, device number 116
[ 1004.029425][T17125] loop1: detected capacity change from 0 to 512
[ 1004.040960][T17089] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1004.052349][T17089] FAT-fs (loop7): unable to read boot sector
[ 1004.068676][T17125] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1004.079629][T17125] ext4 filesystem being mounted at /root/syzkaller-testdir659755785/syzkaller.ZQpE5y/279/file0 supports timestamps until 2038 (0x7fffffff)
[ 1004.316056][T17135] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1005.180544][  T313] usb 4-1: USB disconnect, device number 118
[ 1005.288463][T17152] loop3: detected capacity change from 0 to 256
[ 1005.320927][T17149] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1005.327866][T17149] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1005.335064][T17149] device bridge_slave_0 entered promiscuous mode
[ 1005.342501][T17149] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1005.390779][T17149] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1005.406232][T17149] device bridge_slave_1 entered promiscuous mode
[ 1005.556036][T17149] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1005.563194][T17149] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1005.570312][T17149] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1005.577065][T17149] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1005.713737][   T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1005.722315][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1005.730230][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1005.746933][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1005.755062][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1005.761942][  T313] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1005.769300][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1005.777627][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1005.784464][  T313] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1005.794625][   T42] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1005.806189][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1005.817514][T11102] device bridge_slave_1 left promiscuous mode
[ 1005.823468][T11102] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1005.830864][T11102] device bridge_slave_0 left promiscuous mode
[ 1005.836937][T15283] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 1005.837277][T11102] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1005.844247][  T409] usb 3-1: new high-speed USB device number 127 using dummy_hcd
[ 1005.859358][T11102] device veth1_macvtap left promiscuous mode
[ 1005.865288][T11102] device veth0_vlan left promiscuous mode
[ 1005.953318][T17149] device veth0_vlan entered promiscuous mode
[ 1005.959787][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1005.968190][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1005.975942][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1005.983453][ T7218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1005.995646][   T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1006.011221][T17149] device veth1_macvtap entered promiscuous mode
[ 1006.022787][   T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1006.044475][   T42] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1006.057836][T17165] syz-executor.4[17165] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1006.057913][T17165] syz-executor.4[17165] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1006.096139][T15283] usb 1-1: Using ep0 maxpacket: 8
[ 1006.222127][T17172] loop4: detected capacity change from 0 to 16
[ 1006.228453][T15283] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[ 1006.246941][T15283] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1006.263379][T15283] usb 1-1: New USB device found, idVendor=2179, idProduct=0077, bcdDevice= 0.00
[ 1006.273032][T15283] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1006.282217][T15283] usb 1-1: config 0 descriptor??
[ 1006.292716][T17172] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1006.601345][T15283] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1006.646231][  T409] usb 3-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[ 1006.655283][  T409] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1006.665510][  T409] usb 3-1: Product: syz
[ 1006.673984][  T409] usb 3-1: Manufacturer: syz
[ 1006.682786][  T409] usb 3-1: SerialNumber: syz
[ 1006.696075][  T409] usb 3-1: config 0 descriptor??
[ 1006.956456][T15283] usb 3-1: USB disconnect, device number 127
[ 1007.152150][T17185] overlayfs: failed to resolve './file2': -2
[ 1007.347918][T17190] loop1: detected capacity change from 0 to 512
[ 1007.418255][T17190] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1007.429274][T17190] ext4 filesystem being mounted at /root/syzkaller-testdir2600006190/syzkaller.NxO1c7/2/file0 supports timestamps until 2038 (0x7fffffff)
[ 1007.459237][T17149] __quota_error: 66 callbacks suppressed
[ 1007.459252][T17149] Quota error (device loop1): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[ 1007.475349][T17149] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[ 1007.974337][T17203] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1007.981318][T17203] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1007.988701][T17203] device bridge_slave_0 entered promiscuous mode
[ 1008.004159][T17203] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.011212][T17203] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1008.018929][T17203] device bridge_slave_1 entered promiscuous mode
[ 1008.091433][T17203] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.098344][T17203] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1008.105466][T17203] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.112364][T17203] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1008.133391][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1008.141235][  T409] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.148470][  T409] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1008.166857][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1008.174876][  T409] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.181733][  T409] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1008.188892][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1008.196213][   T42] usb 5-1: new high-speed USB device number 112 using dummy_hcd
[ 1008.197358][  T409] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1008.211150][  T409] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1008.218556][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1008.226754][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1008.241762][T16608] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1008.255372][T15283] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1008.263515][T15283] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1008.270995][T15283] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1008.279729][T17203] device veth0_vlan entered promiscuous mode
[ 1008.293796][T17203] device veth1_macvtap entered promiscuous mode
[ 1008.300863][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1008.315529][T15283] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1008.324061][T15283] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1008.329179][T16608] usb 1-1: USB disconnect, device number 3
[ 1008.354890][T17215] loop1: detected capacity change from 0 to 256
[ 1008.386143][  T409] usb 4-1: new high-speed USB device number 119 using dummy_hcd
[ 1008.408921][T17215] exfat: Bad value for 'umask'
[ 1008.529929][  T343] device bridge_slave_1 left promiscuous mode
[ 1008.536373][T17225] loop1: detected capacity change from 0 to 512
[ 1008.536399][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1008.549879][  T343] device bridge_slave_0 left promiscuous mode
[ 1008.555921][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.563600][  T343] device veth1_macvtap left promiscuous mode
[ 1008.569601][  T343] device veth0_vlan left promiscuous mode
[ 1008.596137][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1008.600472][T17225] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1008.607513][   T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1008.620066][T17225] ext4 filesystem being mounted at /root/syzkaller-testdir772709521/syzkaller.S8To48/1/file0 supports timestamps until 2038 (0x7fffffff)
[ 1008.628202][   T42] usb 5-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[ 1008.661882][   T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1008.673661][   T42] usb 5-1: config 0 descriptor??
[ 1008.678339][T17203] Quota error (device loop1): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[ 1008.678720][T15299] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[ 1008.690213][T17203] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[ 1008.926262][  T409] usb 4-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[ 1008.935788][  T409] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1008.943844][  T409] usb 4-1: Product: syz
[ 1008.947921][  T409] usb 4-1: Manufacturer: syz
[ 1008.952342][  T409] usb 4-1: SerialNumber: syz
[ 1008.957971][  T409] usb 4-1: config 0 descriptor??
[ 1008.981049][T17229] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.988298][T17229] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.995628][T17229] device bridge_slave_0 entered promiscuous mode
[ 1009.011889][T17229] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1009.021028][T17229] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1009.028650][T17229] device bridge_slave_1 entered promiscuous mode
[ 1009.075580][T17229] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1009.082471][T17229] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1009.089584][T17229] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1009.096533][T17229] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1009.136596][T15299] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1009.148308][T15299] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1009.168539][T15299] usb 3-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[ 1009.179268][T15299] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1009.336845][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1009.340120][T15299] usb 3-1: config 0 descriptor??
[ 1009.356158][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1009.358294][T16608] usb 4-1: USB disconnect, device number 119
[ 1009.372712][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1009.397498][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1009.405798][  T409] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1009.412682][  T409] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1009.420347][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1009.428422][  T409] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1009.435250][  T409] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1009.442530][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1009.450416][  T409] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1009.473300][  T722] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1009.498741][T17229] device veth0_vlan entered promiscuous mode
[ 1009.513657][T17229] device veth1_macvtap entered promiscuous mode
[ 1009.530531][  T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1009.539430][  T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1009.548227][  T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1009.556552][  T425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1009.563822][  T425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1009.571229][  T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1009.966052][T17250] overlayfs: failed to resolve './file2': -2
[ 1011.745189][  T343] device bridge_slave_1 left promiscuous mode
[ 1011.752133][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1011.763849][  T343] device bridge_slave_0 left promiscuous mode
[ 1011.770970][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1012.754643][  T343] device veth1_macvtap left promiscuous mode
[ 1012.760665][  T343] device veth0_vlan left promiscuous mode
[ 1012.896178][T15299] usbhid 3-1:0.0: can't add hid device: -71
[ 1012.902142][   T42] usbhid 5-1:0.0: can't add hid device: -71
[ 1012.908158][T15299] usbhid: probe of 3-1:0.0 failed with error -71
[ 1012.965579][   T42] usbhid: probe of 5-1:0.0 failed with error -71
[ 1012.996533][T15299] usb 3-1: USB disconnect, device number 2
[ 1013.004596][   T42] usb 5-1: USB disconnect, device number 112
[ 1013.520781][T17297] overlayfs: failed to resolve './file2': -2
[ 1013.638815][T15283] usb 4-1: new high-speed USB device number 120 using dummy_hcd
[ 1013.766058][  T313] usb 2-1: new high-speed USB device number 117 using dummy_hcd
[ 1115.745961][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1115.752755][    C1] 	(detected by 1, t=10002 jiffies, g=100965, q=318)
[ 1115.759278][    C1] rcu: All QSes seen, last rcu_preempt kthread activity 10001 (4295048787-4295038786), jiffies_till_next_fqs=1, root ->qsmask 0x0
[ 1115.772832][    C1] rcu: rcu_preempt kthread starved for 10002 jiffies! g100965 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1115.784383][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1115.794330][    C1] rcu: RCU grace-period kthread stack dump:
[ 1115.800004][    C1] task:rcu_preempt     state:R  running task     stack:28184 pid:   14 ppid:     2 flags:0x00004000
[ 1115.810682][    C1] Call Trace:
[ 1115.813805][    C1]  <TASK>
[ 1115.816590][    C1]  __schedule+0xccc/0x1590
[ 1115.821233][    C1]  ? __sched_text_start+0x8/0x8
[ 1115.825906][    C1]  ? del_timer_sync+0x1bc/0x230
[ 1115.830700][    C1]  ? __kasan_check_write+0x14/0x20
[ 1115.835740][    C1]  schedule+0x11f/0x1e0
[ 1115.839738][    C1]  schedule_timeout+0x18c/0x370
[ 1115.844448][    C1]  ? __kasan_check_write+0x14/0x20
[ 1115.849472][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[ 1115.854752][    C1]  ? console_conditional_schedule+0x30/0x30
[ 1115.860596][    C1]  ? update_process_times+0x200/0x200
[ 1115.865767][    C1]  ? prepare_to_swait_event+0x308/0x320
[ 1115.871320][    C1]  rcu_gp_fqs_loop+0x2af/0xf80
[ 1115.876013][    C1]  ? dump_blkd_tasks+0x7e0/0x7e0
[ 1115.880994][    C1]  ? rcu_gp_init+0xc30/0xc30
[ 1115.885581][    C1]  ? _raw_spin_unlock_irq+0x4e/0x70
[ 1115.890710][    C1]  ? rcu_gp_init+0x9cf/0xc30
[ 1115.895217][    C1]  rcu_gp_kthread+0xa4/0x350
[ 1115.899640][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[ 1115.904329][    C1]  ? wake_nocb_gp+0x1e0/0x1e0
[ 1115.908888][    C1]  ? __kasan_check_read+0x11/0x20
[ 1115.914063][    C1]  ? __kthread_parkme+0xb2/0x200
[ 1115.918915][    C1]  kthread+0x421/0x510
[ 1115.922942][    C1]  ? wake_nocb_gp+0x1e0/0x1e0
[ 1115.927529][    C1]  ? kthread_blkcg+0xd0/0xd0
[ 1115.932067][    C1]  ret_from_fork+0x1f/0x30
[ 1115.937130][    C1]  </TASK>
[ 1115.940058][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1115.947251][    C1] NMI backtrace for cpu 1
[ 1115.952649][    C1] CPU: 1 PID: 17312 Comm: syz-executor.2 Tainted: G        W         5.15.149-syzkaller-00165-g85445b5a2107 #0
[ 1115.965749][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 1115.979572][    C1] Call Trace:
[ 1115.983303][    C1]  <IRQ>
[ 1115.986239][    C1]  dump_stack_lvl+0x151/0x1b7
[ 1115.991278][    C1]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1115.997181][    C1]  dump_stack+0x15/0x17
[ 1116.001780][    C1]  nmi_cpu_backtrace+0x2f7/0x300
[ 1116.007029][    C1]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[ 1116.013257][    C1]  ? panic+0x751/0x751
[ 1116.017331][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 1116.023973][    C1]  nmi_trigger_cpumask_backtrace+0x15d/0x270
[ 1116.030484][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 1116.036820][    C1]  arch_trigger_cpumask_backtrace+0x10/0x20
[ 1116.043359][    C1]  rcu_check_gp_kthread_starvation+0x1e3/0x250
[ 1116.049611][    C1]  print_other_cpu_stall+0x112d/0x1340
[ 1116.055254][    C1]  ? __kasan_check_write+0x14/0x20
[ 1116.060812][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[ 1116.067454][    C1]  ? try_invoke_on_locked_down_task+0x2a0/0x2a0
[ 1116.075227][    C1]  ? print_cpu_stall+0x5f0/0x5f0
[ 1116.080715][    C1]  ? __kasan_check_write+0x14/0x20
[ 1116.086086][    C1]  rcu_sched_clock_irq+0xaec/0x12f0
[ 1116.092202][    C1]  ? rcu_boost_kthread_setaffinity+0x340/0x340
[ 1116.099664][    C1]  ? hrtimer_run_queues+0x15f/0x440
[ 1116.105417][    C1]  update_process_times+0x198/0x200
[ 1116.110677][    C1]  tick_sched_timer+0x188/0x240
[ 1116.115734][    C1]  ? tick_setup_sched_timer+0x480/0x480
[ 1116.122061][    C1]  __hrtimer_run_queues+0x41a/0xad0
[ 1116.127855][    C1]  ? hrtimer_interrupt+0xaa0/0xaa0
[ 1116.133196][    C1]  ? clockevents_program_event+0x22f/0x300
[ 1116.139115][    C1]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[ 1116.145016][    C1]  hrtimer_interrupt+0x40c/0xaa0
[ 1116.150206][    C1]  __sysvec_apic_timer_interrupt+0xfd/0x3c0
[ 1116.156182][    C1]  sysvec_apic_timer_interrupt+0x95/0xc0
[ 1116.162722][    C1]  </IRQ>
[ 1116.165780][    C1]  <TASK>
[ 1116.169236][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 1116.176724][    C1] RIP: 0010:_raw_spin_unlock_irq+0x49/0x70
[ 1116.182909][    C1] Code: 08 00 74 0c 48 c7 c7 d8 54 8d 86 e8 31 45 e9 fc 48 83 3d 31 29 c4 01 00 74 2a 48 89 df e8 a3 bb 8b fc 66 90 fb bf 01 00 00 00 <e8> 02 ff 82 fc 65 8b 05 c3 41 39 7b 85 c0 74 03 5b 5d c3 e8 c3 55
[ 1116.203460][    C1] RSP: 0018:ffffc90000fbfbb8 EFLAGS: 00000246
[ 1116.209887][    C1] RAX: 0000000000000001 RBX: ffff88810d0fcec0 RCX: dffffc0000000000
[ 1116.218002][    C1] RDX: ffffc90001313000 RSI: 000000000003ffff RDI: 0000000000000001
[ 1116.226065][    C1] RBP: ffffc90000fbfbc0 R08: ffffffff81456eda R09: fffff520001f7fc0
[ 1116.233877][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88810d0fcec0
[ 1116.242073][    C1] R13: ffff88810d0fd2e0 R14: 0000000000000021 R15: dffffc0000000000
[ 1116.249977][    C1]  ? get_signal+0x151a/0x1630
[ 1116.254491][    C1]  ? _raw_spin_unlock_irq+0x41/0x70
[ 1116.259789][    C1]  get_signal+0x1562/0x1630
[ 1116.264593][    C1]  arch_do_signal_or_restart+0xbd/0x1680
[ 1116.270194][    C1]  ? __do_compat_sys_x32_rt_sigreturn+0x1e0/0x1e0
[ 1116.279159][    C1]  ? _raw_spin_lock_irq+0xa5/0x1b0
[ 1116.284664][    C1]  ? __kasan_check_write+0x14/0x20
[ 1116.289964][    C1]  ? _copy_from_user+0x96/0xd0
[ 1116.295090][    C1]  ? restore_altstack+0x274/0x400
[ 1116.300441][    C1]  ? get_sigframe_size+0x10/0x10
[ 1116.305692][    C1]  ? __ia32_sys_sigaltstack+0x70/0x70
[ 1116.311120][    C1]  ? __do_sys_rt_sigreturn+0x160/0x1e0
[ 1116.316998][    C1]  exit_to_user_mode_loop+0xa0/0xe0
[ 1116.322338][    C1]  exit_to_user_mode_prepare+0x5a/0xa0
[ 1116.328214][    C1]  syscall_exit_to_user_mode+0x26/0x160
[ 1116.333666][    C1]  do_syscall_64+0x49/0xb0
[ 1116.338426][    C1]  ? sysvec_apic_timer_interrupt+0x55/0xc0
[ 1116.345244][    C1]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 1116.351661][    C1] RIP: 0033:0x7f5e682c7f27
[ 1116.356935][    C1] Code: 14 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89
[ 1116.378153][    C1] RSP: 002b:00007f5e67621178 EFLAGS: 00000246
[ 1116.384100][    C1] RAX: 00000000000000ca RBX: 00007f5e683ff058 RCX: 00007f5e682c7f29
[ 1116.392291][    C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5e683ff058
[ 1116.402073][    C1] RBP: 00007f5e683ff050 R08: 00007f5e676216c0 R09: 00007f5e676216c0
[ 1116.412304][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e683ff05c
[ 1116.421203][    C1] R13: 000000000000006e R14: 00007ffff66a5950 R15: 00007ffff66a5a38
[ 1116.429888][    C1]  </TASK>
[ 1289.006006][    C0] BUG: workqueue lockup - pool cpus=0 node=0 flags=0x0 nice=0 stuck for 275s!
[ 1289.014746][    C0] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=0 stuck for 273s!
[ 1289.023523][    C0] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=-20 stuck for 269s!
[ 1289.032369][    C0] BUG: workqueue lockup - pool cpus=0-1 flags=0x4 nice=0 stuck for 272s!
[ 1289.040614][    C0] Showing busy workqueues and worker pools:
[ 1289.046336][    C0] workqueue events: flags=0x0
[ 1289.050837][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[ 1289.050880][    C0]     pending: kfree_rcu_monitor, rht_deferred_worker
[ 1289.050927][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=5/256 refcnt=6
[ 1289.050963][    C0]     pending: vmstat_shepherd, psi_avgs_work, kfree_rcu_monitor, rht_deferred_worker, rht_deferred_worker
[ 1289.051038][    C0] workqueue events_long: flags=0x0
[ 1289.088679][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=5/256 refcnt=6
[ 1289.088723][    C0]     pending: br_multicast_gc_work, br_multicast_gc_work, br_fdb_cleanup, br_fdb_cleanup, br_multicast_gc_work
[ 1289.088795][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[ 1289.088833][    C0]     pending: br_fdb_cleanup, br_fdb_cleanup
[ 1289.088862][    C0] workqueue events_unbound: flags=0x2
[ 1289.126521][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=2/512 refcnt=4
[ 1289.126570][    C0]     pending: toggle_allocation_gate, flush_memcg_stats_dwork
[ 1289.126626][    C0] workqueue events_power_efficient: flags=0x80
[ 1289.147180][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=3/256 refcnt=4
[ 1289.147230][    C0]     pending: neigh_periodic_work, neigh_periodic_work, gc_worker
[ 1289.147290][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[ 1289.147328][    C0]     pending: wg_ratelimiter_gc_entries, check_lifetime
[ 1289.147369][    C0] workqueue rcu_gp: flags=0x8
[ 1289.181449][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.181493][    C0]     pending: srcu_invoke_callbacks
[ 1289.181526][    C0] workqueue mm_percpu_wq: flags=0x8
[ 1289.199084][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.199127][    C0]     pending: vmstat_update
[ 1289.199154][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.199190][    C0]     pending: vmstat_update
[ 1289.199219][    C0] workqueue writeback: flags=0x4a
[ 1289.227837][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.227874][    C0]     pending: wb_workfn
[ 1289.227904][    C0] workqueue kblockd: flags=0x18
[ 1289.243619][    C0]   pwq 3: cpus=1 node=0 flags=0x0 nice=-20 active=1/256 refcnt=2
[ 1289.243660][    C0]     pending: blk_mq_timeout_work
[ 1289.243685][    C0] workqueue usb_hub_wq: flags=0x4
[ 1289.261239][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=4/256 refcnt=5
[ 1289.261288][    C0]     in-flight: 313:hub_event hub_event, 15283:hub_event hub_event
[ 1289.261375][    C0] workqueue dm_bufio_cache: flags=0x8
[ 1289.281954][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.282010][    C0]     pending: work_fn
[ 1289.282041][    C0] workqueue mld: flags=0x40008
[ 1289.297944][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/1 refcnt=7
[ 1289.297999][    C0]     pending: mld_dad_work
[ 1289.298037][    C0]     inactive: mld_dad_work, mld_dad_work, mld_dad_work, mld_dad_work, mld_dad_work
[ 1289.298109][    C0] workqueue ipv6_addrconf: flags=0x40008
[ 1289.324701][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/1 refcnt=2
[ 1289.324795][    C0]     pending: addrconf_verify_work
[ 1289.324861][    C0] workqueue wg-kex-wg0: flags=0x6
[ 1289.342029][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=2/256 refcnt=4
[ 1289.342068][    C0]     pending: wg_packet_handshake_send_worker, wg_packet_handshake_send_worker
[ 1289.342123][    C0] workqueue wg-kex-wg2: flags=0x6
[ 1289.362782][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=2/256 refcnt=4
[ 1289.362819][    C0]     pending: wg_packet_handshake_send_worker, wg_packet_handshake_send_worker
[ 1289.362870][    C0] workqueue wg-kex-wg0: flags=0x6
[ 1289.383605][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=4/256 refcnt=6
[ 1289.383643][    C0]     pending: wg_packet_handshake_send_worker, wg_packet_handshake_send_worker, wg_queued_expired_zero_key_material, wg_queued_expired_zero_key_material
[ 1289.383719][    C0] workqueue wg-kex-wg1: flags=0x6
[ 1289.410970][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=4/256 refcnt=6
[ 1289.411007][    C0]     pending: wg_packet_handshake_send_worker, wg_packet_handshake_send_worker, wg_queued_expired_zero_key_material, wg_queued_expired_zero_key_material
[ 1289.411085][    C0] workqueue wg-kex-wg2: flags=0x6
[ 1289.438235][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=4/256 refcnt=6
[ 1289.438274][    C0]     pending: wg_packet_handshake_send_worker, wg_packet_handshake_send_worker, wg_queued_expired_zero_key_material, wg_queued_expired_zero_key_material
[ 1289.438360][    C0] workqueue wg-kex-wg0: flags=0x6
[ 1289.465495][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.465534][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.465565][    C0] workqueue wg-crypt-wg0: flags=0x28
[ 1289.483718][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.483760][    C0]     pending: wg_packet_encrypt_worker
[ 1289.483790][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.483827][    C0]     pending: wg_packet_encrypt_worker
[ 1289.483858][    C0] workqueue wg-kex-wg1: flags=0x6
[ 1289.514374][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.514413][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.514445][    C0] workqueue wg-crypt-wg1: flags=0x28
[ 1289.532599][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.532640][    C0]     pending: wg_packet_encrypt_worker
[ 1289.532669][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=3/256 refcnt=4
[ 1289.532705][    C0]     pending: wg_packet_decrypt_worker, wg_packet_tx_worker, wg_packet_encrypt_worker
[ 1289.532775][    C0] workqueue wg-kex-wg2: flags=0x6
[ 1289.567380][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.567421][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.567460][    C0] workqueue wg-crypt-wg2: flags=0x28
[ 1289.585509][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.585550][    C0]     pending: wg_packet_encrypt_worker
[ 1289.585578][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.585616][    C0]     pending: wg_packet_encrypt_worker
[ 1289.585644][    C0] workqueue wg-kex-wg0: flags=0x6
[ 1289.616170][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.616212][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.616240][    C0] workqueue wg-crypt-wg0: flags=0x28
[ 1289.634302][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.634343][    C0]     pending: wg_packet_encrypt_worker
[ 1289.634372][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.634406][    C0]     pending: wg_packet_encrypt_worker
[ 1289.634434][    C0] workqueue wg-kex-wg1: flags=0x6
[ 1289.664960][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.665001][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.665030][    C0] workqueue wg-crypt-wg1: flags=0x28
[ 1289.683089][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.683127][    C0]     pending: wg_packet_encrypt_worker
[ 1289.683162][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.683198][    C0]     pending: wg_packet_encrypt_worker
[ 1289.683223][    C0] workqueue wg-kex-wg2: flags=0x6
[ 1289.713738][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.713776][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.713804][    C0] workqueue wg-crypt-wg2: flags=0x28
[ 1289.731882][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.731925][    C0]     pending: wg_packet_encrypt_worker
[ 1289.731951][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.731989][    C0]     pending: wg_packet_encrypt_worker
[ 1289.732019][    C0] workqueue wg-kex-wg0: flags=0x6
[ 1289.762536][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.762576][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.762606][    C0] workqueue wg-crypt-wg0: flags=0x28
[ 1289.780695][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.780735][    C0]     pending: wg_packet_encrypt_worker
[ 1289.780765][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[ 1289.780801][    C0]     pending: wg_packet_encrypt_worker, wg_packet_tx_worker
[ 1289.780843][    C0] workqueue wg-kex-wg1: flags=0x6
[ 1289.813182][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.813221][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.813251][    C0] workqueue wg-crypt-wg1: flags=0x28
[ 1289.831321][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.831361][    C0]     pending: wg_packet_encrypt_worker
[ 1289.831387][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[ 1289.831421][    C0]     pending: wg_packet_decrypt_worker, wg_packet_encrypt_worker
[ 1289.831461][    C0] workqueue wg-kex-wg2: flags=0x6
[ 1289.864230][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[ 1289.864273][    C0]     pending: wg_packet_handshake_send_worker
[ 1289.864301][    C0] workqueue wg-crypt-wg2: flags=0x28
[ 1289.882370][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.882409][    C0]     pending: wg_packet_encrypt_worker
[ 1289.882436][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[ 1289.882473][    C0]     pending: wg_packet_encrypt_worker
[ 1289.882500][    C0] pool 0: cpus=0 node=0 flags=0x0 nice=0 hung=275s workers=6 idle: 7218 409 331 909
2024/06/19 00:26:18 SYZFATAL: failed to send *flatrpc.ExecutorMessageRawT: write tcp 10.128.1.65:56798->10.128.0.163:30008: write: broken pipe
[ 1291.205968][  T313] usb 2-1: device descriptor read/all, error -71