last executing test programs:

6.706563647s ago: executing program 3 (id=4120):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_emit_ethernet(0x2b, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000400000008004500001d0000000000029078ac1414bbe000000111009078fffffffffebceb6ddc8b81273a2a417601ec1fd52af176c0c573e7f7b44a420b97a67b04229e29457096d5850dba545794ab2eb1b3715e03bbbbc5695f9551cbe1638a5f1263edf5b4543c2110340b42a70a844a974e153e48b93ca0c88f5ebe96a5c1a9ef64a4afc3cc878e1b22"], 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x28031, 0xffffffffffffffff, 0x8000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
gettid()
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_TABLE(r3, 0x29, 0xcf, &(0x7f00000001c0)=0xff, 0x4)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="c00000000001050500000000000000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400fe8000000000000000000000000000aa0c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff020000000000000000000000000001140004002001000000000000000000000000000108000740000000002c000d80140004"], 0xc0}}, 0x0)
capset(&(0x7f0000000040)={0x19980330}, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
chroot(0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1a000000ff0f0000ff0f0000ef7527d600000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

5.773837195s ago: executing program 3 (id=4123):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)

5.758338014s ago: executing program 4 (id=4124):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000080)='mm_page_alloc\x00', r1}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

5.716872434s ago: executing program 3 (id=4125):
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810714, &(0x7f0000000540)={[{@test_dummy_encryption}, {@init_itable_val}, {@nolazytime}, {@sysvgroups}, {@prjquota}, {@norecovery}, {@barrier_val={'barrier', 0x3d, 0xb}}, {@errors_remount}, {@auto_da_alloc}, {@test_dummy_encryption}]}, 0xff, 0x468, &(0x7f0000000780)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x50, 0x0, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000bb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2c41, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r6, 0x1)
flock(r5, 0x1)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r7, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
sendmmsg$inet(r7, &(0x7f00000039c0)=[{{&(0x7f0000000800)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c0c4)

5.619151714s ago: executing program 4 (id=4126):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket(0x11, 0x80a, 0x0)
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
socket(0x5, 0x800, 0x7fffffff)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x10b}], {0x14}}, 0x3c}}, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa0000000003"], 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x0, 0x2, 0x0, @empty=0xe0, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x1, 0x1000000, 0x8}}}}}, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
close(0xffffffffffffffff)

5.610764694s ago: executing program 4 (id=4127):
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
socket$inet6(0xa, 0x800000000000802, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x402, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0xc)

5.583310094s ago: executing program 4 (id=4128):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000f8ffffff8500000004000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='signal_generate\x00', r0}, 0x10)
r1 = gettid()
r2 = getpid()
rt_tgsigqueueinfo(r2, r1, 0x38, &(0x7f0000000180)={0x0, 0x0, 0x3})

5.556671024s ago: executing program 4 (id=4129):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=@updpolicy={0xb8, 0x19, 0x1, 0x400000, 0x25dfdbfe, {{@in=@empty, @in=@empty, 0x0, 0x2, 0x4, 0x0, 0xa, 0x80}, {0x0, 0x100000000, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffb}, {0x5, 0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x8004}, 0x4004)

5.446701543s ago: executing program 4 (id=4131):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e4, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)
bind$bt_hci(r0, &(0x7f0000000140), 0x6)

4.866663482s ago: executing program 3 (id=4137):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000d40)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}, {@data_err_abort}, {@minixdf}, {@errors_remount}, {@errors_continue}, {@noblock_validity}, {@barrier}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}]}, 0x1, 0x626, &(0x7f0000001100)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x56a, 0x29, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xf0, 0xa, [{{0x9, 0x4, 0x0, 0x2, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x40, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x81, 0x0, 0xfc}}}}}]}}]}}, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000100)={0x2c, &(0x7f00000005c0)=ANY=[@ANYBLOB="203014"], 0x0, 0x0, 0x0, 0x0}, 0x0)

3.547971808s ago: executing program 2 (id=4147):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}})

3.353882528s ago: executing program 2 (id=4148):
r0 = epoll_create1(0x0)
r1 = socket(0x1, 0x80802, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, 0x0)
epoll_pwait(r2, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
rt_sigsuspend(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000580)='debugfs\x00', 0x0, 0x0)
close(r2)
shutdown(r1, 0x0)
close(r0)

2.426779725s ago: executing program 2 (id=4155):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000003c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe2, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_create_resource$binfmt(&(0x7f0000000380)='./bus\x00')
keyctl$join(0x1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xe, 0x4, 0x8, 0x2008, 0x0, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000000000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

2.195503335s ago: executing program 1 (id=4156):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x5b8, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

2.131202385s ago: executing program 0 (id=4157):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000100004000000000000ec000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0x94, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)

2.078674254s ago: executing program 1 (id=4158):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300), 0x0, 0x0, 0x0, 0x800}, 0x20004011)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x10002)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r1], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0xc000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.940202085s ago: executing program 1 (id=4159):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = userfaultfd(0x80001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="000400000000000000ee4a6ab4a55d0d9e6e440e", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140))
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000037c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000f80)=@newtaction={0x488, 0x30, 0x12f, 0x70bd29, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x2, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc]}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x12, 0x0, 0x7}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0x2}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x488}}, 0x0)
prctl$PR_SET_MM(0x23, 0x1, &(0x7f000001b000/0x2000)=nil)
unshare(0x80)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_ZEROPAGE(r0, 0xc018aa06, &(0x7f0000000380)={{&(0x7f00007db000/0x2000)=nil, 0x2000}})
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x0, 0x0, 0x0, &(0x7f0000000000)=""/86, 0x56, 0x1, &(0x7f0000000180)=""/86, 0x56}, &(0x7f0000000200)=0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000002085000000040000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.875150454s ago: executing program 3 (id=4160):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000480)=""/92, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000003380))
r4 = eventfd2(0x76, 0x1)
ioctl$VHOST_SET_VRING_ERR(r3, 0x4008af22, &(0x7f00000001c0)={0x0, r4})
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000000600)=""/175, 0x0, 0x1000})
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000000)={0x0, r4})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000140)=0x1)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r5, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, 0x0)

1.702508184s ago: executing program 0 (id=4161):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000004c0)={[{@oldalloc}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@abort}, {@nombcache}, {@noblock_validity}, {@data_err_abort}, {@noblock_validity}], [{@smackfsdef={'smackfsdef', 0x3d, 'max_b\x03\x00\xce9\x00\x00\x00\x00e[\xa2\xb7\xe7\x82\x04Q\xad\xbb\xbd\xe6\x83z\xed^\x8c\xdd\x99\xc9,\x19\xb8\xcd\x85\xd8P\xfc\xdfw\\e\x95 \r\x8d\xe2\x03@\xd9=W2\x86V\xd2\x1e\xcd,\x0f\xd8L\x99\xcd\x88%w\x83\x9f\xe4a\x96\xc4\xeb6\x9f\xdd\xd0\t:\xea\x96\n\xcdX\xfd\x00g\xc4\x00\xce\xcc\b\x9b\n\aU~#\xd2\x19\xc1\x18\xb7\x92\xb7\xbd\xed\xb3ri\xd0\x8b\xef\xedP\xaa@p\xbb\x8a\x8aP\x04_\xdbr\xda\x10\xd1\x84\xb1[*\xbbY8%\xf5%\xb9bt\xefj+\xb1\xfb\x87i\xa2\xac\x86\xbd\xa9\x8c:\x8b\xf0\xde\x02\xe9\xd1\x13\x1b\x88\x85BL$\x156#\xa1m<8\xc3\x15\x13\xcb\xf3\x83\xe6R\x00\xec\xafg\xe4\xa3\xb0#O\xa4G\xd2\xb3~b/\x93\xf8xV?\xe4p\x1d\x97[\x10\xc9&\xff\xcd\x16\xd3'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/(-]{$$./'}}, {@euid_eq}]}, 0x1, 0x46c, &(0x7f0000001380)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
creat(0x0, 0x100)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x93, &(0x7f00000003c0)=""/147, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$inet6(0x10, 0x2, 0x6)
sendto$inet6(r5, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a0008000ac000000001", 0x1c, 0x0, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
dup3(r0, 0xffffffffffffffff, 0x80000)
gettid()
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10, &(0x7f0000000000), 0xfd, 0x244, &(0x7f0000000680)="$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")

1.656537034s ago: executing program 3 (id=4162):
syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b00010000000109"], 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x42, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11641e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x20, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x647b}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001300)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, r7, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x40, 0x400, 0x5, 0x80, 0x7}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.449925963s ago: executing program 2 (id=4163):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f00000007c0), r1)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000800)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x48001}, 0x24040000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
prctl$PR_SCHED_CORE(0x53564d41, 0x0, 0x0, 0x81010000000000, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbff, 0x2ffffffff}, 0xc)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r5)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

1.018916222s ago: executing program 2 (id=4164):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2140, 0x186)
ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f0000000000))
fcntl$setlease(r0, 0x400, 0x1)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800700, &(0x7f0000000880)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@sysvgroups}, {@usrjquota}]}, 0x3, 0x467, &(0x7f0000002280)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2080082, &(0x7f0000000800)={[{@user_xattr}, {@noquota}, {@orlov}, {@jqfmt_vfsv1}, {@block_validity}, {@errors_remount}, {@noquota}, {@dax_always}, {@delalloc}, {@jqfmt_vfsv0}, {@quota}]}, 0x1, 0x54f, &(0x7f0000000b00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x36bc4000)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffe3d)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000240), &(0x7f0000000880)=ANY=[], 0xff27, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000850000000800000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file1/file3\x00', 0x1)

905.186101ms ago: executing program 1 (id=4165):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0)

878.169182ms ago: executing program 1 (id=4166):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000123e280000000000000000d8ac87bc006d00000018010000a020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000e08400000006000000957dd4488514ef636cc01c561bff1360ce31aea7a69bfc457d6679635906e160e4e2"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, &(0x7f0000002380)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000f0ffffff7a0af0ff1100000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000000000006a0af2fe0000000085000000a3000000b700000000000000950000000000000000e154cd844a954b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b4090a79507df79f298129da487130d5f24b46001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad379e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4b9535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024a0041b1df65b3e1b9bf115646d14ce53d13d0ccacda1efc5f9094fa737c28b994a8512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4fdc4b4861004eefbc17f54f82a804d4a69bf9bc5fa77ee293fbd165a5a68488a010030166565a097b103b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254a6d491b849a5a787e814c4fd21a18986252a70f8f940b6f0e8c7db4bf23242a18159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad791fa99dac06b57479321a0574fb30ff0000001989328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c2d7962b0d22772c25a61ec45c3af97a8f17da954aff3fc8c108755f75ca13fb7c8bbd8b6e7dac2bba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f407000000000000006d294d366501753a7ac7fedb8d34f5bc381604fcd46105c457e7dd13cab669ab377e4c2422a47e9ffe2d4a2d32f7528751313694bf57704400b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c9585638c2153a6eee01738b0c10671f4f559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469608241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7b9c670100be05e7de0940313c5870786554df26236ebced9390cb6940b8375d936a7d2120eca291963eb2d537d8ee4de5c183c160119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b9d30902208d300e4d455c36300000000022320178b00cc6ed7966130b547dbf8b497af002000000cd1d0000002000000001c8000000000000003a48cea769470424d28804c024ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2cf7908b6d7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef40662d7836d252c566f5ee934c679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd13da2022f23daec61854f640f701db0276652f6c031578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec780f535e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab5009c68c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada209bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6155e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2f085185cc92fe7f791e8f6429309d6adab4b7e508e5bf024ed8f8a005f2bcdb7c89739f5d81e750d50517a59a3ad09e8802e8f4f000000000facd5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f296115d4a31838eeb20c20bb82aa31771cd379ec83554cea5b473332f2011e6539db7384e1f58d81f2f2653c4d9818708e27c89b552d3fcd116bce9c764c714c9402c21d181aae59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755367fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc05000000000000006c25b96174327d82761c26e329555f9290af4100000000000000749e1338636555009edf66be445d6975d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab0043ebf7c79a953e023f74afad591821610b857e8717764b633b21cb32f0e03280e09758bd445ab91d20baca005452b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92332af00f191b66b6a6f732a91f0e2e9120be61e58c79d497247d278888901d442ad7f8536605a644e9e3d769db497c1960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c525708a13d115b43f8b1894c8fa8a14dc4810f61ae96c18cc7130000000000002100000000000000000000000027c9a4619a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd5c17d5486b0c8a6c769f952283a1f4e3842edb3d42c68a27ef6a1296dff7aa46e820a74f9530bdcc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fdca4e9eda0072f6df342f3e7071e28ef6806b90cc39c49b91c76b0d3958f7f05b47d3e519f1634e8fbd8d3133319e069f9648a2ff93060ff073b3a113e47e447c030931651dd315003b7a6a47c912853826c4c65433a2bb560ae99ec4b227eda2e63a1cb1a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7194d1eb3de6a5f99f301f89c2ee627e949cdd22000026a9960503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db7f2d43ea8086cf059f40fa2640000cd9e5f2e236ef5f1e3a94b108eb9750b6bfb74dd35f5a31059c01517cf4b6641fce9a24b96767b837ca037a2050000c375c705c798e0e208e4a5259d0bda526b462af45a6e9a84aebe025c8a7f65819f397574db7ab01bd2b3e3cd28c5aec90f8edfe39a00bafd688a7eea04efdeed96f67012bc3f795edb68b5dec80ad31a858eb756c815e7695d00000000000000000000000000000000000000000000000000007ccf0ce549d97510f7f8765408bb702f0000006d4754c68b7064cf31a681421994e1f307f0ab4ff2e33d3c88fea5d218a276b77adfee7c8fb145783ee1f8adbd2c2604eab3a62a28611da1dae5ce60003111ce5c96a1d6e45ee144ffa3dcca32a33f8f0ce2995b7b7aa0bce228cbf37412cbbdebae06edb51a134301d2627d4927287daf9dcae6720334862d3a18094f1edd9e350337cbb804004d1755cfe7d7fa01872fb99815dcfbbc8141f6e1bbb0901ae91357677fd9d2bb00d4f17fb441c2dfa2b424bf46ae299d68ac27792cdac2b63a6038ab5546ba1e5ad6a329f2c627100e0442f865fc6c179ad3edcb6b000000000000000b0000000000000000ac192d48d76e2a8cae83ae850f73fdfbaca81b6b7b1a0d7b517f41fbd46aa24b0f4b8e0202e3a580947f1925ba4de097e8dcb6bd7f686322b45d4a544ca1e83b592d4a6d46d0a0dc39634550bc77d4cabba01b283082e66778de7c61a1a36838d36c2f8e58cef603770ee3d6a9625be0bc21d2be2da69ac9e9c5e88278d39239501b465102ad16d651ea8bb8cee35527c1ad42ac6a565e449929ccb4469bdd6824b64e13579b7188566e735200000000000000000094e05bcda1e96e4c33ccf6d74046e45bafe9d512c43a3e485dedad9a38b34f7fcd00fafcc25dc36716f0e21e0632425b7a1c1a6bc15c3fc07d914c88103411d8d2b77b72a796fd3aaa7ea493c7bc43e63b2b0d05ad5682121682096b224933fa20255d58a680cc2ec200"/3002], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3f)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x2, &(0x7f0000000000)=0x8000, 0x4)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x18)
setsockopt$inet6_int(r2, 0x29, 0x8, &(0x7f0000000040)=0x5f, 0x4)
recvmmsg(r2, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

762.052841ms ago: executing program 0 (id=4167):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x20, r2, 0x301, 0x0, 0x0, {{0x32}, {@void, @val={0xc}}}}, 0x20}}, 0x0)

728.198921ms ago: executing program 0 (id=4168):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x5b8, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

670.644551ms ago: executing program 0 (id=4169):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x1e, 0x4, 0x0, 0x0, 0x78, 0x2, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x401, 0x1000, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@multicast1}, {@dev, 0x659}, {@broadcast, 0x8000}, {@empty}, {@private}]}, @timestamp_prespec={0x44, 0x1c, 0x0, 0x3, 0x0, [{@multicast2}, {@private=0xa010105}, {}]}, @noop]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x2, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

487.974031ms ago: executing program 1 (id=4170):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000640)=ANY=[@ANYRES32=r3], &(0x7f0000000b00)=""/142, 0x52, 0x8e, 0x1, 0x0, 0x0, @void, @value}, 0x28)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000800)=@raw={'raw\x00', 0x8, 0x3, 0x290, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1c0, 0xffffffff, 0xffffffff, 0x1c0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, [], [], 'ip6erspan0\x00', 'wlan0\x00', {}, {}, 0x6, 0x0, 0x0, 0x1}, 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x4c00}}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0xd0, 0xf0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x24, 0x0, 0x5, 0x70bd29, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0xffffff93, 0xc, @random}]}, 0x63}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x18, 0x21f1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e22, 0x1}, 0x1c)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r7, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
sendmmsg(r7, &(0x7f0000007fc0), 0x800001d, 0x0)

325.76625ms ago: executing program 0 (id=4171):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4b4, 0xbca1, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x20, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x4, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xfa}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x18, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\b'], 0x0, 0x0, 0x0, 0x0}, 0x0)

0s ago: executing program 2 (id=4172):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x200400, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/wireless\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
preadv(r0, &(0x7f00000002c0)=[{&(0x7f0000000400)=""/159, 0x9f}], 0x1, 0x105, 0x97e)
r3 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2a, 0x0, 0x0)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @mcast1}}}, 0x108)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$PTP_SYS_OFFSET_PRECISE(0xffffffffffffffff, 0xc0403d08, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000340)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nouser_xattr}, {@data_writeback}, {@minixdf}, {@resgid}, {@nobarrier}, {@usrjquota}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
ftruncate(0xffffffffffffffff, 0x404043000)

kernel console output (not intermixed with test programs):

{ mount } for  pid=12946 comm="syz.4.3381" name="/" dev="loop4" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  946.876879][T11207] attempt to access beyond end of device
[  946.876879][T11207] loop4: rw=2049, want=45104, limit=40427
[  946.991018][T12961] loop1: detected capacity change from 0 to 512
[  947.274645][T12961] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  947.286398][T12961] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  947.347097][T12959] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #2: comm syz.1.3383: corrupted inode contents
[  947.360873][T12959] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #2: comm syz.1.3383: mark_inode_dirty error
[  947.374051][T12959] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #2: comm syz.1.3383: corrupted inode contents
[  947.386961][T12959] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.3383: mark_inode_dirty error
[  947.827685][ T2028] Bluetooth: hci0: command 0x1003 tx timeout
[  947.833943][T12933] Bluetooth: hci0: sending frame failed (-49)
[  947.889533][T12968] loop3: detected capacity change from 0 to 128
[  947.899760][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  947.899776][   T30] audit: type=1400 audit(1736668773.650:899): avc:  denied  { ioctl } for  pid=12969 comm="syz.4.3384" path="/dev/binderfs/binder0" dev="binder" ino=7 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  947.932582][   T30] audit: type=1400 audit(1736668773.678:900): avc:  denied  { set_context_mgr } for  pid=12969 comm="syz.4.3384" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  947.955284][T12972] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3387'.
[  948.037280][T12968] attempt to access beyond end of device
[  948.037280][T12968] loop3: rw=2049, want=1041, limit=128
[  948.055099][T12968] attempt to access beyond end of device
[  948.055099][T12968] loop3: rw=524288, want=178, limit=128
[  948.736886][T12982] bridge0: port 3(syz_tun) entered blocking state
[  948.743298][T12982] bridge0: port 3(syz_tun) entered disabled state
[  948.750844][T12982] device syz_tun entered promiscuous mode
[  948.756767][T12982] bridge0: port 3(syz_tun) entered blocking state
[  948.763074][T12982] bridge0: port 3(syz_tun) entered forwarding state
[  949.060107][T12985] loop2: detected capacity change from 0 to 512
[  949.075102][T12985] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  949.078609][T12987] loop1: detected capacity change from 0 to 512
[  949.093458][T12985] EXT4-fs (loop2): 1 truncate cleaned up
[  949.099271][T12985] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,dioread_lock,debug_want_extra_isize=0x0000000000000068,abort,nombcache,quota,nolazytime,,errors=continue. Quota mode: writeback.
[  949.121228][   T30] audit: type=1400 audit(1736668774.776:901): avc:  denied  { read } for  pid=12984 comm="syz.2.3391" name="bus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  949.182642][T12987] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.3393: casefold flag without casefold feature
[  949.195750][T12987] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.3393: couldn't read orphan inode 15 (err -117)
[  949.207899][T12987] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  949.406862][T12996] loop3: detected capacity change from 0 to 512
[  951.046539][   T30] audit: type=1400 audit(1736668776.538:902): avc:  denied  { create } for  pid=12986 comm="syz.1.3393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  951.729983][   T30] audit: type=1400 audit(1736668776.538:903): avc:  denied  { connect } for  pid=12986 comm="syz.1.3393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  951.731742][ T2028] Bluetooth: hci0: command 0x1001 tx timeout
[  951.756481][T12933] Bluetooth: hci0: sending frame failed (-49)
[  951.766674][   T30] audit: type=1400 audit(1736668776.538:904): avc:  denied  { write } for  pid=12986 comm="syz.1.3393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  951.871158][T12996] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.3392: inode #1: comm syz.3.3392: iget: illegal inode #
[  951.944845][T12996] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.3392: error while reading EA inode 1 err=-117
[  951.959050][T12996] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.3392: inode #1: comm syz.3.3392: iget: illegal inode #
[  951.972339][T12996] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.3392: error while reading EA inode 1 err=-117
[  951.984691][T12996] EXT4-fs (loop3): 1 orphan inode deleted
[  951.990304][T12996] EXT4-fs (loop3): mounted filesystem without journal. Opts: usrjquota=,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,grpquota,usrjquota=,journal_dev=0x0000000000000dcc,,errors=continue. Quota mode: writeback.
[  952.968879][   T30] audit: type=1400 audit(1736668778.328:905): avc:  denied  { getopt } for  pid=13018 comm="syz.3.3398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  953.017077][   T30] audit: type=1400 audit(1736668778.365:906): avc:  denied  { bind } for  pid=13015 comm="syz.2.3399" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  953.042451][T13017] device bridge_slave_0 left promiscuous mode
[  953.048454][T13017] bridge0: port 1(bridge_slave_0) entered disabled state
[  953.204418][T13030] loop4: detected capacity change from 0 to 512
[  953.215358][   T30] audit: type=1400 audit(1736668778.393:907): avc:  denied  { setopt } for  pid=13015 comm="syz.2.3399" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  953.244617][T13017] device bridge_slave_1 left promiscuous mode
[  953.257841][T13017] bridge0: port 2(bridge_slave_1) entered disabled state
[  953.400687][T13031] loop1: detected capacity change from 0 to 1024
[  953.563892][T13031] EXT4-fs (loop1): INFO: recovery required on readonly filesystem
[  953.571539][T13031] EXT4-fs (loop1): write access will be enabled during recovery
[  953.579314][T13031] EXT4-fs (loop1): barriers disabled
[  953.585637][T13031] JBD2: no valid journal superblock found
[  953.591277][T13031] EXT4-fs (loop1): error loading journal
[  953.634588][   T30] audit: type=1400 audit(1736668778.679:908): avc:  denied  { write } for  pid=13026 comm="syz.1.3403" name="001" dev="devtmpfs" ino=177 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  953.723484][T13030] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #15: comm syz.4.3401: casefold flag without casefold feature
[  953.736190][T13030] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.3401: couldn't read orphan inode 15 (err -117)
[  953.748083][T13030] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  953.800914][T13028] overlayfs: invalid origin (000000790000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  953.818679][   T30] audit: type=1400 audit(1736668779.085:909): avc:  denied  { setattr } for  pid=13020 comm="syz.4.3401" name="file0" dev="loop4" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  953.841886][ T2028] usb 4-1: new full-speed USB device number 55 using dummy_hcd
[  953.850118][   T30] audit: type=1400 audit(1736668779.085:910): avc:  denied  { mounton } for  pid=13020 comm="syz.4.3401" path="/123/file0/bus" dev="loop4" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  953.872912][   T30] audit: type=1400 audit(1736668779.085:911): avc:  denied  { write } for  pid=13020 comm="syz.4.3401" name="bus" dev="loop4" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  953.894695][   T30] audit: type=1400 audit(1736668779.085:912): avc:  denied  { add_name } for  pid=13020 comm="syz.4.3401" name="work" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  953.915061][   T30] audit: type=1400 audit(1736668779.094:913): avc:  denied  { remove_name } for  pid=13020 comm="syz.4.3401" name="#b5" dev="loop4" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  953.992466][   T30] audit: type=1400 audit(1736668779.094:914): avc:  denied  { rename } for  pid=13020 comm="syz.4.3401" name="#b5" dev="loop4" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  954.014505][   T20] Bluetooth: hci0: command 0x1009 tx timeout
[  954.015592][   T30] audit: type=1400 audit(1736668779.094:915): avc:  denied  { unlink } for  pid=13020 comm="syz.4.3401" name="#b5" dev="loop4" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[  954.043301][   T30] audit: type=1400 audit(1736668779.094:916): avc:  denied  { unlink } for  pid=13020 comm="syz.4.3401" name="#b6" dev="loop4" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  954.066201][   T30] audit: type=1400 audit(1736668779.112:917): avc:  denied  { bind } for  pid=13020 comm="syz.4.3401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  954.133732][T13040] loop4: detected capacity change from 0 to 256
[  954.168656][T13040] exfat: Unknown parameter 'iocharù&t'
[  954.247861][T13040] loop4: detected capacity change from 0 to 512
[  954.266887][T13040] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  954.276256][ T2028] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  954.279412][T13040] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  954.290293][ T2028] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 919, setting to 64
[  954.311024][ T2028] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  954.321962][ T2028] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 63626, setting to 64
[  954.505238][ T2028] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  954.514592][ T2028] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  954.525854][ T2028] usb 4-1: Product: syz
[  954.532219][ T2028] usb 4-1: Manufacturer: syz
[  954.537405][ T2028] usb 4-1: SerialNumber: syz
[  954.558076][T13023] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  954.848439][T13023] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  955.000707][T13056] loop2: detected capacity change from 0 to 16
[  955.144663][T13056] erofs: (device loop2): mounted with root inode @ nid 36.
[  956.162218][T13059] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  956.176601][T13063] SELinux:  Context Ü is not valid (left unmapped).
[  956.422109][ T2028] cdc_ncm 4-1:1.0: bind() failure
[  956.779996][ T2028] cdc_ncm: probe of 4-1:1.1 failed with error -71
[  956.801447][ T2028] cdc_mbim: probe of 4-1:1.1 failed with error -71
[  956.809212][ T2028] usb 4-1: USB disconnect, device number 55
[  959.434934][T12520] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[  959.442421][   T26] usb 3-1: new full-speed USB device number 45 using dummy_hcd
[  959.802428][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  959.802445][   T30] audit: type=1400 audit(1736668784.630:925): avc:  denied  { mount } for  pid=13109 comm="syz.4.3425" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  959.830476][   T30] audit: type=1400 audit(1736668784.630:926): avc:  denied  { remount } for  pid=13109 comm="syz.4.3425" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  959.850690][   T30] audit: type=1400 audit(1736668784.639:927): avc:  denied  { unmount } for  pid=11207 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  959.909309][   T30] audit: type=1400 audit(1736668784.722:928): avc:  denied  { read } for  pid=13120 comm="syz.0.3430" dev="nsfs" ino=4026532579 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  959.959483][   T30] audit: type=1400 audit(1736668784.750:929): avc:  denied  { open } for  pid=13120 comm="syz.0.3430" path="net:[4026532579]" dev="nsfs" ino=4026532579 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  960.054123][   T26] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  960.064216][   T26] usb 3-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  960.077778][T12520] usb 2-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice= 0.00
[  960.087019][   T26] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  960.096026][   T26] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  960.105916][T12520] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  960.424456][T13127] bridge0: port 3(macsec0) entered blocking state
[  960.430778][T13127] bridge0: port 3(macsec0) entered disabled state
[  960.437543][T13127] device macsec0 entered promiscuous mode
[  960.443354][T13127] bridge0: port 3(macsec0) entered blocking state
[  960.449600][T13127] bridge0: port 3(macsec0) entered forwarding state
[  960.513676][   T26] snd-usb-audio: probe of 3-1:27.0 failed with error -2
[  960.559821][T12520] usb 2-1: config 0 descriptor??
[  960.728622][T13093] xt_hashlimit: max too large, truncated to 1048576
[  962.072926][T13134] netlink: 'syz.2.3419': attribute type 32 has an invalid length.
[  962.080648][T13134] netlink: 60 bytes leftover after parsing attributes in process `syz.2.3419'.
[  963.006026][   T30] audit: type=1400 audit(1736668786.725:930): avc:  denied  { write } for  pid=13092 comm="syz.2.3419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  963.052358][ T1958] Bluetooth: hci0: Frame reassembly failed (-84)
[  963.056330][   T30] audit: type=1400 audit(1736668786.725:931): avc:  denied  { nlmsg_write } for  pid=13092 comm="syz.2.3419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  963.110835][   T30] audit: type=1400 audit(1736668787.684:932): avc:  denied  { read } for  pid=13146 comm="syz.4.3437" name="ppp" dev="devtmpfs" ino=150 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  963.142186][   T30] audit: type=1400 audit(1736668787.684:933): avc:  denied  { open } for  pid=13146 comm="syz.4.3437" path="/dev/ppp" dev="devtmpfs" ino=150 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  963.165737][   T30] audit: type=1400 audit(1736668787.712:934): avc:  denied  { ioctl } for  pid=13146 comm="syz.4.3437" path="/dev/ppp" dev="devtmpfs" ino=150 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  963.238998][T12520] usbhid 2-1:0.0: can't add hid device: -71
[  963.244828][T12520] usbhid: probe of 2-1:0.0 failed with error -71
[  963.260904][T12520] usb 2-1: USB disconnect, device number 61
[  963.424794][T13156] loop1: detected capacity change from 0 to 2048
[  963.463978][   T26] hid-generic 0000:0003:0000.002A: unknown main item tag 0x0
[  963.476797][   T26] hid-generic 0000:0003:0000.002A: unknown main item tag 0x0
[  963.680441][T13160] loop3: detected capacity change from 0 to 128
[  963.901828][  T360] usb 3-1: USB disconnect, device number 45
[  963.907091][   T26] hid-generic 0000:0003:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  964.888709][T13160] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  964.901438][T13160] ext4 filesystem being mounted at /69/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  967.645790][  T313] Bluetooth: hci0: command 0x1003 tx timeout
[  967.662822][T12933] Bluetooth: hci0: sending frame failed (-49)
[  967.743979][T13156] EXT4-fs: error -4 creating inode table initialization thread
[  967.751535][T13156] EXT4-fs (loop1): mount failed
[  967.914141][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  970.696620][   T30] audit: type=1400 audit(1736668792.067:937): avc:  denied  { bind } for  pid=13166 comm="syz.2.3442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  970.781918][   T20] Bluetooth: hci0: command 0x1001 tx timeout
[  970.788052][T12933] Bluetooth: hci0: sending frame failed (-49)
[  970.797403][   T30] audit: type=1400 audit(1736668792.067:938): avc:  denied  { ioctl } for  pid=13166 comm="syz.2.3442" path="/dev/uinput" dev="devtmpfs" ino=254 ioctlcmd=0x5564 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  971.334958][   T30] audit: type=1400 audit(1736668795.232:939): avc:  denied  { append } for  pid=13178 comm="syz.1.3445" name="rtc0" dev="devtmpfs" ino=255 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  971.503568][T13191] binder: 13185:13191 ioctl 4018620d 0 returned -22
[  971.857693][T13202] loop3: detected capacity change from 0 to 1024
[  971.942472][T13202] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  971.965347][T13202] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,nojournal_checksum,resuid=0x0000000000000000,errors=remount-ro,discard,max_dir_size_kb=0x00000000000007b1,stripe=0x0000000000000001,noinit_itable,nomblk_io_submit,nombcache,inode_readahead_blks=0x0000000000040000,. Quota mode: none.
[  973.055948][  T360] Bluetooth: hci0: command 0x1009 tx timeout
[  973.148192][T13220] device veth1_to_batadv entered promiscuous mode
[  973.154915][T13220] device macsec1 entered promiscuous mode
[  973.643711][T13224] loop1: detected capacity change from 0 to 256
[  973.719615][T13224] exfat: Deprecated parameter 'namecase'
[  973.725238][T13224] exfat: Deprecated parameter 'namecase'
[  973.731499][T13224] exfat: Unknown parameter 'sys_tz'
[  974.293012][   T30] audit: type=1400 audit(1736668797.788:940): avc:  denied  { map_create } for  pid=13231 comm="syz.4.3460" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  974.342931][   T30] audit: type=1400 audit(1736668797.788:941): avc:  denied  { map_read map_write } for  pid=13231 comm="syz.4.3460" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  974.457076][   T30] audit: type=1400 audit(1736668797.788:942): avc:  denied  { prog_load } for  pid=13231 comm="syz.4.3460" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  974.733312][   T30] audit: type=1400 audit(1736668797.788:943): avc:  denied  { bpf } for  pid=13231 comm="syz.4.3460" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  974.779918][T13243] loop4: detected capacity change from 0 to 512
[  974.792030][   T30] audit: type=1400 audit(1736668797.788:944): avc:  denied  { perfmon } for  pid=13231 comm="syz.4.3460" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  974.889358][   T30] audit: type=1400 audit(1736668797.788:945): avc:  denied  { prog_run } for  pid=13231 comm="syz.4.3460" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  974.908278][   T30] audit: type=1400 audit(1736668797.788:946): avc:  denied  { ioctl } for  pid=13231 comm="syz.4.3460" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=57850 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  974.934317][   T30] audit: type=1400 audit(1736668798.046:947): avc:  denied  { read write } for  pid=11284 comm="syz-executor" name="loop2" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  974.958407][   T30] audit: type=1400 audit(1736668798.074:949): avc:  denied  { read } for  pid=83 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  975.054512][   T30] audit: type=1400 audit(1736668798.074:950): avc:  denied  { search } for  pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  975.101105][T13243] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodioread_nolock,,errors=continue. Quota mode: writeback.
[  975.114174][T13243] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  975.350048][T13257] loop1: detected capacity change from 0 to 512
[  976.115517][T13259] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #15: comm syz.4.3463: corrupted xattr block 32
[  976.429690][  T360] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[  976.440557][T13259] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  976.450958][T13257] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.3466: inode #1: comm syz.1.3466: iget: illegal inode #
[  976.464053][T13257] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.3466: error while reading EA inode 1 err=-117
[  976.477192][T13257] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.3466: inode #1: comm syz.1.3466: iget: illegal inode #
[  976.490379][T13257] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.3466: error while reading EA inode 1 err=-117
[  976.502829][T13257] EXT4-fs (loop1): 1 orphan inode deleted
[  976.508433][T13257] EXT4-fs (loop1): mounted filesystem without journal. Opts: usrjquota=,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,grpquota,usrjquota=,journal_dev=0x0000000000000dcc,,errors=continue. Quota mode: writeback.
[  976.547469][   T26] usb 4-1: new full-speed USB device number 56 using dummy_hcd
[  976.786245][  T360] usb 1-1: Using ep0 maxpacket: 8
[  976.918532][T13273] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3470'.
[  976.927710][T13273] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3470'.
[  978.123328][   T26] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  978.392497][T13283] loop4: detected capacity change from 0 to 512
[  978.424609][T13285] xt_hashlimit: max too large, truncated to 1048576
[  978.880984][  T360] usb 1-1: unable to read config index 0 descriptor/all
[  978.887784][  T360] usb 1-1: can't read configurations, error -71
[  978.898704][T13283] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2766: inode #11: comm syz.4.3473: corrupted xattr block 95
[  978.903203][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3475'.
[  978.911389][T13283] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.3473: bg 0: block 7: invalid block bitmap
[  978.932493][   T26] usb 4-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  978.965142][T13283] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  978.974333][T13283] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2932: inode #11: comm syz.4.3473: corrupted xattr block 95
[  978.986953][T13283] EXT4-fs warning (device loop4): ext4_evict_inode:303: xattr delete (err -117)
[  978.995999][T13283] EXT4-fs (loop4): 1 orphan inode deleted
[  979.001643][T13283] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  979.674834][T13295] loop2: detected capacity change from 0 to 1024
[  979.766285][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  979.766367][   T30] audit: type=1400 audit(1736668802.964:979): avc:  denied  { read } for  pid=13292 comm="syz.2.3476" name="loop-control" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  979.881770][T13295] EXT4-fs (loop2): Ignoring removed oldalloc option
[  979.888480][T13295] EXT4-fs (loop2): Unrecognized mount option "dont_appraise" or missing value
[  979.900116][   T26] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  979.913420][   T26] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  979.921316][T13299] loop0: detected capacity change from 0 to 512
[  979.972571][   T26] usb 4-1: can't set config #27, error -71
[  979.973337][   T30] audit: type=1400 audit(1736668802.964:980): avc:  denied  { open } for  pid=13292 comm="syz.2.3476" path="/dev/loop-control" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  979.987337][   T26] usb 4-1: USB disconnect, device number 56
[  980.036685][   T30] audit: type=1400 audit(1736668803.296:981): avc:  denied  { create } for  pid=13304 comm="syz.3.3480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  980.916726][   T30] audit: type=1400 audit(1736668804.053:982): avc:  denied  { setopt } for  pid=13304 comm="syz.3.3480" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  980.979767][T13299] EXT4-fs (loop0): 1 orphan inode deleted
[  980.985500][T13299] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  980.998646][T13299] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  982.350520][   T30] audit: type=1400 audit(1736668804.274:983): avc:  denied  { write } for  pid=13304 comm="syz.3.3480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  983.206950][   T30] audit: type=1400 audit(1736668804.274:984): avc:  denied  { nlmsg_write } for  pid=13304 comm="syz.3.3480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  983.238298][   T30] audit: type=1400 audit(1736668804.487:985): avc:  denied  { sys_admin } for  pid=13302 comm="syz.4.3479" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  983.260240][   T30] audit: type=1400 audit(1736668804.514:986): avc:  denied  { create } for  pid=13302 comm="syz.4.3479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  983.276408][T13313] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3482'.
[  983.280511][   T30] audit: type=1400 audit(1736668805.483:987): avc:  denied  { create } for  pid=13321 comm="syz.2.3484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  983.288605][T13313] IPv6: NLM_F_CREATE should be specified when creating new route
[  983.326009][   T30] audit: type=1400 audit(1736668805.483:988): avc:  denied  { connect } for  pid=13321 comm="syz.2.3484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  983.364779][T13331] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3485'.
[  983.407653][T13334] loop2: detected capacity change from 0 to 16
[  983.475458][T13334] erofs: (device loop2): erofs_superblock_csum_verify: invalid checksum 0xc98ea669, 0xa48ae4e5 expected
[  983.817462][T13346] loop0: detected capacity change from 0 to 128
[  983.873670][T13346] EXT4-fs (loop0): Test dummy encryption mode enabled
[  983.885003][T13346] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  983.917568][T13346] ext4 filesystem being mounted at /92/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  984.120129][T13352] loop2: detected capacity change from 0 to 128
[  984.695734][T13354] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  985.788455][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  985.788523][   T30] audit: type=1400 audit(1736668808.602:1002): avc:  denied  { mount } for  pid=13358 comm="syz.1.3493" name="/" dev="incremental-fs" ino=309 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  985.903284][T13372] loop4: detected capacity change from 0 to 256
[  985.946317][T13372] FAT-fs (loop4): Unrecognized mount option "iocharset" or missing value
[  986.068800][T13376] loop0: detected capacity change from 0 to 512
[  986.500830][   T30] audit: type=1400 audit(1736668809.266:1003): avc:  denied  { read } for  pid=13373 comm="syz.2.3497" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  986.523712][   T30] audit: type=1400 audit(1736668809.266:1004): avc:  denied  { open } for  pid=13373 comm="syz.2.3497" path="/dev/kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  986.546877][   T30] audit: type=1400 audit(1736668809.266:1005): avc:  denied  { ioctl } for  pid=13373 comm="syz.2.3497" path="/dev/kvm" dev="devtmpfs" ino=82 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  987.533274][T13379] loop2: detected capacity change from 0 to 2048
[  987.564788][   T30] audit: type=1400 audit(1736668810.226:1006): avc:  denied  { unmount } for  pid=12497 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  987.585177][   T30] audit: type=1400 audit(1736668810.244:1007): avc:  denied  { unmount } for  pid=11847 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  987.737303][T13376] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.3496: inode #1: comm syz.0.3496: iget: illegal inode #
[  987.750496][T13376] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.3496: error while reading EA inode 1 err=-117
[  987.763037][T13376] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.3496: inode #1: comm syz.0.3496: iget: illegal inode #
[  987.776506][T13376] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.3496: error while reading EA inode 1 err=-117
[  987.984822][T13376] EXT4-fs (loop0): 1 orphan inode deleted
[  987.990420][T13376] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,grpquota,usrjquota=,journal_dev=0x0000000000000dcc,,errors=continue. Quota mode: writeback.
[  988.105083][   T30] audit: type=1400 audit(1736668810.623:1008): avc:  denied  { bind } for  pid=13386 comm="syz.3.3499" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  988.108080][   T26] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[  988.137704][T13381]  loop2: p3 < > p4 < >
[  988.141847][T13381] loop2: partition table partially beyond EOD, truncated
[  988.150012][   T30] audit: type=1400 audit(1736668810.623:1009): avc:  denied  { node_bind } for  pid=13386 comm="syz.3.3499" saddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  988.376175][   T30] audit: type=1400 audit(1736668810.623:1010): avc:  denied  { connect } for  pid=13386 comm="syz.3.3499" laddr=172.20.20.170 lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  988.402040][T13381] loop2: p3 start 4284289 is beyond EOD, truncated
[  988.409194][T13392] loop4: detected capacity change from 0 to 128
[  988.418130][T13379]  loop2: p3 < > p4 < >
[  988.418725][T13392] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  988.422174][T13379] loop2: partition table partially beyond EOD, truncated
[  988.439552][T13392] ext4 filesystem being mounted at /148/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  988.449455][T13379] loop2: p3 start 4284289 is beyond EOD, truncated
[  988.548065][ T9031] udevd[9031]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  988.594670][ T9031] udevd[9031]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  988.626664][T13399] netlink: 292 bytes leftover after parsing attributes in process `syz.3.3502'.
[  988.664674][   T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  988.703372][   T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  988.721354][   T30] audit: type=1400 audit(1736668811.315:1011): avc:  denied  { create } for  pid=13406 comm="syz.4.3506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  988.807690][   T26] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  988.820988][   T26] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  988.830069][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  988.838995][   T26] usb 2-1: config 0 descriptor??
[  989.394190][T13396] loop0: detected capacity change from 0 to 131072
[  989.440683][T13396] F2FS-fs (loop0): invalid crc value
[  989.520233][   T26] usbhid 2-1:0.0: can't add hid device: -71
[  989.533821][   T26] usbhid: probe of 2-1:0.0 failed with error -71
[  989.848094][T13396] F2FS-fs (loop0): Found nat_bits in checkpoint
[  991.845017][   T26] usb 2-1: USB disconnect, device number 62
[  991.883193][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  991.883212][   T30] audit: type=1400 audit(1736668814.212:1025): avc:  denied  { read } for  pid=13436 comm="syz.3.3512" dev="nsfs" ino=4026532292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  991.998764][   T30] audit: type=1400 audit(1736668814.212:1026): avc:  denied  { open } for  pid=13436 comm="syz.3.3512" path="net:[4026532292]" dev="nsfs" ino=4026532292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  992.031939][   T30] audit: type=1400 audit(1736668814.212:1027): avc:  denied  { create } for  pid=13436 comm="syz.3.3512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  992.052932][   T30] audit: type=1400 audit(1736668814.230:1028): avc:  denied  { setopt } for  pid=13436 comm="syz.3.3512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  992.082368][   T30] audit: type=1400 audit(1736668814.230:1029): avc:  denied  { getopt } for  pid=13436 comm="syz.3.3512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  992.114839][   T30] audit: type=1400 audit(1736668814.443:1030): avc:  denied  { wake_alarm } for  pid=13444 comm="syz.2.3517" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  992.225488][T13445] incfs: Options parsing error. -22
[  992.245463][T13445] incfs: mount failed -22
[  992.263760][   T30] audit: type=1400 audit(1736668814.590:1031): avc:  denied  { create } for  pid=13444 comm="syz.2.3517" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  992.312036][T13445] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  992.338667][T13445] FAT-fs (loop5): unable to read boot sector
[  992.347252][   T30] audit: type=1400 audit(1736668814.627:1032): avc:  denied  { mounton } for  pid=13444 comm="syz.2.3517" path="/126/file0" dev="tmpfs" ino=699 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  993.596404][   T30] audit: type=1400 audit(1736668814.692:1033): avc:  denied  { create } for  pid=13444 comm="syz.2.3517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  993.645818][T13466] loop4: detected capacity change from 0 to 512
[  993.671634][   T30] audit: type=1400 audit(1736668814.692:1034): avc:  denied  { shutdown } for  pid=13444 comm="syz.2.3517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  993.796388][T13466] EXT4-fs (loop4): Ignoring removed oldalloc option
[  993.817342][T13466] EXT4-fs (loop4): Unrecognized mount option "smackfsdef=max_b" or missing value
[  994.070468][T13476] loop0: detected capacity change from 0 to 16
[  994.194911][T13477] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3522'.
[  994.220103][T13477] loop4: detected capacity change from 0 to 128
[  994.227000][T12520] usb 3-1: new full-speed USB device number 46 using dummy_hcd
[  994.365188][T13477] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  994.375643][T13477] ext4 filesystem being mounted at /153/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  994.450882][T13476] erofs: (device loop0): erofs_superblock_csum_verify: invalid checksum 0xc98ea669, 0xa48ae4e5 expected
[  994.707550][T13486] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3524'.
[  995.210428][T12520] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  995.232722][T12520] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  995.806517][T12520] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  995.834921][T12520] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  995.853973][T12520] usb 3-1: Product: syz
[  995.857991][T12520] usb 3-1: Manufacturer: syz
[  995.864883][T12520] usb 3-1: SerialNumber: syz
[  996.009380][T13505] loop3: detected capacity change from 0 to 1024
[  996.023066][T13504] loop4: detected capacity change from 0 to 1024
[  996.055673][   T26] usb 2-1: new full-speed USB device number 63 using dummy_hcd
[  996.099259][T13504] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  996.108594][T13505] EXT4-fs (loop3): mounted filesystem without journal. Opts: minixdf,min_batch_time=0x0000000000000004,,errors=continue. Quota mode: writeback.
[  996.128439][T13504] EXT4-fs (loop4): orphan cleanup on readonly fs
[  996.149757][T13504] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  996.160758][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.167229][T13504] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #3: comm syz.4.3529: mark_inode_dirty error
[  996.178863][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.185364][T13504] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:476: comm syz.4.3529: Invalid block bitmap block 3 in block_group 0
[  996.199128][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.205581][T13504] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  996.215494][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.222118][T13504] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #3: comm syz.4.3529: mark_inode_dirty error
[  996.233685][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.240323][T12520] usb 3-1: 0:2 : does not exist
[  996.255627][T13504] EXT4-fs error (device loop4): ext4_map_blocks:629: inode #3: block 1: comm syz.4.3529: lblock 6 mapped to illegal pblock 1 (length 1)
[  996.272537][T12520] usb 3-1: USB disconnect, device number 46
[  996.289939][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.326879][T13504] EXT4-fs error (device loop4): ext4_map_blocks:629: inode #3: block 48: comm syz.4.3529: lblock 0 mapped to illegal pblock 48 (length 1)
[  996.424205][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.435040][T13504] EXT4-fs error (device loop4): ext4_acquire_dquot:6188: comm syz.4.3529: Failed to acquire dquot type 0
[  996.457088][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.473560][T13504] EXT4-fs error (device loop4): ext4_map_blocks:629: inode #3: block 49: comm syz.4.3529: lblock 1 mapped to illegal pblock 49 (length 1)
[  996.521899][   T26] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  996.539893][   T26] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  996.717034][T13520] loop0: detected capacity change from 0 to 16
[  996.764692][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.774437][T13520] erofs: (device loop0): mounted with root inode @ nid 36.
[  996.798062][T13520] attempt to access beyond end of device
[  996.798062][T13520] loop0: rw=0, want=24, limit=16
[  996.826239][T13520] attempt to access beyond end of device
[  996.826239][T13520] loop0: rw=0, want=24, limit=16
[  996.841427][T13520] attempt to access beyond end of device
[  996.841427][T13520] loop0: rw=0, want=24, limit=16
[  996.890580][T13504] EXT4-fs error (device loop4): ext4_acquire_dquot:6188: comm syz.4.3529: Failed to acquire dquot type 0
[  996.902164][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.908560][T13504] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  996.918166][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.924815][T13504] EXT4-fs error (device loop4): ext4_evict_inode:283: inode #15: comm syz.4.3529: mark_inode_dirty error
[  996.936250][T13504] EXT4-fs (loop4): Remounting filesystem read-only
[  996.942765][T13504] EXT4-fs warning (device loop4): ext4_evict_inode:286: couldn't mark inode dirty (err -117)
[  996.953080][T13504] EXT4-fs (loop4): 1 orphan inode deleted
[  996.958948][T13504] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000008,data_err=abort,minixdf,errors=remount-ro,abort,noblock_validity,barrier,journal_dev=0x0000000000000f35,. Quota mode: none.
[  996.980244][   T26] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  997.006498][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  997.031633][   T26] usb 2-1: SerialNumber: syz
[  997.085978][   T26] usb 2-1: 0:2 : does not exist
[  998.445553][T13535] loop0: detected capacity change from 0 to 128
[  999.288248][T13537] loop2: detected capacity change from 0 to 512
[  999.341293][   T39] usb 2-1: USB disconnect, device number 63
[  999.477478][T13537] EXT4-fs (loop2): Ignoring removed oldalloc option
[  999.489524][   T30] kauditd_printk_skb: 15 callbacks suppressed
[  999.489541][   T30] audit: type=1400 audit(1736668821.243:1044): avc:  denied  { mount } for  pid=13539 comm="syz.1.3539" name="/" dev="configfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  999.526781][T13537] EXT4-fs (loop2): Unrecognized mount option "smackfsdef=max_b" or missing value
[  999.834447][T13548] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3538'.
[ 1000.610203][   T30] audit: type=1400 audit(1736668822.286:1045): avc:  denied  { write } for  pid=13550 comm="syz.2.3542" name="ptp0" dev="devtmpfs" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 1000.734172][   T30] audit: type=1400 audit(1736668822.322:1046): avc:  denied  { unmount } for  pid=12497 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[ 1000.761728][T13553] loop1: detected capacity change from 0 to 1024
[ 1000.911498][T13553] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 1000.919812][T13553] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1000.937483][T13553] Quota error (device loop1): v2_read_file_info: Can't read info structure
[ 1001.094682][T13558] loop2: detected capacity change from 0 to 512
[ 1001.236874][   T30] audit: type=1400 audit(1736668822.655:1047): avc:  denied  { create } for  pid=13554 comm="syz.2.3544" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 1001.256697][T13553] EXT4-fs warning (device loop1): ext4_enable_quotas:6423: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[ 1001.312050][T13553] EXT4-fs (loop1): Cannot turn on quotas: error -5
[ 1001.320476][T13553] EXT4-fs (loop1): 1 truncate cleaned up
[ 1001.329390][T13553] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1001.432151][T13558] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[ 1001.442064][T13558] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1001.451767][T13558] EXT4-fs error (device loop2): ext4_acquire_dquot:6188: comm syz.2.3544: Failed to acquire dquot type 1
[ 1001.470747][T13558] EXT4-fs (loop2): 1 truncate cleaned up
[ 1001.476260][T13558] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1001.487134][T13558] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1001.520218][   T30] audit: type=1400 audit(1736668822.682:1048): avc:  denied  { name_bind } for  pid=13554 comm="syz.2.3544" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[ 1001.545714][   T30] audit: type=1400 audit(1736668822.682:1049): avc:  denied  { node_bind } for  pid=13554 comm="syz.2.3544" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 1001.569748][   T30] audit: type=1400 audit(1736668822.978:1050): avc:  denied  { write } for  pid=13552 comm="syz.1.3543" name="tcp" dev="proc" ino=4026532505 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[ 1001.909368][T13553] EXT4-fs error (device loop1): ext4_search_dir:1549: inode #2: block 16: comm syz.1.3543: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[ 1001.968010][T13570] loop3: detected capacity change from 0 to 16
[ 1001.978143][T13570] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1002.027288][ T3859] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1002.087000][T13561] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 248: padding at end of block bitmap is not set
[ 1002.566415][T13586] blk_update_request: I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1002.577366][T13586] FAT-fs (loop1): unable to read boot sector
[ 1002.590922][ T3859] usb 3-1: Using ep0 maxpacket: 16
[ 1002.596624][T13574] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1002.604721][T13574] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1002.619735][T13574] 9pnet: Insufficient options for proto=fd
[ 1002.716960][T13597] loop4: detected capacity change from 0 to 128
[ 1002.731929][ T3859] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1002.743024][ T3859] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1003.151924][T13597] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1003.174436][T13597] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[ 1003.188628][T13597] ext4 filesystem being mounted at /159/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1003.208847][ T3859] usb 3-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[ 1003.218532][ T3859] usb 3-1: New USB device strings: Mfr=53, Product=138, SerialNumber=0
[ 1003.226989][ T3859] usb 3-1: Product: syz
[ 1003.231430][ T3859] usb 3-1: Manufacturer: syz
[ 1003.266438][ T3859] usb 3-1: config 0 descriptor??
[ 1003.401375][T13608] loop1: detected capacity change from 0 to 40427
[ 1003.495213][T13610] device vlan2 entered promiscuous mode
[ 1003.500655][T13610] device syz_tun entered promiscuous mode
[ 1003.632280][T13608] F2FS-fs (loop1): fault_injection options not supported
[ 1004.101930][T13612] loop0: detected capacity change from 0 to 512
[ 1004.109492][T13608] F2FS-fs (loop1): invalid crc value
[ 1004.133401][T13608] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1004.231605][T13608] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1004.240433][T13612] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[ 1004.278316][T13612] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1005.607032][   T30] kauditd_printk_skb: 4 callbacks suppressed
[ 1005.607051][   T30] audit: type=1400 audit(1736668826.899:1055): avc:  denied  { shutdown } for  pid=13611 comm="syz.0.3559" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1005.634548][T13630] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.3559: bg 0: block 128: padding at end of block bitmap is not set
[ 1005.720582][T13634] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1005.731393][T13634] FAT-fs (loop7): unable to read boot sector
[ 1005.808665][ T3859] usbhid 3-1:0.0: can't add hid device: -71
[ 1005.823178][ T3859] usbhid: probe of 3-1:0.0 failed with error -71
[ 1005.831383][ T3859] usb 3-1: USB disconnect, device number 47
[ 1005.875683][T13641] loop2: detected capacity change from 0 to 128
[ 1005.921548][T13641] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1005.936879][T13641] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[ 1006.033818][T13641] ext4 filesystem being mounted at /136/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1006.929243][T13657] loop0: detected capacity change from 0 to 512
[ 1007.040659][T13657] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.3569: inode #1: comm syz.0.3569: iget: illegal inode #
[ 1007.099660][T13657] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.3569: error while reading EA inode 1 err=-117
[ 1007.121307][T13657] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.3569: inode #1: comm syz.0.3569: iget: illegal inode #
[ 1007.310761][T13670] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3570'.
[ 1008.253042][T13657] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.3569: error while reading EA inode 1 err=-117
[ 1008.424273][   T30] audit: type=1400 audit(1736668829.492:1056): avc:  denied  { mac_admin } for  pid=13674 comm="syz.3.3573" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 1008.457067][T13675] SELinux:  Context system_u:object_r:hald_keymap_exec_t:s0 is not valid (left unmapped).
[ 1008.478173][T13657] EXT4-fs (loop0): 1 orphan inode deleted
[ 1008.494724][T13657] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[ 1008.528059][T13675] loop3: detected capacity change from 0 to 256
[ 1008.551842][   T30] audit: type=1400 audit(1736668829.584:1057): avc:  denied  { relabelto } for  pid=13674 comm="syz.3.3573" name="memfd:/dev/bus/usb/00#/00#" dev="tmpfs" ino=2803 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:hald_keymap_exec_t:s0"
[ 1008.641186][T13675] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1008.823410][   T30] audit: type=1400 audit(1736668829.584:1058): avc:  denied  { associate } for  pid=13674 comm="syz.3.3573" name="memfd:/dev/bus/usb/00#/00#" dev="tmpfs" ino=2803 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:hald_keymap_exec_t:s0"
[ 1009.820686][T13679] EXT4-fs error (device loop0): ext4_lookup:1862: inode #2: comm syz.0.3569: deleted inode referenced: 15
[ 1009.840376][T13679] EXT4-fs error (device loop0): ext4_lookup:1862: inode #2: comm syz.0.3569: deleted inode referenced: 15
[ 1009.853122][T13679] EXT4-fs error (device loop0): ext4_lookup:1862: inode #2: comm syz.0.3569: deleted inode referenced: 15
[ 1009.866904][   T30] audit: type=1400 audit(1736668829.898:1059): avc:  denied  { write } for  pid=13678 comm="syz.3.3573" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1009.923783][   T30] audit: type=1400 audit(1736668829.898:1060): avc:  denied  { add_name } for  pid=13678 comm="syz.3.3573" name="core" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1010.032882][   T30] audit: type=1400 audit(1736668829.898:1061): avc:  denied  { associate } for  pid=13678 comm="syz.3.3573" name="core" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1010.203565][   T30] audit: type=1400 audit(1736668829.898:1062): avc:  denied  { read write open } for  pid=13678 comm="syz.3.3573" path="/98/file1/core" dev="loop3" ino=1048701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1010.256631][   T30] audit: type=1400 audit(1736668830.737:1063): avc:  denied  { setattr } for  pid=13656 comm="syz.0.3569" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1010.319258][   T30] audit: type=1400 audit(1736668830.830:1064): avc:  denied  { getattr } for  pid=13674 comm="syz.3.3573" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 1010.509147][T13704] loop0: detected capacity change from 0 to 512
[ 1010.531711][T13704] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[ 1010.538908][T13704] EXT4-fs (loop0): Mount option "dioread_nolock" incompatible with ext3
[ 1011.251969][T13711] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3583'.
[ 1013.374686][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 1013.374706][   T30] audit: type=1400 audit(1736668834.059:1068): avc:  denied  { execute } for  pid=13722 comm="syz.3.3588" name="file0" dev="tmpfs" ino=598 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1013.561659][T13732] loop2: detected capacity change from 0 to 512
[ 1013.690545][T13732] EXT4-fs (loop2): Ignoring removed orlov option
[ 1013.972162][T13732] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodelalloc,orlov,auto_da_alloc,,errors=continue. Quota mode: writeback.
[ 1014.056085][T13732] ext4 filesystem being mounted at /140/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1014.126878][T13742] loop4: detected capacity change from 0 to 512
[ 1014.306599][   T30] audit: type=1400 audit(1736668834.908:1069): avc:  denied  { execute_no_trans } for  pid=13722 comm="syz.3.3588" path="/99/file0" dev="tmpfs" ino=598 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1014.465921][T13742] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1014.476837][T13742] EXT4-fs warning (device loop4): ext4_enable_quotas:6423: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 1014.577728][T13742] EXT4-fs (loop4): Cannot turn on quotas: error -22
[ 1014.610314][T13742] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #13: comm syz.4.3594: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[ 1014.816302][T13742] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.3594: couldn't read orphan inode 13 (err -117)
[ 1014.838426][T13742] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1014.885565][T13753] loop1: detected capacity change from 0 to 512
[ 1015.014820][T13753] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[ 1015.137387][T13753] EXT4-fs (loop1): Mount option "dioread_nolock" incompatible with ext3
[ 1015.183437][T13742] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 1015.204042][T13742] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 2
[ 1015.540190][T13761] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3597'.
[ 1016.448023][T13785] loop4: detected capacity change from 0 to 512
[ 1017.412287][   T30] audit: type=1400 audit(1736668837.768:1070): avc:  denied  { read write } for  pid=13782 comm="syz.2.3606" name="vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1017.518938][T13785] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1017.834036][T13785] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.3605: bg 0: block 248: padding at end of block bitmap is not set
[ 1017.850288][T13785] Quota error (device loop4): write_blk: dquota write failed
[ 1017.857750][T13785] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[ 1017.867623][T13785] EXT4-fs error (device loop4): ext4_acquire_dquot:6188: comm syz.4.3605: Failed to acquire dquot type 1
[ 1017.882152][T13785] EXT4-fs (loop4): 1 truncate cleaned up
[ 1017.889978][T13785] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,nodiscard,,errors=continue. Quota mode: writeback.
[ 1018.100687][   T30] audit: type=1400 audit(1736668837.768:1071): avc:  denied  { open } for  pid=13782 comm="syz.2.3606" path="/dev/vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[ 1018.251548][   T30] audit: type=1400 audit(1736668838.396:1072): avc:  denied  { mount } for  pid=13793 comm="syz.1.3608" name="/" dev="ramfs" ino=59999 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[ 1018.330775][T13796] incfs: Options parsing error. -22
[ 1018.335937][T13796] incfs: mount failed -22
[ 1018.364126][T13796] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1018.399493][T13796] FAT-fs (loop7): unable to read boot sector
[ 1018.526341][T13809] loop3: detected capacity change from 0 to 512
[ 1018.987178][T13809] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.3613: inode #1: comm syz.3.3613: iget: illegal inode #
[ 1019.043131][T13809] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.3613: error while reading EA inode 1 err=-117
[ 1019.249214][T13809] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.3613: inode #1: comm syz.3.3613: iget: illegal inode #
[ 1019.346491][T13809] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.3613: error while reading EA inode 1 err=-117
[ 1019.400098][T13809] EXT4-fs (loop3): 1 orphan inode deleted
[ 1019.406826][T13809] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[ 1019.418830][T13837] loop2: detected capacity change from 0 to 128
[ 1019.665765][T13827] loop1: detected capacity change from 0 to 8192
[ 1019.843340][T13837] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_dev=0x0000000000000000,nouid32,,errors=continue. Quota mode: none.
[ 1020.072746][T13837] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1020.088914][T13844] loop0: detected capacity change from 0 to 256
[ 1020.123055][T13844] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1021.597538][T13876] loop3: detected capacity change from 0 to 2048
[ 1021.630607][T13880] loop1: detected capacity change from 0 to 512
[ 1021.733015][T13876] GPT:first_usable_lbas don't match.
[ 1021.755988][T13880] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.3636: inode #1: comm syz.1.3636: iget: illegal inode #
[ 1021.806196][  T313] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[ 1021.882563][T13880] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.3636: error while reading EA inode 1 err=-117
[ 1021.903847][T13876] GPT:34 != 290
[ 1021.907213][T13880] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.3636: inode #1: comm syz.1.3636: iget: illegal inode #
[ 1021.925398][T13876] GPT: Use GNU Parted to correct GPT errors.
[ 1021.931397][T13876]  loop3: p1 p2 p3
[ 1021.936816][T13880] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.3636: error while reading EA inode 1 err=-117
[ 1021.949467][T13880] EXT4-fs (loop1): 1 orphan inode deleted
[ 1021.955063][T13880] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[ 1021.979400][T13882] loop0: detected capacity change from 0 to 40427
[ 1022.038051][T13882] F2FS-fs (loop0): Invalid SB checksum offset: 0
[ 1022.044336][T13882] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[ 1022.056324][T13882] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 1022.067371][  T313] usb 5-1: Using ep0 maxpacket: 16
[ 1022.083901][  T101] GPT:first_usable_lbas don't match.
[ 1022.089802][  T101] GPT:34 != 290
[ 1022.094037][  T101] GPT: Use GNU Parted to correct GPT errors.
[ 1022.099937][  T101]  loop3: p1 p2 p3
[ 1022.103926][T13882] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[ 1022.111526][T13882] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1022.836266][  T313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11
[ 1022.844336][ T9031] udevd[9031]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[ 1022.850189][  T313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1022.859257][ T9246] udevd[9246]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[ 1022.867178][  T313] usb 5-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1022.884959][  T313] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1022.955680][  T313] usb 5-1: config 0 descriptor??
[ 1023.022804][ T9032] udevd[9032]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[ 1024.014816][ T9034] udevd[9034]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[ 1024.026992][ T9031] udevd[9031]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[ 1024.278431][  T313] cypress 0003:04B4:BCA1.002B: unknown main item tag 0x0
[ 1024.285328][  T313] cypress 0003:04B4:BCA1.002B: unknown main item tag 0x0
[ 1024.308338][  T313] cypress 0003:04B4:BCA1.002B: item fetching failed at offset 2/5
[ 1024.322682][   T30] audit: type=1400 audit(1736668844.163:1073): avc:  denied  { name_bind } for  pid=13905 comm="syz.3.3641" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[ 1024.367025][  T313] cypress 0003:04B4:BCA1.002B: parse failed
[ 1024.386331][  T313] cypress: probe of 0003:04B4:BCA1.002B failed with error -22
[ 1024.532523][  T313] usb 5-1: USB disconnect, device number 52
[ 1025.175366][T11493] attempt to access beyond end of device
[ 1025.175366][T11493] loop0: rw=2049, want=45104, limit=40427
[ 1026.366305][T13964] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3660'.
[ 1026.441622][   T30] audit: type=1400 audit(1736668846.119:1074): avc:  denied  { ioctl } for  pid=13965 comm="syz.2.3663" path="socket:[60314]" dev="sockfs" ino=60314 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1026.445425][T13968] loop0: detected capacity change from 0 to 512
[ 1026.485927][T13968] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.3664: inode #1: comm syz.0.3664: iget: illegal inode #
[ 1026.500109][T13968] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.3664: error while reading EA inode 1 err=-117
[ 1026.555191][T13968] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.3664: inode #1: comm syz.0.3664: iget: illegal inode #
[ 1026.575454][T13968] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.3664: error while reading EA inode 1 err=-117
[ 1026.604989][T13968] EXT4-fs (loop0): 1 orphan inode deleted
[ 1026.622547][T13968] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[ 1026.850574][T12520] usb 3-1: new full-speed USB device number 48 using dummy_hcd
[ 1027.268494][T12520] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1027.279455][T12520] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1027.452790][T12520] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[ 1027.461746][T12520] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1027.492598][T12520] usb 3-1: SerialNumber: syz
[ 1027.619629][T12520] cdc_ether: probe of 3-1:1.0 failed with error -22
[ 1027.644933][T12520] usb-storage 3-1:1.0: USB Mass Storage device detected
[ 1027.736729][T12520] usb-storage 3-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[ 1027.753899][T13997] loop4: detected capacity change from 0 to 40427
[ 1027.754453][T12520] scsi host1: usb-storage 3-1:1.0
[ 1027.812059][T13997] F2FS-fs (loop4): Invalid SB checksum offset: 0
[ 1027.819983][T13997] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[ 1027.847822][T13997] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 1027.876920][   T30] audit: type=1400 audit(1736668847.448:1075): avc:  denied  { setopt } for  pid=14010 comm="syz.1.3680" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1027.910421][T13997] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[ 1027.917283][T13997] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1028.355349][   T30] audit: type=1400 audit(1736668847.798:1076): avc:  denied  { mount } for  pid=13974 comm="syz.2.3666" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 1028.429026][T11207] attempt to access beyond end of device
[ 1028.429026][T11207] loop4: rw=2049, want=45112, limit=40427
[ 1028.457143][   T30] audit: type=1400 audit(1736668847.973:1077): avc:  denied  { bind } for  pid=14032 comm="syz.3.3686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1028.491406][   T30] audit: type=1400 audit(1736668847.973:1078): avc:  denied  { read write } for  pid=14032 comm="syz.3.3686" name="ppp" dev="devtmpfs" ino=150 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1028.515627][   T30] audit: type=1400 audit(1736668847.973:1079): avc:  denied  { open } for  pid=14032 comm="syz.3.3686" path="/dev/ppp" dev="devtmpfs" ino=150 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1028.575426][   T30] audit: type=1400 audit(1736668847.973:1080): avc:  denied  { ioctl } for  pid=14032 comm="syz.3.3686" path="/dev/ppp" dev="devtmpfs" ino=150 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 1029.143544][T14057] loop0: detected capacity change from 0 to 512
[ 1029.187397][T14057] EXT4-fs (loop0): Ignoring removed oldalloc option
[ 1029.194686][T14057] EXT4-fs (loop0): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1029.209894][  T320] usb 3-1: USB disconnect, device number 48
[ 1029.251927][   T30] audit: type=1400 audit(1736668848.684:1081): avc:  denied  { connect } for  pid=14048 comm="syz.1.3690" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1029.652324][T14067] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3693'.
[ 1029.671923][T14067] loop0: detected capacity change from 0 to 128
[ 1029.843320][   T30] audit: type=1400 audit(1736668849.256:1082): avc:  denied  { unmount } for  pid=11284 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 1029.865626][T14067] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1029.876225][T14067] ext4 filesystem being mounted at /132/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1031.096881][   T30] audit: type=1400 audit(1736668850.419:1083): avc:  denied  { name_bind } for  pid=14094 comm="syz.0.3702" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[ 1031.142293][T14100] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3708'.
[ 1031.287565][   T30] audit: type=1400 audit(1736668850.465:1084): avc:  denied  { write } for  pid=14099 comm="syz.3.3708" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1031.383052][   T30] audit: type=1400 audit(1736668850.612:1085): avc:  denied  { read } for  pid=14099 comm="syz.3.3708" dev="sockfs" ino=61514 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1031.650178][T14115] loop4: detected capacity change from 0 to 512
[ 1031.680371][T14115] EXT4-fs (loop4): Ignoring removed oldalloc option
[ 1031.703661][T14115] EXT4-fs (loop4): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1031.758131][T14097] loop1: detected capacity change from 0 to 40427
[ 1031.835211][T14097] F2FS-fs (loop1): Invalid SB checksum offset: 0
[ 1031.842085][T14097] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 1031.938368][T14097] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 1032.050143][T14120] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3712'.
[ 1032.160526][T14120] loop4: detected capacity change from 0 to 128
[ 1032.338338][T14125] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3714'.
[ 1032.378942][T14097] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[ 1032.390018][T14120] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1032.400750][T14120] ext4 filesystem being mounted at /194/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1032.432673][T14097] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1032.663730][   T30] audit: type=1400 audit(1736668851.858:1086): avc:  denied  { bind } for  pid=14140 comm="syz.4.3720" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1035.676220][T12497] attempt to access beyond end of device
[ 1035.676220][T12497] loop1: rw=2049, want=45104, limit=40427
[ 1035.949167][   T30] audit: type=1400 audit(1736668854.884:1087): avc:  denied  { integrity } for  pid=14154 comm="syz.3.3726" lockdown_reason="hibernation" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[ 1036.401413][  T320] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[ 1036.806473][T14155] blk_update_request: I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0
[ 1037.163931][T14170] loop3: detected capacity change from 0 to 512
[ 1037.198272][T14170] EXT4-fs (loop3): Ignoring removed oldalloc option
[ 1037.213754][T14170] EXT4-fs (loop3): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1037.844219][T14183] device vlan3 entered promiscuous mode
[ 1039.217301][T14186] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3729'.
[ 1039.227640][T14186] loop3: detected capacity change from 0 to 128
[ 1039.318733][   T30] audit: type=1400 audit(1736668857.994:1088): avc:  denied  { search } for  pid=14191 comm="syz.1.3735" name="/" dev="configfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[ 1039.372335][T14186] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1039.382778][T14186] ext4 filesystem being mounted at /130/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1040.079245][T14215] incfs: Options parsing error. -22
[ 1040.100397][T14215] incfs: mount failed -22
[ 1042.283045][T14247] loop2: detected capacity change from 0 to 256
[ 1042.314569][T14250] loop1: detected capacity change from 0 to 512
[ 1042.387585][T14253] xt_TCPMSS: Only works on TCP SYN packets
[ 1042.411952][T14253] loop4: detected capacity change from 0 to 128
[ 1042.494592][T14247] FAT-fs (loop2): bogus number of FAT sectors
[ 1042.541093][T14250] EXT4-fs (loop1): Ignoring removed oldalloc option
[ 1042.571031][T14247] FAT-fs (loop2): Can't find a valid FAT filesystem
[ 1042.577130][T14250] EXT4-fs (loop1): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1042.864063][   T30] audit: type=1400 audit(1736668861.279:1089): avc:  denied  { connect } for  pid=14263 comm="syz.0.3758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1042.885894][T14261] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3754'.
[ 1042.897318][T14261] loop1: detected capacity change from 0 to 128
[ 1042.928033][   T30] audit: type=1400 audit(1736668861.325:1090): avc:  denied  { write } for  pid=14263 comm="syz.0.3758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 1043.060641][T14261] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1043.071788][T14261] ext4 filesystem being mounted at /98/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1044.616435][T14282] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1044.644936][T14282] FAT-fs (loop5): unable to read boot sector
[ 1045.432353][T14308] loop2: detected capacity change from 0 to 512
[ 1045.524661][T14308] EXT4-fs (loop2): Ignoring removed oldalloc option
[ 1045.532401][T14308] EXT4-fs (loop2): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1045.790606][T14317] loop1: detected capacity change from 0 to 1024
[ 1045.919107][T14317] EXT4-fs (loop1): Ignoring removed nobh option
[ 1045.925456][T14317] EXT4-fs (loop1): Ignoring removed bh option
[ 1045.931476][T14317] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1046.037678][T14323] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3771'.
[ 1046.077732][T14323] loop2: detected capacity change from 0 to 128
[ 1047.002114][T14317] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[ 1047.083269][   T30] audit: type=1400 audit(1736668865.145:1091): avc:  denied  { read write } for  pid=14313 comm="syz.1.3773" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1047.141487][T14317] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3876: comm syz.1.3773: Allocating blocks 497-513 which overlap fs metadata
[ 1047.156467][T14317] EXT4-fs (loop1): pa ffff888112553dc8: logic 128, phys. 385, len 8
[ 1047.164284][T14317] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4893: group 0, free 0, pa_free 1
[ 1047.185789][   T30] audit: type=1400 audit(1736668865.145:1092): avc:  denied  { open } for  pid=14313 comm="syz.1.3773" path="/100/file1/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1047.242966][T14323] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1047.253502][T14323] ext4 filesystem being mounted at /175/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1048.029860][T14345] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1048.043129][T14345] FAT-fs (loop5): unable to read boot sector
[ 1048.222310][T14348] loop1: detected capacity change from 0 to 1024
[ 1048.370202][   T30] audit: type=1400 audit(1736668866.169:1093): avc:  denied  { mount } for  pid=14341 comm="syz.1.3781" name="/" dev="pstore" ino=14580 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[ 1048.434771][T14348] EXT4-fs (loop1): Ignoring removed oldalloc option
[ 1048.441220][T14348] EXT4-fs (loop1): Unrecognized mount option "dont_appraise" or missing value
[ 1048.633434][T14356] loop3: detected capacity change from 0 to 512
[ 1048.654379][T14361] loop0: detected capacity change from 0 to 512
[ 1048.685448][T14361] EXT4-fs (loop0): Ignoring removed oldalloc option
[ 1048.692021][T14361] EXT4-fs (loop0): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1048.723716][   T30] audit: type=1400 audit(1736668866.677:1094): avc:  denied  { ioctl } for  pid=14341 comm="syz.1.3781" path="/dev/loop-control" dev="devtmpfs" ino=111 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[ 1048.727574][T14356] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[ 1048.757299][T14356] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1048.771285][T14356] EXT4-fs (loop3): 1 truncate cleaned up
[ 1048.776812][T14356] EXT4-fs (loop3): mounted filesystem without journal. Opts: nogrpid,jqfmt=vfsv0,debug_want_extra_isize=0x0000000000000068,nomblk_io_submit,nombcache,quota,nolazytime,,errors=continue. Quota mode: writeback.
[ 1048.850211][ T9031] udevd[9031]: inotify_add_watch(7, /dev/loop1, 10) failed: No such file or directory
[ 1048.991372][   T30] audit: type=1400 audit(1736668866.926:1095): avc:  denied  { unmount } for  pid=12497 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[ 1049.712188][T14363] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3787'.
[ 1049.722642][T14363] loop0: detected capacity change from 0 to 128
[ 1049.859635][   T30] audit: type=1400 audit(1736668867.599:1096): avc:  denied  { listen } for  pid=14355 comm="syz.3.3786" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[ 1049.953141][T14363] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1049.963811][T14363] ext4 filesystem being mounted at /152/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1050.027773][   T30] audit: type=1400 audit(1736668867.876:1097): avc:  denied  { bind } for  pid=14382 comm="syz.3.3792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1050.272111][T14388] loop3: detected capacity change from 0 to 128
[ 1050.373011][T14389] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3795'.
[ 1050.685726][T14388] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1050.696402][T14388] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1051.208951][T14380] loop2: detected capacity change from 0 to 40427
[ 1051.234525][T14401] loop0: detected capacity change from 0 to 1024
[ 1051.633614][T14380] F2FS-fs (loop2): fault_injection options not supported
[ 1051.652052][T14380] F2FS-fs (loop2): invalid crc value
[ 1051.677658][T14380] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1051.902920][   T30] audit: type=1400 audit(1736668869.620:1098): avc:  denied  { relabelfrom } for  pid=14407 comm="syz.3.3801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1051.926020][   T30] audit: type=1400 audit(1736668869.620:1099): avc:  denied  { relabelto } for  pid=14407 comm="syz.3.3801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1051.934205][T14380] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1051.962797][   T30] audit: type=1400 audit(1736668869.666:1100): avc:  denied  { remove_name } for  pid=14379 comm="syz.2.3794" name="file1" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1051.963413][T14405] attempt to access beyond end of device
[ 1051.963413][T14405] loop2: rw=2049, want=45104, limit=40427
[ 1051.996800][   T30] audit: type=1400 audit(1736668869.666:1101): avc:  denied  { rename } for  pid=14379 comm="syz.2.3794" name="file1" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1052.103787][T14416] loop0: detected capacity change from 0 to 512
[ 1052.155246][T14416] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[ 1052.176619][T14416] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1052.436741][T14416] EXT4-fs (loop0): 1 truncate cleaned up
[ 1052.461425][T14416] EXT4-fs (loop0): mounted filesystem without journal. Opts: nogrpid,jqfmt=vfsv0,debug_want_extra_isize=0x0000000000000068,nomblk_io_submit,nombcache,quota,nolazytime,,errors=continue. Quota mode: writeback.
[ 1053.568934][T14437] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3809'.
[ 1053.578479][   T30] audit: type=1400 audit(1736668870.533:1102): avc:  denied  { sys_module } for  pid=14415 comm="syz.0.3804" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 1054.084572][T14463] blk_update_request: I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1054.103221][T14463] FAT-fs (loop9): unable to read boot sector
[ 1054.169077][T14476] loop2: detected capacity change from 0 to 512
[ 1054.178665][ T3859] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[ 1054.421085][T14476] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[ 1054.440892][T14476] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1054.469951][T14476] EXT4-fs (loop2): 1 truncate cleaned up
[ 1054.476354][T14476] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,jqfmt=vfsv0,debug_want_extra_isize=0x0000000000000068,nomblk_io_submit,nombcache,quota,nolazytime,,errors=continue. Quota mode: writeback.
[ 1054.893948][ T3859] usb 4-1: config 0 has an invalid interface number: 225 but max is 0
[ 1054.902040][ T3859] usb 4-1: config 0 has no interface number 0
[ 1054.907935][ T3859] usb 4-1: New USB device found, idVendor=1457, idProduct=5118, bcdDevice=cf.79
[ 1054.916819][ T3859] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1054.925720][ T3859] usb 4-1: config 0 descriptor??
[ 1054.970797][ T3859] ftdi_sio 4-1:0.225: FTDI USB Serial Device converter detected
[ 1054.978903][ T3859] usb 4-1: Detected FT-X
[ 1055.915057][ T3859] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1055.934303][ T3859] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1055.966870][ T3859] ftdi_sio 4-1:0.225: GPIO initialisation failed: -71
[ 1056.024429][ T3859] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1056.034854][ T3859] usb 4-1: USB disconnect, device number 57
[ 1056.057735][T14507] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1056.068967][ T3859] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1056.075381][T14507] FAT-fs (loop3): unable to read boot sector
[ 1056.088432][ T3859] ftdi_sio 4-1:0.225: device disconnected
[ 1056.262153][T14525] netlink: 'syz.3.3841': attribute type 32 has an invalid length.
[ 1056.269833][T14525] netlink: 88 bytes leftover after parsing attributes in process `syz.3.3841'.
[ 1057.826124][T14561] loop2: detected capacity change from 0 to 512
[ 1057.877766][T14561] EXT4-fs (loop2): Mount option "nouser_xattr" will be removed by 3.5
[ 1057.877766][T14561] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[ 1057.877766][T14561] 
[ 1057.980919][T14566] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3851'.
[ 1058.293965][T14561] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[ 1058.512380][   T30] audit: type=1400 audit(1736668875.710:1103): avc:  denied  { ioctl } for  pid=14574 comm="syz.1.3858" path="socket:[63273]" dev="sockfs" ino=63273 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1058.543744][T14583] loop0: detected capacity change from 0 to 512
[ 1058.625742][T14583] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[ 1058.639773][T14583] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1058.958080][   T30] audit: type=1400 audit(1736668876.097:1104): avc:  denied  { setattr } for  pid=14576 comm="syz.2.3859" name="fd" dev="proc" ino=63335 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[ 1058.995527][T14583] EXT4-fs (loop0): 1 truncate cleaned up
[ 1059.004978][T14583] EXT4-fs (loop0): mounted filesystem without journal. Opts: nogrpid,jqfmt=vfsv0,debug_want_extra_isize=0x0000000000000068,nomblk_io_submit,nombcache,quota,nolazytime,,errors=continue. Quota mode: writeback.
[ 1059.627316][T14608] loop4: detected capacity change from 0 to 512
[ 1059.653099][T14608] EXT4-fs (loop4): Ignoring removed oldalloc option
[ 1059.659696][T14608] EXT4-fs (loop4): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1060.117561][T14623] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3869'.
[ 1060.136864][T14623] loop4: detected capacity change from 0 to 128
[ 1060.362025][T14624] loop2: detected capacity change from 0 to 512
[ 1061.020468][T14624] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1061.031808][T14624] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.3870: bg 0: block 248: padding at end of block bitmap is not set
[ 1061.047022][T14624] Quota error (device loop2): write_blk: dquota write failed
[ 1061.054609][T14624] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[ 1061.064563][T14624] EXT4-fs error (device loop2): ext4_acquire_dquot:6188: comm syz.2.3870: Failed to acquire dquot type 1
[ 1061.079943][T14624] EXT4-fs (loop2): 1 truncate cleaned up
[ 1061.086192][T14624] EXT4-fs (loop2): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,noload,,errors=continue. Quota mode: writeback.
[ 1061.649019][T14623] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1061.659505][T14623] ext4 filesystem being mounted at /227/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1062.427464][T14653] binder: 14652:14653 ioctl 4018620d 0 returned -22
[ 1062.947428][T14653] binder: 14652:14653 ioctl c0306201 0 returned -14
[ 1062.963749][T14661] xt_TCPMSS: Only works on TCP SYN packets
[ 1063.622852][T14675] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1063.640163][T14675] FAT-fs (loop5): unable to read boot sector
[ 1063.726866][T14679] loop2: detected capacity change from 0 to 512
[ 1063.824550][T14679] EXT4-fs (loop2): Ignoring removed oldalloc option
[ 1063.836396][T14679] EXT4-fs (loop2): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1063.992478][   T30] audit: type=1400 audit(1736668880.757:1105): avc:  denied  { write } for  pid=14680 comm="syz.3.3887" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 1064.211410][T14695] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3886'.
[ 1064.229837][T14695] loop2: detected capacity change from 0 to 128
[ 1064.460110][T14695] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1064.470838][T14695] ext4 filesystem being mounted at /203/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1064.557586][T14699] binder: 14698:14699 ioctl 4018620d 0 returned -22
[ 1064.566320][T14699] binder: 14698:14699 ioctl c0306201 0 returned -14
[ 1064.821277][   T30] audit: type=1400 audit(1736668881.523:1106): avc:  denied  { unlink } for  pid=14714 comm="syz.1.3897" name="#b7" dev="tmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[ 1065.696108][T14740] binder: 14739:14740 ioctl 4018620d 0 returned -22
[ 1065.705769][T14740] binder: 14739:14740 ioctl c0306201 0 returned -14
[ 1066.438942][   T30] audit: type=1400 audit(1736668883.027:1107): avc:  denied  { getopt } for  pid=14776 comm="syz.4.3916" lport=141 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1066.461516][   T30] audit: type=1400 audit(1736668883.027:1108): avc:  denied  { ioctl } for  pid=14776 comm="syz.4.3916" path="socket:[63881]" dev="sockfs" ino=63881 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1066.933956][T14803] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3925'.
[ 1068.475672][T14828] bridge0: port 3(vlan3) entered blocking state
[ 1068.484695][T14828] bridge0: port 3(vlan3) entered disabled state
[ 1068.527396][T14835] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1068.542439][T14835] FAT-fs (loop5): unable to read boot sector
[ 1069.449712][ T3859] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[ 1069.882483][ T3859] usb 4-1: Using ep0 maxpacket: 16
[ 1069.980003][  T313] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[ 1070.012725][ T3859] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11
[ 1070.027833][ T3859] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1070.038500][ T3859] usb 4-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1070.047947][ T3859] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1070.070936][ T3859] usb 4-1: config 0 descriptor??
[ 1070.171898][T14878] kvm [14877]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x0
[ 1070.370329][  T313] usb 5-1: config 0 has an invalid interface number: 225 but max is 0
[ 1070.382543][  T313] usb 5-1: config 0 has no interface number 0
[ 1070.401011][  T313] usb 5-1: New USB device found, idVendor=1457, idProduct=5118, bcdDevice=cf.79
[ 1070.426777][  T313] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1070.456588][  T313] usb 5-1: config 0 descriptor??
[ 1070.513768][  T313] ftdi_sio 5-1:0.225: FTDI USB Serial Device converter detected
[ 1070.528717][  T313] usb 5-1: Detected FT-X
[ 1070.601562][ T3859] cypress 0003:04B4:BCA1.002C: unknown main item tag 0x0
[ 1070.613400][ T3859] cypress 0003:04B4:BCA1.002C: unknown main item tag 0x0
[ 1070.639219][ T3859] cypress 0003:04B4:BCA1.002C: item fetching failed at offset 2/5
[ 1070.821908][  T313] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1070.828954][ T3859] cypress 0003:04B4:BCA1.002C: parse failed
[ 1070.834696][ T3859] cypress: probe of 0003:04B4:BCA1.002C failed with error -22
[ 1070.843233][ T3859] usb 4-1: USB disconnect, device number 58
[ 1070.857935][  T313] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1070.881474][  T313] ftdi_sio 5-1:0.225: GPIO initialisation failed: -71
[ 1070.898952][  T313] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1070.921081][  T313] usb 5-1: USB disconnect, device number 53
[ 1070.932216][  T313] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1070.942458][  T313] ftdi_sio 5-1:0.225: device disconnected
[ 1072.104265][T12520] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[ 1072.648034][T12520] usb 4-1: Using ep0 maxpacket: 16
[ 1073.166656][T12520] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11
[ 1073.177657][T12520] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1073.187532][T12520] usb 4-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1073.196457][T12520] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1073.205892][T12520] usb 4-1: config 0 descriptor??
[ 1073.752429][T12520] cypress 0003:04B4:BCA1.002D: unknown main item tag 0x0
[ 1073.759309][T12520] cypress 0003:04B4:BCA1.002D: unknown main item tag 0x0
[ 1073.766588][T12520] cypress 0003:04B4:BCA1.002D: unknown main item tag 0x0
[ 1073.773684][T12520] cypress 0003:04B4:BCA1.002D: unknown main item tag 0x0
[ 1073.780572][T12520] cypress 0003:04B4:BCA1.002D: unknown main item tag 0x0
[ 1073.788978][T12520] cypress 0003:04B4:BCA1.002D: hidraw0: USB HID v0.04 Device [HID 04b4:bca1] on usb-dummy_hcd.3-1/input0
[ 1073.941492][T15011] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1073.949530][T15011] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1073.970063][ T2028] usb 4-1: USB disconnect, device number 59
[ 1074.244881][T15026] xt_TCPMSS: Only works on TCP SYN packets
[ 1074.354941][T15026] loop4: detected capacity change from 0 to 128
[ 1074.748618][ T2028] usb 2-1: new high-speed USB device number 64 using dummy_hcd
[ 1074.823915][T15041] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1074.832585][T15041] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1075.040845][T15049] loop4: detected capacity change from 0 to 512
[ 1075.117511][T15049] EXT4-fs (loop4): Ignoring removed oldalloc option
[ 1075.124371][T15049] EXT4-fs (loop4): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1075.182222][ T2028] usb 2-1: config 0 has an invalid interface number: 225 but max is 0
[ 1075.190395][ T2028] usb 2-1: config 0 has no interface number 0
[ 1075.201889][ T2028] usb 2-1: New USB device found, idVendor=1457, idProduct=5118, bcdDevice=cf.79
[ 1075.211173][ T2028] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1075.219776][ T2028] usb 2-1: config 0 descriptor??
[ 1075.258720][ T2028] ftdi_sio 2-1:0.225: FTDI USB Serial Device converter detected
[ 1075.329757][T15052] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4019'.
[ 1075.349117][T15052] loop4: detected capacity change from 0 to 128
[ 1075.483507][T15052] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1075.494574][T15052] ext4 filesystem being mounted at /254/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1075.500054][ T2028] usb 2-1: Detected FT-X
[ 1075.561583][ T2028] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1075.583176][ T2028] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1075.605147][ T2028] ftdi_sio 2-1:0.225: GPIO initialisation failed: -71
[ 1075.638737][ T2028] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1075.648830][ T2028] usb 2-1: USB disconnect, device number 64
[ 1075.655724][ T2028] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1075.665309][ T2028] ftdi_sio 2-1:0.225: device disconnected
[ 1076.568550][T15086] xt_TCPMSS: Only works on TCP SYN packets
[ 1076.587298][T15086] loop0: detected capacity change from 0 to 128
[ 1076.623223][T15088] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1076.637796][T15088] FAT-fs (loop5): unable to read boot sector
[ 1076.981878][ T3859] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[ 1077.055328][T15105] loop4: detected capacity change from 0 to 512
[ 1077.107100][T15105] EXT4-fs (loop4): Ignoring removed oldalloc option
[ 1077.114745][T15105] EXT4-fs (loop4): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1077.447332][ T3859] usb 2-1: Using ep0 maxpacket: 16
[ 1077.710320][T15113] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4039'.
[ 1077.752755][T15113] loop4: detected capacity change from 0 to 128
[ 1078.210512][  T313] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1078.250221][T15113] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1078.260771][T15113] ext4 filesystem being mounted at /259/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1078.336020][ T3859] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11
[ 1078.350865][ T3859] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1078.405684][ T3859] usb 2-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1078.415236][ T3859] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1078.433954][ T3859] usb 2-1: config 0 descriptor??
[ 1078.552870][   T30] audit: type=1400 audit(1736668894.164:1109): avc:  denied  { name_bind } for  pid=15116 comm="syz.3.4042" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[ 1078.661138][   T30] audit: type=1400 audit(1736668894.173:1110): avc:  denied  { read } for  pid=15116 comm="syz.3.4042" laddr=ff02::1 lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1078.768180][T15132] loop3: detected capacity change from 0 to 512
[ 1078.856360][T15135] loop4: detected capacity change from 0 to 512
[ 1078.882405][T15132] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.4047: inode #1: comm syz.3.4047: iget: illegal inode #
[ 1078.897635][T15132] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.4047: error while reading EA inode 1 err=-117
[ 1078.910766][T15132] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.4047: inode #1: comm syz.3.4047: iget: illegal inode #
[ 1078.924383][  T313] usb 3-1: config 0 has an invalid interface number: 225 but max is 0
[ 1078.930134][T15132] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.4047: error while reading EA inode 1 err=-117
[ 1078.932853][  T313] usb 3-1: config 0 has no interface number 0
[ 1078.944846][T15132] EXT4-fs (loop3): 1 orphan inode deleted
[ 1078.955477][  T313] usb 3-1: New USB device found, idVendor=1457, idProduct=5118, bcdDevice=cf.79
[ 1078.965564][T15132] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[ 1078.965831][T15135] EXT4-fs (loop4): Mount option "nouser_xattr" will be removed by 3.5
[ 1078.965831][T15135] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[ 1078.965831][T15135] 
[ 1078.988781][  T313] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1079.019798][T15135] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[ 1079.042608][  T313] usb 3-1: config 0 descriptor??
[ 1079.084574][  T313] ftdi_sio 3-1:0.225: FTDI USB Serial Device converter detected
[ 1079.092861][  T313] usb 3-1: Detected FT-X
[ 1079.122326][ T3859] cypress 0003:04B4:BCA1.002E: unknown main item tag 0x0
[ 1079.129511][ T3859] cypress 0003:04B4:BCA1.002E: unknown main item tag 0x0
[ 1079.136557][ T3859] cypress 0003:04B4:BCA1.002E: unknown main item tag 0x0
[ 1079.143620][ T3859] cypress 0003:04B4:BCA1.002E: unknown main item tag 0x0
[ 1079.275655][T15138] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.4047: unexpected EA_INODE flag
[ 1079.473896][ T3859] cypress 0003:04B4:BCA1.002E: unknown main item tag 0x0
[ 1079.481518][ T3859] cypress 0003:04B4:BCA1.002E: hidraw0: USB HID v0.04 Device [HID 04b4:bca1] on usb-dummy_hcd.1-1/input0
[ 1079.492735][  T313] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1079.512574][ T3859] usb 2-1: USB disconnect, device number 65
[ 1079.528126][  T313] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1079.549782][  T313] ftdi_sio 3-1:0.225: GPIO initialisation failed: -71
[ 1079.568271][  T313] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1079.603243][  T313] usb 3-1: USB disconnect, device number 49
[ 1079.623235][T15149] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1079.626616][  T313] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1079.654624][T15149] FAT-fs (loop7): unable to read boot sector
[ 1079.658039][  T313] ftdi_sio 3-1:0.225: device disconnected
[ 1079.673861][   T30] audit: type=1400 audit(1736668895.234:1111): avc:  denied  { nlmsg_write } for  pid=15150 comm="syz.0.4053" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 1080.124282][ T2028] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[ 1080.514425][ T2028] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1080.532915][T15145] loop4: detected capacity change from 0 to 131072
[ 1080.536560][ T2028] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1080.557428][ T2028] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[ 1080.566543][ T2028] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1080.583819][ T2028] usb 1-1: config 0 descriptor??
[ 1080.933147][T15145] F2FS-fs (loop4): invalid crc value
[ 1080.971036][T15145] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1081.043724][T15145] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[ 1081.129044][   T30] audit: type=1400 audit(1736668896.572:1112): avc:  denied  { mounton } for  pid=15144 comm="syz.4.4050" path="/263/mnt/file0" dev="loop4" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1081.158777][T15145] incfs: ino conflict with backing FS 4
[ 1081.168445][   T30] audit: type=1400 audit(1736668896.618:1113): avc:  denied  { append } for  pid=15144 comm="syz.4.4050" name=".pending_reads" dev="incremental-fs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1081.210749][   T30] audit: type=1400 audit(1736668896.655:1114): avc:  denied  { ioctl } for  pid=15144 comm="syz.4.4050" path="/263/mnt/file0/.pending_reads" dev="incremental-fs" ino=2 ioctlcmd=0x671e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1081.242096][T15145] incfs: ino conflict with backing FS 7
[ 1081.247585][   T30] audit: type=1400 audit(1736668896.683:1115): avc:  denied  { setattr } for  pid=15144 comm="syz.4.4050" name="00000000000000000000000000000041" dev="loop4" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1081.263313][T15145] incfs: ino conflict with backing FS 5
[ 1081.272567][   T30] audit: type=1400 audit(1736668896.683:1116): avc:  denied  { link } for  pid=15144 comm="syz.4.4050" name="00000000000000000000000000000041" dev="loop4" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 1081.277668][T15145] incfs: ino conflict with backing FS 6
[ 1081.968460][   T30] audit: type=1400 audit(1736668897.356:1117): avc:  denied  { remove_name } for  pid=11207 comm="syz-executor" name=".index" dev="loop4" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1081.994333][ T2028] pyra 0003:1E7D:2CF6.002F: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.0-1/input0
[ 1081.994447][   T30] audit: type=1400 audit(1736668897.356:1118): avc:  denied  { rmdir } for  pid=11207 comm="syz-executor" name=".index" dev="loop4" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[ 1082.423397][  T313] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1082.454999][ T2028] pyra 0003:1E7D:2CF6.002F: couldn't init struct pyra_device
[ 1082.462261][ T2028] pyra 0003:1E7D:2CF6.002F: couldn't install mouse
[ 1082.471951][ T2028] pyra: probe of 0003:1E7D:2CF6.002F failed with error -71
[ 1082.489149][ T2028] usb 1-1: USB disconnect, device number 53
[ 1082.519319][ T6484] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[ 1082.692714][  T313] usb 3-1: Using ep0 maxpacket: 16
[ 1082.858418][T15224] loop4: detected capacity change from 0 to 256
[ 1082.898911][  T313] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11
[ 1082.913330][  T313] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1082.925841][  T313] usb 3-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1082.931255][ T6484] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1082.935174][  T313] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1082.956200][T15225] fuse: Bad value for 'fd'
[ 1082.986941][ T6484] usb 4-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[ 1082.989033][  T313] usb 3-1: config 0 descriptor??
[ 1083.018706][ T6484] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1083.049377][ T6484] usb 4-1: config 0 descriptor??
[ 1083.529050][T15233] syz.4.4079[15233] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1083.529345][T15233] syz.4.4079[15233] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1083.534043][T15232] blk_update_request: I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1083.565606][T15232] FAT-fs (loop1): unable to read boot sector
[ 1083.565927][  T313] cypress 0003:04B4:BCA1.0030: unknown main item tag 0x0
[ 1083.581086][  T313] cypress 0003:04B4:BCA1.0030: unknown main item tag 0x0
[ 1083.601699][  T313] cypress 0003:04B4:BCA1.0030: unknown main item tag 0x0
[ 1083.637916][  T313] cypress 0003:04B4:BCA1.0030: unknown main item tag 0x0
[ 1083.658442][ T6484] hid (null): bogus close delimiter
[ 1083.661170][  T313] cypress 0003:04B4:BCA1.0030: unknown main item tag 0x0
[ 1083.667231][ T6484] lg-g15 0003:046D:C222.0031: bogus close delimiter
[ 1083.682837][  T313] cypress 0003:04B4:BCA1.0030: hidraw0: USB HID v0.04 Device [HID 04b4:bca1] on usb-dummy_hcd.2-1/input0
[ 1083.810797][  T313] usb 3-1: USB disconnect, device number 50
[ 1083.819822][ T6484] lg-g15 0003:046D:C222.0031: item 0 1 2 10 parsing failed
[ 1083.827061][ T6484] lg-g15: probe of 0003:046D:C222.0031 failed with error -22
[ 1083.941558][  T334] usb 4-1: USB disconnect, device number 60
[ 1084.085717][T15248] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1084.503001][ T6484] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[ 1084.540024][T15261] mmap: syz.2.4091 (15261) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[ 1084.988671][T15271] loop2: detected capacity change from 0 to 512
[ 1085.066259][ T6484] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11
[ 1085.077424][ T6484] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1085.087232][ T6484] usb 1-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 1085.087695][T15271] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1085.096711][ T6484] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1085.116908][T15271] ext4 filesystem being mounted at /250/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1085.176733][T15271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #2: comm syz.2.4094: corrupted inode contents
[ 1085.188667][T15271] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm syz.2.4094: mark_inode_dirty error
[ 1085.192923][ T6484] usb 1-1: config 0 descriptor??
[ 1085.200323][T15271] EXT4-fs error (device loop2): ext4_do_update_inode:5205: inode #2: comm syz.2.4094: corrupted inode contents
[ 1085.216503][T15271] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.4094: mark_inode_dirty error
[ 1085.680499][   T30] kauditd_printk_skb: 1 callbacks suppressed
[ 1085.681386][   T30] audit: type=1400 audit(1736668900.577:1120): avc:  denied  { mount } for  pid=15282 comm="syz.4.4098" name="/" dev="cgroup" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 1085.742890][T15249] loop0: detected capacity change from 0 to 2048
[ 1085.876677][T15249] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1085.890267][T15249] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1086.150027][  T334] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[ 1086.209458][ T6484] hid-steam 0003:28DE:1102.0032: unknown main item tag 0x0
[ 1086.217015][   T30] audit: type=1400 audit(1736668901.278:1121): avc:  denied  { unmount } for  pid=11207 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 1086.251898][ T6484] hid-steam 0003:28DE:1102.0032: : USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.0-1/input0
[ 1086.272556][ T6484] hid-steam 0003:28DE:1102.0033: unknown main item tag 0x0
[ 1086.282720][ T6484] hid-steam 0003:28DE:1102.0033: hidraw0: USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.0-1/input0
[ 1086.377553][ T6484] hid-steam 0003:28DE:1102.0032: Steam Controller 'XXXXXXXXXX' connected
[ 1086.387072][ T6484] input: Steam Controller as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:28DE:1102.0032/input/input35
[ 1086.402163][   T30] audit: type=1400 audit(1736668901.444:1122): avc:  denied  { read } for  pid=86 comm="acpid" name="event3" dev="devtmpfs" ino=1892 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1086.474626][   T30] audit: type=1400 audit(1736668901.444:1123): avc:  denied  { open } for  pid=86 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1892 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1086.475093][  T334] usb 3-1: Using ep0 maxpacket: 16
[ 1086.506758][   T30] audit: type=1400 audit(1736668901.444:1124): avc:  denied  { ioctl } for  pid=86 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=1892 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1086.681264][  T334] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11
[ 1086.708182][  T334] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1086.735213][  T334] usb 3-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1086.744121][  T334] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1086.779846][  T334] usb 3-1: config 0 descriptor??
[ 1087.070365][ T2757] usb 1-1: USB disconnect, device number 54
[ 1087.087148][ T2757] hid-steam 0003:28DE:1102.0032: Steam Controller 'XXXXXXXXXX' disconnected
[ 1087.197441][T15345] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4120'.
[ 1087.414365][  T334] cypress 0003:04B4:BCA1.0034: unknown main item tag 0x0
[ 1087.421342][  T334] cypress 0003:04B4:BCA1.0034: unknown main item tag 0x0
[ 1087.428251][  T334] cypress 0003:04B4:BCA1.0034: item fetching failed at offset 2/5
[ 1087.447038][  T334] cypress 0003:04B4:BCA1.0034: parse failed
[ 1087.467710][  T334] cypress: probe of 0003:04B4:BCA1.0034 failed with error -22
[ 1087.585389][ T2757] usb 3-1: USB disconnect, device number 51
[ 1087.973482][T15354] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1087.992398][T15354] FAT-fs (loop7): unable to read boot sector
[ 1088.038833][T15358] loop3: detected capacity change from 0 to 512
[ 1088.091307][   T30] audit: type=1400 audit(1736668903.003:1125): avc:  denied  { create } for  pid=15359 comm="syz.4.4126" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[ 1088.179106][T15358] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1088.197320][T15358] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1088.225905][T15358] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:164: inode #12: comm syz.3.4125: inline data xattr refers to an external xattr inode
[ 1088.242403][T15358] EXT4-fs (loop3): Remounting filesystem read-only
[ 1088.265157][T15358] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.4125: couldn't read orphan inode 12 (err -117)
[ 1088.286819][   T30] audit: type=1400 audit(1736668903.188:1126): avc:  denied  { ioctl } for  pid=15371 comm="syz.4.4131" path="socket:[67017]" dev="sockfs" ino=67017 ioctlcmd=0x48e4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1088.315079][T15358] EXT4-fs (loop3): Remounting filesystem read-only
[ 1088.324431][ T1958] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1088.327179][T15358] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable=0x0000000000000000,nolazytime,sysvgroups,prjquota,norecovery,barrier=0x000000000000000b,errors=remount-ro,auto_da_alloc,test_dummy_encryption,. Quota mode: writeback.
[ 1088.760361][T15385] EXT4-fs error (device loop3): ext4_add_entry:2486: inode #2: comm syz.3.4125: Directory hole found for htree leaf block 0
[ 1088.773513][T15385] EXT4-fs (loop3): Remounting filesystem read-only
[ 1088.907298][T15395] loop3: detected capacity change from 0 to 1024
[ 1089.097948][T15395] EXT4-fs (loop3): revision level too high, forcing read-only mode
[ 1089.114859][T15395] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1089.131108][T15395] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[ 1089.153193][T15395] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #3: comm syz.3.4137: mark_inode_dirty error
[ 1089.165634][T15395] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:476: comm syz.3.4137: Invalid block bitmap block 3 in block_group 0
[ 1089.185446][T15395] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[ 1089.195908][T15395] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #3: comm syz.3.4137: mark_inode_dirty error
[ 1089.209381][T15407] loop0: detected capacity change from 0 to 256
[ 1089.216459][T15395] Quota error (device loop3): write_blk: dquota write failed
[ 1089.223893][T15395] EXT4-fs error (device loop3): ext4_map_blocks:629: inode #3: block 1: comm syz.3.4137: lblock 6 mapped to illegal pblock 1 (length 1)
[ 1089.238505][T15395] Quota error (device loop3): write_blk: dquota write failed
[ 1089.245974][T15395] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[ 1089.256317][T15395] EXT4-fs error (device loop3): ext4_map_blocks:629: inode #3: block 48: comm syz.3.4137: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1089.260465][T15407] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[ 1089.290330][T15395] EXT4-fs error (device loop3): ext4_acquire_dquot:6188: comm syz.3.4137: Failed to acquire dquot type 0
[ 1089.302479][T15395] EXT4-fs error (device loop3): ext4_map_blocks:629: inode #3: block 49: comm syz.3.4137: lblock 1 mapped to illegal pblock 49 (length 1)
[ 1089.343242][T15395] EXT4-fs error (device loop3): ext4_acquire_dquot:6188: comm syz.3.4137: Failed to acquire dquot type 0
[ 1089.355890][T15395] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[ 1089.368127][T15395] EXT4-fs error (device loop3): ext4_evict_inode:283: inode #15: comm syz.3.4137: mark_inode_dirty error
[ 1089.380665][T15395] EXT4-fs warning (device loop3): ext4_evict_inode:286: couldn't mark inode dirty (err -117)
[ 1089.391148][T15395] EXT4-fs (loop3): 1 orphan inode deleted
[ 1089.397083][T15395] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000008,data_err=abort,minixdf,errors=remount-ro,errors=continue,noblock_validity,barrier,journal_dev=0x0000000000000f35,. Quota mode: none.
[ 1089.759051][ T2757] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[ 1090.051601][ T2757] usb 4-1: Using ep0 maxpacket: 16
[ 1090.203395][ T2757] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 129, changing to 11
[ 1090.228030][ T2757] usb 4-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1090.251971][ T2757] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1090.262894][ T2757] usb 4-1: New USB device found, idVendor=056a, idProduct=0029, bcdDevice= 0.00
[ 1090.282022][ T2757] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1090.302682][ T2757] usb 4-1: config 0 descriptor??
[ 1090.543929][ T6484] Bluetooth: hci0: command 0x1003 tx timeout
[ 1090.549821][T12933] Bluetooth: hci0: sending frame failed (-49)
[ 1090.781449][T15440] xt_TCPMSS: Only works on TCP SYN packets
[ 1090.808630][T15440] loop1: detected capacity change from 0 to 128
[ 1090.999968][ T2757] wacom 0003:056A:0029.0035: unknown main item tag 0x0
[ 1091.010314][ T2757] wacom 0003:056A:0029.0035: unknown main item tag 0x0
[ 1091.026465][ T2757] wacom 0003:056A:0029.0035: unknown main item tag 0x0
[ 1091.038151][ T2757] wacom 0003:056A:0029.0035: unknown main item tag 0x0
[ 1091.045336][ T2757] wacom 0003:056A:0029.0035: unknown main item tag 0x0
[ 1091.056864][ T2757] wacom 0003:056A:0029.0035: Unknown device_type for 'HID 056a:0029'. Assuming pen.
[ 1091.071911][ T2757] wacom 0003:056A:0029.0035: hidraw0: USB HID v0.40 Device [HID 056a:0029] on usb-dummy_hcd.3-1/input0
[ 1091.087680][ T2757] input: Wacom Intuos5 S Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:0029.0035/input/input36
[ 1091.258085][ T2757] usb 4-1: USB disconnect, device number 61
[ 1091.637473][T15449] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1091.644567][T15449] IPv6: NLM_F_CREATE should be set when creating new route
[ 1091.935095][T15453] syz.0.4157[15453] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1091.935191][T15453] syz.0.4157[15453] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1091.986848][T15456] binder: 15455:15456 ioctl 4018620d 0 returned -22
[ 1092.017258][T15459] loop0: detected capacity change from 0 to 512
[ 1092.047918][T15456] binder: 15455:15456 ioctl c0306201 0 returned -14
[ 1092.079868][T15459] EXT4-fs (loop0): Ignoring removed oldalloc option
[ 1092.094203][T15459] EXT4-fs (loop0): Unrecognized mount option "smackfsdef=max_b" or missing value
[ 1092.345960][T15464] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4161'.
[ 1092.365578][T15464] loop0: detected capacity change from 0 to 128
[ 1092.539359][T15464] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1092.550001][T15464] ext4 filesystem being mounted at /230/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1092.617212][   T30] kauditd_printk_skb: 10 callbacks suppressed
[ 1092.617230][   T30] audit: type=1400 audit(1736668907.174:1134): avc:  denied  { bind } for  pid=15466 comm="syz.2.4163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1092.644310][   T30] audit: type=1400 audit(1736668907.202:1135): avc:  denied  { setopt } for  pid=15466 comm="syz.2.4163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1092.674826][  T334] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[ 1092.720481][T15470] loop2: detected capacity change from 0 to 512
[ 1092.789996][T15473] blk_update_request: I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1092.796650][T15470] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.4164: inode #1: comm syz.2.4164: iget: illegal inode #
[ 1092.801182][ T2757] Bluetooth: hci0: command 0x1001 tx timeout
[ 1092.813771][T15473] FAT-fs (loop3): unable to read boot sector
[ 1092.819776][T12933] Bluetooth: hci0: sending frame failed (-49)
[ 1092.825640][T15470] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.4164: error while reading EA inode 1 err=-117
[ 1092.844516][T15470] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.4164: inode #1: comm syz.2.4164: iget: illegal inode #
[ 1092.857771][T15470] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.4164: error while reading EA inode 1 err=-117
[ 1092.870230][T15470] EXT4-fs (loop2): 1 orphan inode deleted
[ 1092.875898][T15470] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[ 1093.022392][  T334] usb 4-1: Using ep0 maxpacket: 8
[ 1093.125050][T15485] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.4164: unexpected EA_INODE flag
[ 1093.142357][T15485] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.4164: unexpected EA_INODE flag
[ 1093.155706][T15485] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.4164: unexpected EA_INODE flag
[ 1093.520751][T15495] xt_TCPMSS: Only works on TCP SYN packets
[ 1093.686461][  T334] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1093.696474][  T334] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1093.705759][  T334] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1093.714864][  T334] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1093.724280][  T334] usb 4-1: config 0 descriptor??
[ 1093.801539][ T2757] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[ 1093.848569][T15498] loop2: detected capacity change from 0 to 512
[ 1093.902145][T15498] EXT4-fs (loop2): Mount option "nouser_xattr" will be removed by 3.5
[ 1093.902145][T15498] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[ 1093.902145][T15498] 
[ 1093.921325][T15498] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[ 1094.094106][ T2757] usb 1-1: Using ep0 maxpacket: 16
[ 1094.220200][T15500] ==================================================================
[ 1094.228114][T15500] BUG: KASAN: slab-out-of-bounds in tc_setup_flow_action+0xb9d/0x3430
[ 1094.236094][T15500] Read of size 8 at addr ffff88810da1aac0 by task syz.3.4162/15500
[ 1094.243816][T15500] 
[ 1094.245988][T15500] CPU: 1 PID: 15500 Comm: syz.3.4162 Not tainted 5.15.175-syzkaller-00803-g19092c8155b4 #0
[ 1094.255791][T15500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1094.265699][T15500] Call Trace:
[ 1094.268816][T15500]  <TASK>
[ 1094.271590][T15500]  dump_stack_lvl+0x151/0x1c0
[ 1094.276104][T15500]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 1094.281573][T15500]  ? panic+0x760/0x760
[ 1094.285480][T15500]  print_address_description+0x87/0x3b0
[ 1094.290958][T15500]  kasan_report+0x179/0x1c0
[ 1094.295372][T15500]  ? tc_setup_flow_action+0xb9d/0x3430
[ 1094.300666][T15500]  ? tc_setup_flow_action+0xb9d/0x3430
[ 1094.305962][T15500]  __asan_report_load8_noabort+0x14/0x20
[ 1094.311430][T15500]  tc_setup_flow_action+0xb9d/0x3430
[ 1094.316551][T15500]  mall_replace_hw_filter+0x394/0xc20
[ 1094.321768][T15500]  ? mall_set_parms+0x4b0/0x4b0
[ 1094.326448][T15500]  ? tcf_exts_destroy+0xb0/0xb0
[ 1094.331128][T15500]  ? preempt_schedule_irq+0xe7/0x140
[ 1094.336342][T15500]  ? irqentry_exit_cond_resched+0x2a/0x30
[ 1094.341893][T15500]  ? irqentry_exit+0x30/0x40
[ 1094.346317][T15500]  ? sysvec_reschedule_ipi+0x8c/0x160
[ 1094.351530][T15500]  ? mall_set_parms+0x1c3/0x4b0
[ 1094.356221][T15500]  mall_change+0x56e/0x780
[ 1094.360471][T15500]  ? mall_get+0xb0/0xb0
[ 1094.364458][T15500]  ? tcf_chain_tp_insert_unique+0xa90/0xbb0
[ 1094.370192][T15500]  ? nla_strcmp+0xed/0x120
[ 1094.374437][T15500]  ? mall_get+0xb0/0xb0
[ 1094.378441][T15500]  tc_new_tfilter+0x151a/0x1c00
[ 1094.383125][T15500]  ? tcf_gate_entry_destructor+0x20/0x20
[ 1094.388590][T15500]  ? security_capable+0x87/0xb0
[ 1094.393273][T15500]  ? ns_capable+0x89/0xe0
[ 1094.397439][T15500]  ? netlink_net_capable+0x125/0x160
[ 1094.402560][T15500]  ? tcf_gate_entry_destructor+0x20/0x20
[ 1094.408030][T15500]  rtnetlink_rcv_msg+0x776/0xc40
[ 1094.412802][T15500]  ? compat_start_thread+0x20/0x20
[ 1094.417750][T15500]  ? rtnetlink_bind+0x80/0x80
[ 1094.422264][T15500]  ? __this_cpu_preempt_check+0x13/0x20
[ 1094.427643][T15500]  ? tracing_record_taskinfo_sched_switch+0x84/0x390
[ 1094.434156][T15500]  ? _raw_spin_unlock+0x4d/0x70
[ 1094.438841][T15500]  ? finish_task_switch+0x167/0x7b0
[ 1094.443874][T15500]  ? __schedule+0xcd4/0x1590
[ 1094.448312][T15500]  ? __kasan_check_write+0x14/0x20
[ 1094.453449][T15500]  ? _raw_spin_lock+0xa4/0x1b0
[ 1094.458025][T15500]  ? _raw_spin_trylock_bh+0x190/0x190
[ 1094.463243][T15500]  ? __kasan_check_read+0x11/0x20
[ 1094.468090][T15500]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 1094.473846][T15500]  ? rcu_preempt_deferred_qs_irqrestore+0x709/0x9f0
[ 1094.480244][T15500]  netlink_rcv_skb+0x1cf/0x410
[ 1094.484843][T15500]  ? rtnetlink_bind+0x80/0x80
[ 1094.489357][T15500]  ? netlink_ack+0xb10/0xb10
[ 1094.493796][T15500]  rtnetlink_rcv+0x1c/0x20
[ 1094.498040][T15500]  netlink_unicast+0x8df/0xac0
[ 1094.502635][T15500]  ? netlink_detachskb+0x90/0x90
[ 1094.507408][T15500]  ? security_netlink_send+0x7b/0xa0
[ 1094.512528][T15500]  netlink_sendmsg+0xa0a/0xd20
[ 1094.517137][T15500]  ? netlink_getsockopt+0x560/0x560
[ 1094.522166][T15500]  ? security_socket_sendmsg+0x82/0xb0
[ 1094.527460][T15500]  ? netlink_getsockopt+0x560/0x560
[ 1094.532493][T15500]  ____sys_sendmsg+0x59e/0x8f0
[ 1094.537092][T15500]  ? __sys_sendmsg_sock+0x40/0x40
[ 1094.541954][T15500]  ? import_iovec+0xe5/0x120
[ 1094.546382][T15500]  ___sys_sendmsg+0x252/0x2e0
[ 1094.550898][T15500]  ? __check_object_size+0x73/0x3d0
[ 1094.555929][T15500]  ? __sys_sendmsg+0x260/0x260
[ 1094.560533][T15500]  ? __switch_to+0x62a/0x1190
[ 1094.565052][T15500]  ? __fdget+0x1bc/0x240
[ 1094.569124][T15500]  __se_sys_sendmsg+0x19a/0x260
[ 1094.573807][T15500]  ? __x64_sys_sendmsg+0x90/0x90
[ 1094.578580][T15500]  ? __kasan_check_write+0x14/0x20
[ 1094.583525][T15500]  ? switch_fpu_return+0x15f/0x2e0
[ 1094.588474][T15500]  __x64_sys_sendmsg+0x7b/0x90
[ 1094.593075][T15500]  x64_sys_call+0x16a/0x9a0
[ 1094.597414][T15500]  do_syscall_64+0x3b/0xb0
[ 1094.601665][T15500]  ? clear_bhb_loop+0x35/0x90
[ 1094.606297][T15500]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1094.612025][T15500] RIP: 0033:0x7fc473797d29
[ 1094.616276][T15500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1094.635819][T15500] RSP: 002b:00007fc471dc7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1094.644147][T15500] RAX: ffffffffffffffda RBX: 00007fc473988160 RCX: 00007fc473797d29
[ 1094.651965][T15500] RDX: 0000000000000000 RSI: 0000000020000580 RDI: 0000000000000007
[ 1094.659778][T15500] RBP: 00007fc473813b08 R08: 0000000000000000 R09: 0000000000000000
[ 1094.667668][T15500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1094.675475][T15500] R13: 0000000000000000 R14: 00007fc473988160 R15: 00007ffe32a8f068
[ 1094.683297][T15500]  </TASK>
[ 1094.686250][T15500] 
[ 1094.688409][T15500] Allocated by task 15500:
[ 1094.692751][T15500]  ____kasan_kmalloc+0xdb/0x110
[ 1094.697436][T15500]  __kasan_kmalloc+0x9/0x10
[ 1094.701778][T15500]  __kmalloc+0x13f/0x2c0
[ 1094.705865][T15500]  tcf_idr_create+0x5f/0x780
[ 1094.710280][T15500]  tcf_idr_create_from_flags+0x5f/0x70
[ 1094.715579][T15500]  tcf_gact_init+0x3cd/0x6e0
[ 1094.720000][T15500]  tcf_action_init_1+0x50f/0x7f0
[ 1094.724775][T15500]  tcf_action_init+0x306/0x840
[ 1094.729374][T15500]  tcf_exts_validate+0x236/0x520
[ 1094.734158][T15500]  mall_set_parms+0x44/0x4b0
[ 1094.738575][T15500]  mall_change+0x495/0x780
[ 1094.742832][T15500]  tc_new_tfilter+0x151a/0x1c00
[ 1094.747516][T15500]  rtnetlink_rcv_msg+0x776/0xc40
[ 1094.752292][T15500]  netlink_rcv_skb+0x1cf/0x410
[ 1094.756894][T15500]  rtnetlink_rcv+0x1c/0x20
[ 1094.761157][T15500]  netlink_unicast+0x8df/0xac0
[ 1094.765741][T15500]  netlink_sendmsg+0xa0a/0xd20
[ 1094.770350][T15500]  ____sys_sendmsg+0x59e/0x8f0
[ 1094.774942][T15500]  ___sys_sendmsg+0x252/0x2e0
[ 1094.779457][T15500]  __se_sys_sendmsg+0x19a/0x260
[ 1094.784141][T15500]  __x64_sys_sendmsg+0x7b/0x90
[ 1094.788830][T15500]  x64_sys_call+0x16a/0x9a0
[ 1094.793170][T15500]  do_syscall_64+0x3b/0xb0
[ 1094.797422][T15500]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1094.803152][T15500] 
[ 1094.805328][T15500] Last potentially related work creation:
[ 1094.810877][T15500]  kasan_save_stack+0x3b/0x60
[ 1094.815454][T15500]  __kasan_record_aux_stack+0xd3/0xf0
[ 1094.820771][T15500]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 1094.826494][T15500]  kvfree_call_rcu+0xb1/0x8b0
[ 1094.831092][T15500]  ip_ma_put+0xea/0x130
[ 1094.835173][T15500]  __ip_mc_dec_group+0x4b2/0x590
[ 1094.839944][T15500]  ip_mc_down+0x1a4/0x240
[ 1094.844109][T15500]  inetdev_event+0x2cf/0x10a0
[ 1094.848627][T15500]  raw_notifier_call_chain+0x8c/0xf0
[ 1094.853832][T15500]  dev_close_many+0x37c/0x530
[ 1094.858351][T15500]  unregister_netdevice_many+0x492/0x17c0
[ 1094.863898][T15500]  default_device_exit_batch+0x38a/0x3f0
[ 1094.869369][T15500]  cleanup_net+0x6ce/0xc00
[ 1094.873620][T15500]  process_one_work+0x6bb/0xc10
[ 1094.878394][T15500]  worker_thread+0xad5/0x12a0
[ 1094.882906][T15500]  kthread+0x421/0x510
[ 1094.886816][T15500]  ret_from_fork+0x1f/0x30
[ 1094.891066][T15500] 
[ 1094.893237][T15500] The buggy address belongs to the object at ffff88810da1aa00
[ 1094.893237][T15500]  which belongs to the cache kmalloc-192 of size 192
[ 1094.907126][T15500] The buggy address is located 0 bytes to the right of
[ 1094.907126][T15500]  192-byte region [ffff88810da1aa00, ffff88810da1aac0)
[ 1094.920577][T15500] The buggy address belongs to the page:
[ 1094.926492][T15500] page:ffffea0004368680 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10da1a
[ 1094.936648][T15500] flags: 0x4000000000000200(slab|zone=1)
[ 1094.942120][T15500] raw: 4000000000000200 ffffea0004368540 0000000900000009 ffff888100042c00
[ 1094.950540][T15500] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 1094.958956][T15500] page dumped because: kasan: bad access detected
[ 1094.965208][T15500] page_owner tracks the page as allocated
[ 1094.970760][T15500] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 102, ts 4828379423, free_ts 4828357071
[ 1094.986379][T15500]  post_alloc_hook+0x1a3/0x1b0
[ 1094.990978][T15500]  prep_new_page+0x1b/0x110
[ 1094.995317][T15500]  get_page_from_freelist+0x3550/0x35d0
[ 1095.000697][T15500]  __alloc_pages+0x27e/0x8f0
[ 1095.005123][T15500]  new_slab+0x9a/0x4e0
[ 1095.009030][T15500]  ___slab_alloc+0x39e/0x830
[ 1095.013455][T15500]  __slab_alloc+0x4a/0x90
[ 1095.017629][T15500]  kmem_cache_alloc_trace+0x147/0x270
[ 1095.022832][T15500]  kernfs_fop_open+0x324/0xab0
[ 1095.027530][T15500]  do_dentry_open+0x81c/0xfd0
[ 1095.032041][T15500]  vfs_open+0x73/0x80
[ 1095.035858][T15500]  path_openat+0x26f0/0x2f40
[ 1095.040289][T15500]  do_filp_open+0x21c/0x460
[ 1095.044676][T15500]  do_sys_openat2+0x13f/0x820
[ 1095.049138][T15500]  __x64_sys_openat+0x243/0x290
[ 1095.053826][T15500]  x64_sys_call+0x6bf/0x9a0
[ 1095.058166][T15500] page last free stack trace:
[ 1095.062678][T15500]  free_unref_page_prepare+0x7c8/0x7d0
[ 1095.067972][T15500]  free_unref_page+0xe8/0x750
[ 1095.072485][T15500]  __free_pages+0x61/0xf0
[ 1095.076652][T15500]  free_pages+0x7c/0x90
[ 1095.080643][T15500]  selinux_genfs_get_sid+0x24d/0x2a0
[ 1095.085765][T15500]  inode_doinit_with_dentry+0x8d2/0x1070
[ 1095.091234][T15500]  selinux_d_instantiate+0x27/0x40
[ 1095.096185][T15500]  security_d_instantiate+0x9f/0x100
[ 1095.101303][T15500]  d_splice_alias+0x6d/0x390
[ 1095.105743][T15500]  kernfs_iop_lookup+0x29e/0x2f0
[ 1095.110586][T15500]  path_openat+0x1194/0x2f40
[ 1095.115015][T15500]  do_filp_open+0x21c/0x460
[ 1095.119354][T15500]  do_sys_openat2+0x13f/0x820
[ 1095.123876][T15500]  __x64_sys_openat+0x243/0x290
[ 1095.128565][T15500]  x64_sys_call+0x6bf/0x9a0
[ 1095.132906][T15500]  do_syscall_64+0x3b/0xb0
[ 1095.137151][T15500] 
[ 1095.139319][T15500] Memory state around the buggy address:
[ 1095.144796][T15500]  ffff88810da1a980: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1095.152807][T15500]  ffff88810da1aa00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1095.160758][T15500] >ffff88810da1aa80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 1095.168664][T15500]                                            ^
[ 1095.174649][T15500]  ffff88810da1ab00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1095.183066][T15500]  ffff88810da1ab80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1095.190960][T15500] ==================================================================
[ 1095.198866][T15500] Disabling lock debugging due to kernel taint
[ 1095.259393][ T6484] Bluetooth: hci0: command 0x1009 tx timeout
[ 1095.373102][ T2757] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11
[ 1095.405163][ T2757] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1095.414847][ T2757] usb 1-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1095.423929][ T2757] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1095.432657][ T2757] usb 1-1: config 0 descriptor??
[ 1095.948149][ T2757] cypress 0003:04B4:BCA1.0036: unknown main item tag 0x0
[ 1095.955086][ T2757] cypress 0003:04B4:BCA1.0036: unknown main item tag 0x0
[ 1095.961981][ T2757] cypress 0003:04B4:BCA1.0036: item fetching failed at offset 2/5
[ 1095.969816][ T2757] cypress 0003:04B4:BCA1.0036: parse failed
[ 1095.975652][ T2757] cypress: probe of 0003:04B4:BCA1.0036 failed with error -22
[ 1096.165619][  T313] usb 1-1: USB disconnect, device number 55
[ 1096.621955][ T2757] usb 4-1: USB disconnect, device number 62