last executing test programs:

11.365246772s ago: executing program 2:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000980)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="011f00000000000000000d0000000c00018008000100", @ANYRESOCT], 0x20}}, 0x0)

11.336306606s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB='\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x0)
ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f00000002c0)={0x3f})
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x1e, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
write$uinput_user_dev(r1, &(0x7f0000001740)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r1, 0x5501)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
socket$packet(0x11, 0x0, 0x300)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket(0x25, 0x800, 0x87)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000000000000000000000000030850000002c00000095000000000000002b4003fe37a077ae55f52c0d80a2649baca85309be96d5a45bbbdb5ff7ffffffd075b3eee14473f51be98db7efbb059842ba4470e8e04acb807fbbabc68abdcce9f672b6bb61c302dfd5c11071adac29fd64d33a3502fbeb1ed99dd0e792f24c420bfcc2635421d339ad521d6953b1137850d9e9ebf65ee988ea2dbee528678eb47efb7b3f19046c6f1bd1bf56e5853ed96137f95b3a11954ed1c8a8676468cf2405e48723d4b1ff"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106}, 0x18)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x4000, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r4}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="340000001000010800"/20, @ANYRES32=0x0, @ANYBLOB], 0x34}}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={0x1, <r6=>0xffffffffffffffff}, 0x4)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x7, 0x9, 0x1, r6}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r7, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)

11.298730082s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x17, 0x0, 0x4, 0xfe, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000004c0)='./file0\x00', 0x100040, 0x0, 0x1, 0x0, &(0x7f0000000000))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)

11.014789286s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
quotactl$Q_GETFMT(0xffffffff80000400, &(0x7f0000000140)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(&(0x7f00000025c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
tee(r4, r4, 0x7, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r5, 0x400448e0, &(0x7f00000003c0))

5.616787035s ago: executing program 1:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x1}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000040)=""/40, 0x28}, {&(0x7f0000003300)=""/107, 0x6b}], 0x3}}], 0x4000000000000a1, 0x2, 0x0)
recvmsg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000000)=""/55, 0x37}], 0x1}, 0x0)

5.608471217s ago: executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x0)
unshare(0x60600)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
openat(r0, &(0x7f0000000140)='./file0/file0\x00', 0x84a40, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
statx(r1, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280))

5.598754128s ago: executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='ext4_allocate_blocks\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='ext4_allocate_blocks\x00', r2}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)

5.58797384s ago: executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x1a)

5.582918921s ago: executing program 1:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x61, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001d80)=[{{&(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000380)=""/25, 0x19}, {&(0x7f00000003c0)=""/165, 0xa5}, {&(0x7f0000000600)=""/161, 0xa1}, {&(0x7f0000000540)=""/76, 0x4c}], 0x4}, 0x1}, {{0x0, 0x0, &(0x7f0000001d00)=[{&(0x7f0000000a40)=""/254, 0xfe}, {0x0}, {&(0x7f0000000b80)=""/55, 0x37}, {0x0}, {0x0}], 0x5}}], 0x2, 0x0, &(0x7f0000001e80)={0x0, 0x989680})
socketpair(0x1, 0x80001, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000180)={'syztnl0\x00', &(0x7f0000000100)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @dev}})
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x64, 0x0, 0x0)
rt_sigqueueinfo(r2, 0x0, &(0x7f0000000240)={0x0, 0x4, 0x6})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newlink={0x44, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_ROUTER={0x5, 0x16, 0x3}, @IFLA_BR_AGEING_TIME={0x8}]}}}]}, 0x44}}, 0x0)

4.907554685s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000075c0)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

4.887078008s ago: executing program 0:
r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x200}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c}, 0x0, 0x0, 0x0, 0x0})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x0, 0x0, 0x0)

4.708917065s ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='ext4_remove_blocks\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000e21800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x9, 0x1, 0xfff, 0xa, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, r2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='ext4_remove_blocks\x00', r3}, 0x10)
write$cgroup_int(r2, &(0x7f0000000100), 0x1001)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c340000000000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
syz_usb_control_io$hid(r4, &(0x7f00000001c0)={0x24, &(0x7f0000000dc0)=ANY=[@ANYBLOB="00020c0000000c0002"], 0x0, 0x0, 0x0}, 0x0)
ptrace(0x10, 0x1)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
socket$inet6_tcp(0xa, 0x1, 0x0)
recvmsg(r8, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000540)=""/254, 0xfe}], 0x1}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x3, 0x48}, 0x48)

4.230409059s ago: executing program 4:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="1201000064172f2057155081ed29010203010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000008b00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f0000000440)={0x0, 0x0, 0x1, "c9"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.159593508s ago: executing program 4:
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = socket(0x1e, 0x1, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
r4 = open(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x2d)
sendfile(r2, 0xffffffffffffffff, 0x0, 0xe065)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
open(0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000000100)=[{{&(0x7f0000000180)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x1}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1000000}}], 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f0000000b00), &(0x7f0000000300)=r4}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='rtc_irq_set_state\x00', r9}, 0x10)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r11, 0xae60)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.118298304s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
getxattr(0x0, 0x0, 0x0, 0x0)

2.101406586s ago: executing program 0:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_usb_connect(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00001009040000022a3e740009058bff"], 0x0)

1.683272281s ago: executing program 3:
r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0x4})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x309000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000500))
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
close(0x4)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x208000, 0x0)

1.42963658s ago: executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0), 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r0}, 0x10)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.events\x00', 0x26e1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r4, 0x40045402, &(0x7f0000000040)=0x1)
close(r2)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x1a1282, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000800)={<r5=>0xffffffffffffffff})
getsockopt$sock_buf(r5, 0x1, 0x3b, &(0x7f0000000a80)=""/70, &(0x7f0000000b00)=0x46)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x20001400)
write$cgroup_pid(r2, 0x0, 0x7ffffffff000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x7, 0x7fe2, 0x1}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811000048361c04c1ee88", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @empty}, {0x0, 0x0, 0x28, 0x0, @wg=@data={0x4, 0x0, 0x0, '\x00'/16}}}}}}, 0x0)

1.274444173s ago: executing program 4:
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400a685b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = gettid()
r3 = gettid()
tkill(r2, 0x12)
tkill(r2, 0x1)
tkill(r3, 0x14)

1.263418025s ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000003a7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f00000002c0), &(0x7f0000000300)=r1}, 0x20)
execve(0x0, 0x0, 0x0)

1.256515286s ago: executing program 4:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x2, 0xc8, 0x67, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev={0xac, 0x14, 0x14, 0xf}}, {@remote}, {@multicast2, 0x7}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.243535138s ago: executing program 3:
r0 = memfd_create(&(0x7f0000002840)='\x1aj~\x97\xc1\x00\x00\x00\xff\x00\x00\x00\x7f\xef_\xd3\xdc=f.z=\x80=8\x1f\x14\xa2&\xbam\v\xa9\f\xf5\x17t\xc9\x80\xf4\xa1\xeb\x907L\x7f \xe3\x19\xcb\xbf\xfc\x00\x00\x00\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00h}\x00\x135V\xd9\xe0\xb0\x17\x01g\xff?\xc8\xfb3\x93\xbc\xcf\xf2\x95\xbeYd,\xb3\x17\xb0L\xe841(\"\xc2K\x11\x81\xef.m\xf7@\xb1\xf9\xee\xce\\\xd9\x03\nHNzF``\xa0\xc4}P\xb3\b\x0e\xcd\x86\'qb\x9a\xce\"\xfb\xd6\x91\'\x9b~\xcd\xfd\xaa\n\xea\x8dC\x9aQ\n\xce\"\x9cN\xed0\xf0\xc2x\x93h\xe8\\\x18\xd26\xe7\x8d4\x06\xf0\xe3M\xe5\x91\x0f\x85\x97gla\x06\xe1\xba\x1a\x1d \n\fr\xae\x12M\xcb6\xe0\x15\xd5d\x16\xc3\xdf\xa2\x04wB\xd0\x18\xa4\x17|\vH\xf5\xb0\xb5\xc7\x9f`Fz\xa3x\x99\xe17\xd2vAW\xe5\x18)9\xba\xa68A\xf8y\xe6\xac\xda\xc7u\xa9\x00{:\x01\xee,\a:\x06\xad{\x80\xfd\xc7\"\x95\x0f\xe3\x86\x19\xc3\xd2\xf7\x18\xf8\xed\x8b\"\xd8\x8f\xde`\xb0D\xfd\x84\xa3\xd7\xf3R\x8d\x88\xdaJ\xb0\xf8^\xd4>\xc7e\xab\x8f+\xda\x9b\xae\xf2\xca\xb9\xde\xb5\x8f\xdb\xba}\x7f\xf8\xe5i,m\b\xf0\xc7\xe9R\x9cY$\xcb\x00/!Z\xeb\x9bE\xf2\xb9\xcc\xf0\x9c\x02\xfc\x9c\x91q\xba|\x80n\x1f\xffG\xc3\x13\xe7v\xa7\x95md\x0f\xa5\x06\v^n\x84d5o\x02\xb3.\x8dc\x18\xe0\xc2\x9b\xe1D\x0fB] \xdfJGr\xdbc,\xef82%\x97\xe4;u\xa9\xe5\xef*n\xf613\x17\x80[\x90]\xef\xc1\x8e\rD\xd2\xe0\x8c\xf2\x00\x00\x00\x00\x00\x00\x00Gs\xab\x1e\xa13\x93\x8d\x04U\xf5\xb8Th9s3\xc9\xbf\xe5My$\x99.\xf0\xd5\xc8\xb1\xfc4\xe7\x83z\x11a\xb7\xebY\x1d\xcd\x81N\xed\xbd\xa5\xce\xa0f\xe5q2\xbc#w\xe4_\x8a-\xad\xc2/_\xe6\nE\xeb\x9c\x96\xf4`\xa2\x06\xe0^\xfb\x99\xbb}\xfb\x052_\x83*B\xf1\xf0\x95\xd2K\xd6\xe5\xb1\x1a\x02,\xbe\xf5\xd0\xd4\xa1A\xf3!\n\xc6b\xeb\x92\xea\xd8\xe1$\xbbUO\x1fS\x02\x9e\xa7|i:\xb1\xf60\xf6M\xe6,\x81=F\xa1\xca\x06\x0e\x14\x89/\xa7\"\x17-h9\x176\x9d\x04\x1el\xdcp\x89\x1b \x93f\x9a\x10\xd9\xa2Y\b\xfalA\xe1\x1bI\xb9\xf8\xa0\xb0\xc2\x04\xedO\n\vj&\xb5\x04\xc3{Yt\xf4rS^\x0e$\xe9\x05\xcd\x9b\x84\x14`\xed\x9e\xbbh\x81h\xf2\xe7\xe2DO\x1a\xe9\xc1\x1cu\xa5\xbd\x90\xbb\x03\xd5\x00\xf2\x83T\xe4\x0eF\x7f\x85\xb5\xe9CJ<F<\xb2a', 0x0)
write(r0, &(0x7f0000000080)="0600", 0x2)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000800)=ANY=[], 0x2c)
sendfile(r0, r0, &(0x7f0000001000), 0x200000ffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x33, &(0x7f000002eff0)={0x85c, &(0x7f0000000000)=[{}]}, 0x10)

675.699515ms ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
fcntl$setstatus(r1, 0x4, 0x2400)
splice(r1, 0x0, r0, 0x0, 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000005600)='sys_enter\x00'}, 0x10)
setitimer(0x0, &(0x7f0000000040)={{0x0, 0xfffffffffffffffe}}, 0x0)

606.621616ms ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001001000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000002880)=[{&(0x7f0000000300)="03", 0x1}], 0x1}}], 0x1, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

553.002814ms ago: executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000580)={'team0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@bridge_delneigh={0x30, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@NDA_LLADDR={0xa, 0x2, @remote}, @NDA_MASTER={0x8, 0x9, 0x1}]}, 0x30}}, 0x0)

538.546907ms ago: executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x19)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETAF(r4, 0x5408, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x0, "571a0a0da4c642c2"})
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x1a)

122.970891ms ago: executing program 3:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='block_split\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='block_split\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r3, &(0x7f0000000180), 0x40001)

119.235541ms ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

30.326685ms ago: executing program 3:
syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, 0x0})
mount(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)

0s ago: executing program 4:
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = socket(0x1e, 0x1, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
r4 = open(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x2d)
sendfile(r2, 0xffffffffffffffff, 0x0, 0xe065)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
open(0x0, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000000100)=[{{&(0x7f0000000180)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x1}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1000000}}], 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f0000000b00), &(0x7f0000000300)=r4}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='rtc_irq_set_state\x00', r9}, 0x10)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r11, 0xae60)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)

kernel console output (not intermixed with test programs):

(loop1): Mounted with checkpoint version = 48b305e5
[  266.386709][ T5363] device bridge_slave_1 entered promiscuous mode
[  266.467401][ T5363] bridge0: port 2(bridge_slave_1) entered blocking state
[  266.474263][ T5363] bridge0: port 2(bridge_slave_1) entered forwarding state
[  266.481360][ T5363] bridge0: port 1(bridge_slave_0) entered blocking state
[  266.488160][ T5363] bridge0: port 1(bridge_slave_0) entered forwarding state
[  266.512359][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  266.520109][  T421] bridge0: port 1(bridge_slave_0) entered disabled state
[  266.596000][  T421] bridge0: port 2(bridge_slave_1) entered disabled state
[  266.621714][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  266.639848][ T1763] bridge0: port 1(bridge_slave_0) entered blocking state
[  266.646698][ T1763] bridge0: port 1(bridge_slave_0) entered forwarding state
[  266.923084][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  266.931143][ T1763] bridge0: port 2(bridge_slave_1) entered blocking state
[  266.938107][ T1763] bridge0: port 2(bridge_slave_1) entered forwarding state
[  266.974974][ T1765] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  266.998948][ T1765] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  267.014363][ T5363] device veth0_vlan entered promiscuous mode
[  267.029974][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  267.043335][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  267.057854][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  267.066016][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  267.090815][ T5363] device veth1_macvtap entered promiscuous mode
[  267.098270][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  267.151258][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  267.168643][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  267.218268][  T464] device bridge_slave_1 left promiscuous mode
[  267.224285][  T464] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.231963][  T464] device bridge_slave_0 left promiscuous mode
[  267.238037][  T464] bridge0: port 1(bridge_slave_0) entered disabled state
[  267.253714][  T464] device veth1_macvtap left promiscuous mode
[  267.260340][  T464] device veth0_vlan left promiscuous mode
[  267.596648][   T53] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  267.977345][ T5418] exfat: Deprecated parameter 'utf8'
[  267.984523][ T5418] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d)
[  267.996711][   T53] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  268.007573][ T1120] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  268.015190][   T53] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  268.024911][   T53] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  268.033765][   T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  268.042380][   T53] usb 5-1: config 0 descriptor??
[  268.116121][   T24] audit: type=1326 audit(268.099:11502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.139656][   T24] audit: type=1326 audit(268.099:11503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.162866][   T24] audit: type=1326 audit(268.099:11504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.186165][   T24] audit: type=1326 audit(268.099:11505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.209640][   T24] audit: type=1326 audit(268.099:11506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.233071][   T24] audit: type=1326 audit(268.099:11507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.256302][   T24] audit: type=1326 audit(268.129:11508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.279715][   T24] audit: type=1326 audit(268.129:11509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5422 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2780613ea9 code=0x7ffc0000
[  268.280041][ T1763] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  268.303332][ T1120] usb 4-1: Using ep0 maxpacket: 32
[  268.516737][ T1120] usb 4-1: config 4 has an invalid interface number: 61 but max is 0
[  268.524692][ T1120] usb 4-1: config 4 has no interface number 0
[  268.555161][ T1120] usb 4-1: config 4 interface 61 altsetting 4 endpoint 0xF has invalid maxpacket 1024, setting to 64
[  268.566068][ T1120] usb 4-1: config 4 interface 61 altsetting 4 endpoint 0xE has invalid maxpacket 1023, setting to 64
[  268.577122][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has a duplicate endpoint with address 0x9, skipping
[  268.587683][ T1120] usb 4-1: config 4 interface 61 altsetting 4 endpoint 0xC has invalid maxpacket 512, setting to 64
[  268.598450][ T1120] usb 4-1: config 4 interface 61 altsetting 4 endpoint 0x8 has invalid wMaxPacketSize 0
[  268.608043][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has a duplicate endpoint with address 0xF, skipping
[  268.618666][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has a duplicate endpoint with address 0xF, skipping
[  268.629450][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has a duplicate endpoint with address 0xC, skipping
[  268.640056][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has a duplicate endpoint with address 0xC, skipping
[  268.643698][ T5434] input: syz0 as /devices/virtual/input/input30
[  268.650608][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has a duplicate endpoint with address 0xA, skipping
[  268.650621][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has an invalid endpoint with address 0x0, skipping
[  268.650635][ T1120] usb 4-1: config 4 interface 61 altsetting 4 bulk endpoint 0x3 has invalid maxpacket 1024
[  268.650650][ T1120] usb 4-1: config 4 interface 61 altsetting 4 has 14 endpoint descriptors, different from the interface descriptor's value: 15
[  268.650661][ T1120] usb 4-1: config 4 interface 61 has no altsetting 0
[  268.707346][ T1763] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  268.718221][ T1763] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[  268.730888][ T1763] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  268.744094][ T1763] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  268.753938][ T1763] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  268.764956][ T1763] usb 2-1: config 0 descriptor??
[  268.766665][   T53] usb 5-1: language id specifier not provided by device, defaulting to English
[  268.786655][ T5421] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  268.816769][ T1120] usb 4-1: Dual-Role OTG device on HNP port
[  268.836714][ T1120] usb 4-1: New USB device found, idVendor=0506, idProduct=0a11, bcdDevice=ce.02
[  268.855905][ T1120] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.865974][ T1120] usb 4-1: Product: 沟
[  268.876073][ T1120] usb 4-1: Manufacturer: 砹橻냡ለꠥ큌ኊﭓ摈ꔁ칂砷殠⡶ㆶ纨碁塼蟈݅겍복㜚笀諧踄맻ℤ쾬䋅栟ϛ畢啅껡怛ᒱ㗿胰㐉ᇙ㚭퉢뇾
[  268.904902][ T1120] usb 4-1: SerialNumber: ⬆ܝ┞늬䈝૘ꊱ۞躹골힞둯ힳꞱ螘旒앎庱酬迕꙱
[  268.926777][ T5411] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  268.933566][ T5411] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  269.247347][ T1763] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  269.254773][ T1763] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  269.262126][ T1763] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving
[  269.277724][ T1763] plantronics 0003:047F:FFFF.0019: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  269.279733][ T1120] usb 4-1: USB disconnect, device number 22
[  269.436745][   T53] uclogic 0003:256C:006D.0018: failed retrieving string descriptor #100: -71
[  269.445668][   T53] uclogic 0003:256C:006D.0018: failed retrieving pen parameters: -71
[  269.475478][   T53] uclogic 0003:256C:006D.0018: failed probing pen v1 parameters: -71
[  269.502759][   T53] uclogic 0003:256C:006D.0018: failed probing parameters: -71
[  269.510623][   T53] uclogic: probe of 0003:256C:006D.0018 failed with error -71
[  269.518701][   T53] usb 5-1: USB disconnect, device number 21
[  270.016853][ T1762] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  270.170893][   T53] usb 2-1: USB disconnect, device number 8
[  270.466654][ T1762] usb 4-1: Using ep0 maxpacket: 32
[  270.706756][ T1765] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  270.746730][ T1762] usb 4-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  270.755812][ T1762] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.763614][ T1762] usb 4-1: Product: syz
[  270.767653][ T1762] usb 4-1: Manufacturer: syz
[  270.772004][ T1762] usb 4-1: SerialNumber: syz
[  270.777007][ T1762] usb 4-1: config 0 descriptor??
[  270.796685][  T874] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  270.861585][   T24] kauditd_printk_skb: 1 callbacks suppressed
[  270.861598][   T24] audit: type=1326 audit(270.849:11511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5508 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x0
[  270.946633][ T1765] usb 1-1: Using ep0 maxpacket: 32
[  271.156677][  T874] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  271.167497][  T874] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  271.176985][  T874] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  271.185861][  T874] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.194381][  T874] usb 3-1: config 0 descriptor??
[  271.226700][ T1765] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  271.235606][ T1765] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.244184][ T1765] usb 1-1: Product: syz
[  271.248223][ T1765] usb 1-1: Manufacturer: syz
[  271.252560][ T1765] usb 1-1: SerialNumber: syz
[  271.257628][ T1765] usb 1-1: config 0 descriptor??
[  271.476740][ T1762] (unnamed net_device) (uninitialized): Assigned a random MAC address: ba:76:44:34:97:cf
[  271.488088][ T1762] rtl8150 4-1:0.0: eth1: rtl8150 is detected
[  271.679631][   T53] usb 4-1: USB disconnect, device number 23
[  271.717479][ T5522] F2FS-fs (loop1): QUOTA feature is enabled, so ignore qf_name
[  271.726818][ T5522] F2FS-fs (loop1): invalid crc value
[  271.733154][ T5522] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[  271.761270][ T5530] bpf_get_probe_write_proto: 2 callbacks suppressed
[  271.761280][ T5530] syz-executor.4[5530] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  271.767889][ T5530] syz-executor.4[5530] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  271.769076][ T5522] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
[  271.896738][  T874] usb 3-1: language id specifier not provided by device, defaulting to English
[  272.174890][ T1765] (unnamed net_device) (uninitialized): Assigned a random MAC address: 7a:ef:28:c3:3f:67
[  272.186430][ T1765] rtl8150 1-1:0.0: eth1: rtl8150 is detected
[  272.192822][ T1765] usb 1-1: USB disconnect, device number 23
[  272.610690][  T874] uclogic 0003:256C:006D.001A: failed retrieving string descriptor #100: -71
[  272.667109][  T874] uclogic 0003:256C:006D.001A: failed retrieving pen parameters: -71
[  272.676400][  T874] uclogic 0003:256C:006D.001A: failed probing pen v1 parameters: -71
[  272.685687][  T874] uclogic 0003:256C:006D.001A: failed probing parameters: -71
[  272.693222][  T874] uclogic: probe of 0003:256C:006D.001A failed with error -71
[  272.701281][  T874] usb 3-1: USB disconnect, device number 20
[  272.956633][ T1262] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  273.066670][ T1765] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  273.258130][ T5555] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue
[  273.336636][  T850] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  273.366684][ T1262] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  273.377487][ T1262] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  273.464238][ T5560] overlayfs: './file2' not a directory
[  273.623933][ T1765] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  273.634976][ T1765] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  273.645974][ T1765] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  273.658626][ T1765] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  273.666746][ T1262] usb 5-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice=61.8f
[  273.667444][ T1765] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.676385][ T1262] usb 5-1: New USB device strings: Mfr=129, Product=106, SerialNumber=0
[  273.687015][ T1765] usb 1-1: config 0 descriptor??
[  273.692372][ T1262] usb 5-1: Product: syz
[  273.701002][ T1262] usb 5-1: Manufacturer: syz
[  273.706003][ T1262] usb 5-1: config 0 descriptor??
[  273.716673][ T5545] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  273.736720][  T850] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  273.747729][  T850] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  273.759294][  T850] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  273.772016][  T850] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  273.780837][  T850] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.789098][  T850] usb 3-1: config 0 descriptor??
[  273.806655][ T5550] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  273.946764][  T566] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  274.177557][ T1765] plantronics 0003:047F:FFFF.001B: unknown main item tag 0xd
[  274.187561][ T1765] plantronics 0003:047F:FFFF.001B: No inputs registered, leaving
[  274.196243][ T1765] plantronics 0003:047F:FFFF.001B: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  274.217771][ T1262] uclogic 0003:5543:0522.001C: unknown main item tag 0x0
[  274.224715][ T1262] uclogic 0003:5543:0522.001C: unknown main item tag 0x0
[  274.231643][ T1262] uclogic 0003:5543:0522.001C: unknown main item tag 0x0
[  274.238594][ T1262] uclogic 0003:5543:0522.001C: unknown main item tag 0x0
[  274.245333][ T1262] uclogic 0003:5543:0522.001C: unknown main item tag 0x0
[  274.252419][ T1262] uclogic 0003:5543:0522.001C: No inputs registered, leaving
[  274.260898][ T1262] uclogic 0003:5543:0522.001C: hidraw1: USB HID v0.00 Device [syz syz] on usb-dummy_hcd.4-1/input0
[  274.272468][  T850] plantronics 0003:047F:FFFF.001D: unknown main item tag 0xd
[  274.280958][  T850] plantronics 0003:047F:FFFF.001D: No inputs registered, leaving
[  274.290561][  T850] plantronics 0003:047F:FFFF.001D: hiddev97,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  274.336912][  T566] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  274.347587][  T566] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  274.357152][  T566] usb 2-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  274.365958][  T566] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.374256][  T566] usb 2-1: config 0 descriptor??
[  274.427659][ T1765] usb 5-1: USB disconnect, device number 22
[  274.447487][  T874] usb 1-1: USB disconnect, device number 24
[  274.479867][  T850] usb 3-1: USB disconnect, device number 21
[  274.907633][  T566] itetech 0003:258A:6A88.001E: unknown main item tag 0x0
[  274.915062][  T566] itetech 0003:258A:6A88.001E: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.1-1/input0
[  275.008866][ T5591] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,barrier=0x0000000000000005,grpjquota=,norecovery,noauto_da_alloc,,errors=continue
[  275.110698][  T566] usb 2-1: USB disconnect, device number 9
[  275.326651][  T874] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  275.460456][  T850] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  275.560545][ T5615] sit: Dst spoofed 0.0.0.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[  275.966716][  T850] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  275.976349][  T850] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  276.096719][  T874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  276.107536][  T874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  276.117083][  T874] usb 5-1: New USB device found, idVendor=172f, idProduct=0034, bcdDevice= 0.00
[  276.125942][  T874] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.239881][  T850] usb 1-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  276.248845][  T850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.256638][  T850] usb 1-1: Product: syz
[  276.260591][  T850] usb 1-1: Manufacturer: syz
[  276.267630][  T850] usb 1-1: SerialNumber: syz
[  276.354989][ T1765] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  276.363344][  T874] usb 5-1: config 0 descriptor??
[  276.371192][  T850] usb 1-1: config 0 descriptor??
[  276.386799][ T5607] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  276.393873][ T5607] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  276.617431][ T5607] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  276.624216][ T5607] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  276.676657][ T1120] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  276.716704][ T1765] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  276.727794][ T1765] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  276.738698][ T1765] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  276.751379][ T1765] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  276.760206][ T1765] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.768516][ T1765] usb 2-1: config 0 descriptor??
[  276.786724][ T5630] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  276.846851][  T874] hid (null): report_id 0 is invalid
[  276.852832][  T874] waltop 0003:172F:0034.001F: report_id 0 is invalid
[  276.859374][  T874] waltop 0003:172F:0034.001F: item 0 0 1 8 parsing failed
[  276.875712][  T874] waltop: probe of 0003:172F:0034.001F failed with error -22
[  277.050295][ T1763] usb 5-1: USB disconnect, device number 23
[  277.079815][  T850] dm9601: No valid MAC address in EEPROM, using 62:f8:4c:67:48:3c
[  277.087646][ T1120] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  277.098619][ T1120] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  277.108316][ T1120] usb 4-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  277.117155][ T1120] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.125456][ T1120] usb 4-1: config 0 descriptor??
[  277.296945][  T850] dm9601 1-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  277.309075][  T850] usb 1-1: USB disconnect, device number 25
[  277.355503][ T1765] plantronics 0003:047F:FFFF.0020: unknown main item tag 0xd
[  277.364051][ T1765] plantronics 0003:047F:FFFF.0020: No inputs registered, leaving
[  277.372225][ T1765] plantronics 0003:047F:FFFF.0020: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  277.547114][ T1765] usb 2-1: USB disconnect, device number 10
[  277.641928][ T1120] itetech 0003:258A:6A88.0021: unknown main item tag 0x0
[  277.649292][ T1120] itetech 0003:258A:6A88.0021: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.3-1/input0
[  277.983160][ T1120] usb 4-1: USB disconnect, device number 24
[  278.024437][ T5665] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[  278.033747][ T5665] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[  278.214551][ T5670] sit: Dst spoofed 0.0.0.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[  278.617581][ T5680] EXT4-fs (loop3): orphan cleanup on readonly fs
[  278.623866][ T5680] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz-executor.3: bad orphan inode 1
[  278.634366][ T5680] EXT4-fs (loop3): Remounting filesystem read-only
[  278.640783][ T5680] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsdgroups,i_version,usrquota,min_batch_time=0x0000000000000005,nobarrier,errors=remount-ro,jqfmt=vfsold,
[  278.663854][   T24] audit: type=1400 audit(278.649:11512): avc:  denied  { mounton } for  pid=5679 comm="syz-executor.3" path="/root/syzkaller-testdir2290065644/syzkaller.OXPO2N/228/file0/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  278.691818][ T5680] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  278.698861][   T24] audit: type=1400 audit(278.679:11513): avc:  denied  { remount } for  pid=5679 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  278.710468][ T5680] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  278.725117][ T5680] EXT4-fs (loop3): Remounting file system with no journal so ignoring journalled data option
[  278.735060][ T5680] EXT4-fs (loop3): changing journal_checksum during remount not supported; ignoring
[  278.744469][ T5680] EXT4-fs error (device loop3): ext4_remount:5878: Abort forced by user
[  278.806649][ T1765] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  278.831853][ T2692] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 21: comm syz-executor.3: path /root/syzkaller-testdir2290065644/syzkaller.OXPO2N/228/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=64815104, rec_len=1024, size=1024 fake=0
[  278.857844][ T2692] EXT4-fs error (device loop3): ext4_lookup:1827: inode #16: comm syz-executor.3: iget: bad extra_isize 2080 (inode size 256)
[  278.871043][ T2692] EXT4-fs error (device loop3): ext4_lookup:1827: inode #16: comm syz-executor.3: iget: bad extra_isize 2080 (inode size 256)
[  279.346492][   T24] audit: type=1400 audit(279.329:11514): avc:  denied  { execute } for  pid=5699 comm="syz-executor.1" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=154 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  279.386094][ T5693] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.396842][ T5693] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.404100][ T5693] device bridge_slave_0 entered promiscuous mode
[  279.412949][ T5693] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.419830][ T5693] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.427111][ T5693] device bridge_slave_1 entered promiscuous mode
[  279.446753][ T1765] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  279.466636][ T1765] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[  279.484546][ T1765] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  279.497288][ T1765] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  279.506072][ T1765] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.515864][ T1765] usb 5-1: config 0 descriptor??
[  279.521009][ T5693] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.527870][ T5693] bridge0: port 2(bridge_slave_1) entered forwarding state
[  279.534939][ T5693] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.541744][ T5693] bridge0: port 1(bridge_slave_0) entered forwarding state
[  279.549022][ T5682] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  279.572318][  T850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  279.579872][  T850] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.587389][  T850] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.597771][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  279.605743][  T874] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.612574][  T874] bridge0: port 1(bridge_slave_0) entered forwarding state
[  279.627421][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  279.635494][  T874] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.642336][  T874] bridge0: port 2(bridge_slave_1) entered forwarding state
[  279.649893][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  279.657882][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  279.674529][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  279.687925][  T414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  279.695916][  T414] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  279.703988][  T414] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  279.713404][ T5693] device veth0_vlan entered promiscuous mode
[  279.725978][  T414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  279.735319][ T5693] device veth1_macvtap entered promiscuous mode
[  279.745938][  T414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  279.796705][  T414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  280.028870][ T1765] plantronics 0003:047F:FFFF.0022: unknown main item tag 0x0
[  280.036107][ T1765] plantronics 0003:047F:FFFF.0022: unknown main item tag 0x0
[  280.043652][ T1765] plantronics 0003:047F:FFFF.0022: No inputs registered, leaving
[  280.051919][ T1765] plantronics 0003:047F:FFFF.0022: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  280.069322][  T110] device bridge_slave_1 left promiscuous mode
[  280.075379][  T110] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.082671][  T110] device bridge_slave_0 left promiscuous mode
[  280.088770][  T110] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.096265][  T110] device veth1_macvtap left promiscuous mode
[  280.102318][  T110] device veth0_vlan left promiscuous mode
[  280.209157][ T5720] futex_wake_op: syz-executor.3 tries to shift op by -1; fix this program
[  280.486703][ T1262] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  280.954245][  T874] usb 5-1: USB disconnect, device number 24
[  281.036695][ T1262] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  281.051599][ T1262] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  281.071348][ T1262] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  281.157422][ T1262] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.179815][ T1262] usb 4-1: config 0 descriptor??
[  281.193360][ T5743] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.0'.
[  281.210893][ T5743] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.0'.
[  281.488171][ T5754] netlink: 'syz-executor.2': attribute type 6 has an invalid length.
[  281.633039][ T5751] EXT4-fs (loop0): orphan cleanup on readonly fs
[  281.650176][ T5751] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz-executor.0: bad orphan inode 1
[  281.680379][ T5751] EXT4-fs (loop0): Remounting filesystem read-only
[  281.687166][ T5751] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsdgroups,i_version,usrquota,min_batch_time=0x0000000000000005,nobarrier,errors=remount-ro,jqfmt=vfsold,
[  281.710465][ T5751] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  281.717542][ T5751] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  281.724751][ T5751] EXT4-fs (loop0): Remounting file system with no journal so ignoring journalled data option
[  281.734977][ T5751] EXT4-fs (loop0): changing journal_checksum during remount not supported; ignoring
[  281.744332][ T5751] EXT4-fs error (device loop0): ext4_remount:5878: Abort forced by user
[  281.801408][ T2078] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 21: comm syz-executor.0: path /root/syzkaller-testdir2483768455/syzkaller.cdtIgz/253/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=64815104, rec_len=1024, size=1024 fake=0
[  281.827462][ T2078] EXT4-fs error (device loop0): ext4_lookup:1827: inode #16: comm syz-executor.0: iget: bad extra_isize 2080 (inode size 256)
[  281.840524][ T2078] EXT4-fs error (device loop0): ext4_lookup:1827: inode #16: comm syz-executor.0: iget: bad extra_isize 2080 (inode size 256)
[  281.946673][   T53] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  282.058993][ T5762] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.065911][ T5762] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.073047][ T5762] device bridge_slave_0 entered promiscuous mode
[  282.079742][ T5762] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.086602][ T5762] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.093769][ T5762] device bridge_slave_1 entered promiscuous mode
[  282.156003][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  282.163489][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  282.181993][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  282.190981][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  282.198969][  T874] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.205781][  T874] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.213132][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  282.221173][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  282.229084][  T874] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.235806][  T874] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.242978][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  282.252270][  T414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  282.266886][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  282.274901][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  282.286959][  T850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  282.294688][  T850] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  282.301771][ T1262] usb 4-1: string descriptor 0 read error: -71
[  282.307992][  T850] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  282.315801][ T5762] device veth0_vlan entered promiscuous mode
[  282.325592][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  282.326704][ T1262] uclogic 0003:256C:006D.0023: failed retrieving string descriptor #200: -71
[  282.339440][ T5762] device veth1_macvtap entered promiscuous mode
[  282.348007][   T53] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  282.352930][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  282.358720][   T53] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  282.376168][ T1262] uclogic 0003:256C:006D.0023: failed retrieving pen parameters: -71
[  282.383994][ T1262] uclogic 0003:256C:006D.0023: failed probing pen v2 parameters: -71
[  282.392690][ T1262] uclogic 0003:256C:006D.0023: failed probing parameters: -71
[  282.392788][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  282.400043][ T1262] uclogic: probe of 0003:256C:006D.0023 failed with error -71
[  282.416808][ T1262] usb 4-1: USB disconnect, device number 25
[  282.433755][ T5769] syz-executor.0[5769] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.433792][ T5769] syz-executor.0[5769] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.456699][  T850] usb 3-1: new full-speed USB device number 22 using dummy_hcd
[  282.482474][ T5771] FAT-fs (loop0): Directory bread(block 64) failed
[  282.488940][ T5771] FAT-fs (loop0): Directory bread(block 65) failed
[  282.495242][ T5771] FAT-fs (loop0): Directory bread(block 66) failed
[  282.501638][ T5771] FAT-fs (loop0): Directory bread(block 67) failed
[  282.507965][   T53] usb 2-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice=61.8f
[  282.507972][ T5771] FAT-fs (loop0): Directory bread(block 68) failed
[  282.507988][ T5771] FAT-fs (loop0): Directory bread(block 69) failed
[  282.516935][   T53] usb 2-1: New USB device strings: Mfr=129, Product=106, SerialNumber=0
[  282.523231][ T5771] FAT-fs (loop0): Directory bread(block 70) failed
[  282.529657][   T53] usb 2-1: Product: syz
[  282.543926][ T5771] FAT-fs (loop0): Directory bread(block 71) failed
[  282.547905][   T53] usb 2-1: Manufacturer: syz
[  282.548740][   T53] usb 2-1: config 0 descriptor??
[  282.554296][ T5771] FAT-fs (loop0): Directory bread(block 72) failed
[  282.569854][ T5771] FAT-fs (loop0): Directory bread(block 73) failed
[  283.016709][  T850] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  283.033971][  T850] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[  283.045125][  T850] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  283.058039][  T850] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  283.067140][  T850] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.140363][  T850] usb 3-1: config 0 descriptor??
[  283.156728][ T5767] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  283.177613][   T53] uclogic 0003:5543:0522.0024: unknown main item tag 0x0
[  283.185169][   T53] uclogic 0003:5543:0522.0024: unknown main item tag 0x0
[  283.192134][   T53] uclogic 0003:5543:0522.0024: unknown main item tag 0x0
[  283.199024][   T53] uclogic 0003:5543:0522.0024: unknown main item tag 0x0
[  283.205899][   T53] uclogic 0003:5543:0522.0024: unknown main item tag 0x0
[  283.213875][   T53] uclogic 0003:5543:0522.0024: No inputs registered, leaving
[  283.223690][   T53] uclogic 0003:5543:0522.0024: hidraw0: USB HID v0.00 Device [syz syz] on usb-dummy_hcd.1-1/input0
[  283.421618][   T53] usb 2-1: USB disconnect, device number 11
[  283.487820][  T110] device bridge_slave_1 left promiscuous mode
[  283.496563][  T110] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.512746][  T110] device bridge_slave_0 left promiscuous mode
[  283.529396][  T110] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.563608][  T110] device veth1_macvtap left promiscuous mode
[  283.571234][  T110] device veth0_vlan left promiscuous mode
[  283.602906][   T24] audit: type=1400 audit(283.589:11515): avc:  denied  { watch } for  pid=5805 comm="syz-executor.0" path=2F6D656D66643A2D42D54E49C56A9A707070F00884A26D202864656C6574656429 dev="tmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  283.637502][  T850] plantronics 0003:047F:FFFF.0025: unknown main item tag 0x0
[  283.645526][  T850] plantronics 0003:047F:FFFF.0025: unknown main item tag 0x0
[  283.654264][  T850] plantronics 0003:047F:FFFF.0025: No inputs registered, leaving
[  283.662526][  T850] plantronics 0003:047F:FFFF.0025: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  283.707765][   T24] audit: type=1400 audit(283.699:11516): avc:  denied  { mount } for  pid=5809 comm="syz-executor.4" name="/" dev="pstore" ino=1765 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  283.735725][   T24] audit: type=1400 audit(283.719:11517): avc:  denied  { unmount } for  pid=4721 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  283.776283][   T24] audit: type=1400 audit(283.759:11518): avc:  denied  { setattr } for  pid=5817 comm="syz-executor.4" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  284.116690][ T1760] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  284.119424][ T5836] EXT4-fs (loop1): orphan cleanup on readonly fs
[  284.130753][ T5836] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz-executor.1: bad orphan inode 1
[  284.141068][ T5836] EXT4-fs (loop1): Remounting filesystem read-only
[  284.147824][ T5836] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsdgroups,i_version,usrquota,min_batch_time=0x0000000000000005,nobarrier,errors=remount-ro,jqfmt=vfsold,
[  284.171848][ T5836] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  284.179171][ T5836] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  284.186322][ T5836] EXT4-fs (loop1): Remounting file system with no journal so ignoring journalled data option
[  284.196704][ T5836] EXT4-fs (loop1): changing journal_checksum during remount not supported; ignoring
[  284.206004][ T5836] EXT4-fs error (device loop1): ext4_remount:5878: Abort forced by user
[  284.285790][ T5030] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 21: comm syz-executor.1: path /root/syzkaller-testdir3285322136/syzkaller.zDXfSk/47/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=64815104, rec_len=1024, size=1024 fake=0
[  284.311982][ T5030] EXT4-fs error (device loop1): ext4_lookup:1827: inode #16: comm syz-executor.1: iget: bad extra_isize 2080 (inode size 256)
[  284.326484][ T5030] EXT4-fs error (device loop1): ext4_lookup:1827: inode #16: comm syz-executor.1: iget: bad extra_isize 2080 (inode size 256)
[  284.425567][  T874] usb 3-1: USB disconnect, device number 22
[  284.506682][ T1760] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  284.527401][ T1760] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  284.537052][ T1760] usb 1-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  284.545879][ T1760] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.555298][ T1760] usb 1-1: config 0 descriptor??
[  284.559202][   T24] audit: type=1326 audit(284.539:11519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5841 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x0
[  284.593073][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.599985][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.607932][ T5844] device bridge_slave_0 entered promiscuous mode
[  284.616665][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.623548][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.631007][ T5844] device bridge_slave_1 entered promiscuous mode
[  284.693807][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.700813][ T5844] bridge0: port 2(bridge_slave_1) entered forwarding state
[  284.707905][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.714675][ T5844] bridge0: port 1(bridge_slave_0) entered forwarding state
[  284.756393][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  284.763815][ T1262] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.772733][ T1262] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.787651][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  284.795650][ T1762] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.802496][ T1762] bridge0: port 1(bridge_slave_0) entered forwarding state
[  284.810723][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  284.819033][ T1762] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.825857][ T1762] bridge0: port 2(bridge_slave_1) entered forwarding state
[  284.836534][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  284.846042][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  284.871478][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  284.884663][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  284.893364][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  284.901063][ T1763] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  284.902251][ T5858] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  284.918389][ T5844] device veth0_vlan entered promiscuous mode
[  284.934068][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  284.943755][ T5844] device veth1_macvtap entered promiscuous mode
[  284.960583][ T1120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  284.973991][ T1762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  285.037735][ T1760] lg-g15 0003:046D:C222.0026: unknown main item tag 0x0
[  285.044501][ T1760] lg-g15 0003:046D:C222.0026: unknown main item tag 0x0
[  285.049099][ T5862] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue
[  285.059143][ T1760] lg-g15 0003:046D:C222.0026: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.0-1/input0
[  285.086950][ T1763] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  285.273924][ T5867] overlayfs: './file2' not a directory
[  285.493619][ T1762] usb 1-1: USB disconnect, device number 26
[  285.518112][  T110] device bridge_slave_1 left promiscuous mode
[  285.530384][  T110] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.547822][  T110] device bridge_slave_0 left promiscuous mode
[  285.556748][  T110] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.571167][  T110] device veth1_macvtap left promiscuous mode
[  285.577375][  T110] device veth0_vlan left promiscuous mode
[  285.606892][ T1763] usb 4-1: Using ep0 maxpacket: 32
[  285.766618][ T5880] sit: Dst spoofed 0.0.0.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[  285.966714][ T1763] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  285.975124][ T1763] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  285.983745][ T1763] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  285.992572][ T1763] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  286.002093][ T1763] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  286.011599][ T1763] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  286.024472][ T1763] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  286.034405][ T1763] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.042890][ T1763] usb 4-1: config 0 descriptor??
[  286.097420][ T1120] usb 5-1: new full-speed USB device number 25 using dummy_hcd
[  286.317399][ T1763] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 26 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  286.450002][   T24] audit: type=1326 audit(286.439:11520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5896 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x0
[  286.486689][ T1120] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  286.497665][ T1120] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[  286.509029][ T1120] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  286.519884][ T1763] usb 4-1: USB disconnect, device number 26
[  286.521867][ T1120] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  286.532609][ T1763] usblp0: removed
[  286.536346][ T1120] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.548599][ T1120] usb 5-1: config 0 descriptor??
[  286.566724][ T5879] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  287.041818][ T1120] plantronics 0003:047F:FFFF.0027: unknown main item tag 0x0
[  287.049729][ T1120] plantronics 0003:047F:FFFF.0027: unknown main item tag 0x0
[  287.057812][ T1120] plantronics 0003:047F:FFFF.0027: No inputs registered, leaving
[  287.067091][ T1120] plantronics 0003:047F:FFFF.0027: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  287.336632][  T874] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  287.358611][ T5910] syz-executor.2[5910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  287.358687][ T5910] syz-executor.2[5910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  287.447094][  T110] device bridge_slave_1 left promiscuous mode
[  287.464765][  T110] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.472201][  T110] device bridge_slave_0 left promiscuous mode
[  287.477578][ T5912] xt_policy: neither incoming nor outgoing policy selected
[  287.478235][  T110] bridge0: port 1(bridge_slave_0) entered disabled state
[  287.492382][   T24] audit: type=1400 audit(287.469:11521): avc:  denied  { mounton } for  pid=5911 comm="syz-executor.2" path="/root/syzkaller-testdir65527512/syzkaller.AUt2zr/41/file0" dev="sda1" ino=1999 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=fifo_file permissive=1
[  287.519987][  T110] device veth1_macvtap left promiscuous mode
[  287.525798][  T110] device veth0_vlan left promiscuous mode
[  287.736739][  T874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  287.747643][  T874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  287.757203][  T874] usb 4-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  287.766070][  T874] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.822845][ T1120] usb 5-1: USB disconnect, device number 25
[  288.066194][   T24] audit: type=1400 audit(288.049:11522): avc:  denied  { bind } for  pid=5925 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  288.082337][  T874] usb 4-1: config 0 descriptor??
[  288.406623][  T566] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  288.561513][  T874] itetech 0003:258A:6A88.0028: unknown main item tag 0x0
[  288.573068][  T874] itetech 0003:258A:6A88.0028: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.3-1/input0
[  288.646612][  T566] usb 2-1: Using ep0 maxpacket: 16
[  288.761694][ T1761] usb 4-1: USB disconnect, device number 27
[  288.806905][  T566] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  288.832136][  T566] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  288.895760][  T566] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  288.941339][  T566] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.020413][  T566] usb 2-1: config 0 descriptor??
[  289.119346][   T24] audit: type=1326 audit(289.109:11523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.142878][   T24] audit: type=1326 audit(289.109:11524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.166407][   T24] audit: type=1326 audit(289.109:11525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.189680][   T24] audit: type=1326 audit(289.129:11526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.213218][   T24] audit: type=1326 audit(289.129:11527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.236728][   T24] audit: type=1326 audit(289.129:11528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.260077][   T24] audit: type=1326 audit(289.149:11529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.292939][   T24] audit: type=1326 audit(289.149:11530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.316386][   T24] audit: type=1326 audit(289.149:11531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.339794][   T24] audit: type=1326 audit(289.179:11532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5949 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  289.396642][  T566] usbhid 2-1:0.0: can't add hid device: -71
[  289.402416][  T566] usbhid: probe of 2-1:0.0 failed with error -71
[  289.409345][  T566] usb 2-1: USB disconnect, device number 12
[  289.746627][ T1761] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  289.806649][ T1120] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  289.989672][ T5970] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  290.036655][ T1761] usb 4-1: Using ep0 maxpacket: 8
[  290.046640][ T1120] usb 3-1: Using ep0 maxpacket: 16
[  290.166695][ T1120] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  290.176272][ T1120] usb 3-1: config 0 interface 0 altsetting 0 has a duplicate endpoint with address 0xE, skipping
[  290.189851][ T1761] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  290.198749][ T1761] usb 4-1: config 179 has no interface number 0
[  290.205259][ T1761] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  290.216143][ T1761] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  290.227406][ T1761] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 255, changing to 11
[  290.238875][ T1761] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 59391, setting to 1024
[  290.250161][ T1761] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  290.263471][ T1761] usb 4-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  290.272368][ T1761] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.296707][ T5960] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  290.303512][ T5960] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  290.327540][ T1761] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input34
[  290.346678][ T1120] usb 3-1: New USB device found, idVendor=1608, idProduct=000f, bcdDevice=c8.c5
[  290.355589][ T1120] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.363356][ T1120] usb 3-1: Product: syz
[  290.367580][ T1120] usb 3-1: Manufacturer: syz
[  290.371987][ T1120] usb 3-1: SerialNumber: syz
[  290.377104][ T1120] usb 3-1: config 0 descriptor??
[  290.607548][ T5960] EXT4-fs (loop3): Ignoring removed nobh option
[  290.619775][ T5960] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,bsddf,sysvgroups,block_validity,debug_want_extra_isize=0x000000000000007e,sb=0x0000000000000001,nogrpid,noauto_da_alloc,nojournal_checksum,noload,,errors=continue
[  290.641635][ T1761] usb 3-1: USB disconnect, device number 23
[  290.762742][  T874] usb 4-1: USB disconnect, device number 28
[  290.768483][    C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  290.776991][  T874] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  291.409889][ T6000] device pim6reg1 entered promiscuous mode
[  291.523873][ T6006] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
[  292.126637][ T1761] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  292.134071][ T1763] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  292.737312][ T1761] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  292.750270][ T1763] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  292.760954][ T1763] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  292.770527][ T1763] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  292.779368][ T1763] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.787848][ T1763] usb 2-1: config 0 descriptor??
[  292.869662][ T6024] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[  293.046725][ T1761] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  293.066532][ T1761] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  293.106072][ T1761] usb 4-1: SerialNumber: syz
[  293.716669][ T1763] uclogic 0003:256C:006D.0029: failed retrieving Huion firmware version: -71
[  293.725349][ T1763] uclogic 0003:256C:006D.0029: failed probing parameters: -71
[  293.732872][ T1763] uclogic: probe of 0003:256C:006D.0029 failed with error -71
[  293.740766][ T1763] usb 2-1: USB disconnect, device number 13
[  293.807743][ T1761] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  294.299986][  T421] usb 4-1: USB disconnect, device number 29
[  294.306252][  T421] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  294.367688][   T24] kauditd_printk_skb: 14 callbacks suppressed
[  294.367701][   T24] audit: type=1326 audit(294.359:11547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5114aea9 code=0x7ffc0000
[  294.405324][   T24] audit: type=1326 audit(294.359:11548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f4b5114aea9 code=0x7ffc0000
[  294.428937][   T24] audit: type=1326 audit(294.359:11549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5114aea9 code=0x7ffc0000
[  294.453218][   T24] audit: type=1326 audit(294.389:11550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b5114aea9 code=0x7ffc0000
[  294.607686][ T6048] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  294.615271][ T6048] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  294.624210][ T6048] F2FS-fs (loop4): invalid crc value
[  294.632525][ T6048] F2FS-fs (loop4): Found nat_bits in checkpoint
[  294.670925][ T6048] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  294.677814][ T6048] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  294.840285][ T6071] F2FS-fs (loop1): invalid crc value
[  294.860932][ T6071] F2FS-fs (loop1): Found nat_bits in checkpoint
[  295.268011][   T24] audit: type=1400 audit(295.259:11551): avc:  denied  { bind } for  pid=6079 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  295.290290][ T6071] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  295.332067][ T4721] attempt to access beyond end of device
[  295.332067][ T4721] loop4: rw=2051, want=53248, limit=40427
[  295.343209][ T4721] attempt to access beyond end of device
[  295.343209][ T4721] loop4: rw=2051, want=77824, limit=40427
[  295.354336][ T4721] attempt to access beyond end of device
[  295.354336][ T4721] loop4: rw=2051, want=86016, limit=40427
[  295.365717][ T4721] F2FS-fs (loop4): Issue discard(6144, 6144, 512) failed, ret: -5
[  295.365735][ T4721] F2FS-fs (loop4): Issue discard(7168, 7168, 2560) failed, ret: -5
[  295.373446][ T4721] F2FS-fs (loop4): Issue discard(10240, 10240, 512) failed, ret: -5
[  295.500951][ T6089] attempt to access beyond end of device
[  295.500951][ T6089] loop1: rw=10241, want=45104, limit=40427
[  295.526036][ T6089] attempt to access beyond end of device
[  295.526036][ T6089] loop1: rw=2049, want=45112, limit=40427
[  295.724444][   T24] audit: type=1326 audit(295.709:11552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6090 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x0
[  295.748431][ T5844] attempt to access beyond end of device
[  295.748431][ T5844] loop1: rw=2049, want=45120, limit=40427
[  295.776057][ T6095] fuse: Bad value for 'group_id'
[  295.781355][ T6095] overlayfs: './bus' not a directory
[  295.817786][ T6101] netlink: 'syz-executor.2': attribute type 12 has an invalid length.
[  295.877267][   T24] audit: type=1326 audit(295.869:11553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  295.916885][   T24] audit: type=1326 audit(295.869:11554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  296.006658][   T24] audit: type=1326 audit(295.889:11555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  296.030023][   T24] audit: type=1326 audit(295.889:11556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  296.164857][  T566] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  296.378189][ T6120] F2FS-fs (loop1): invalid crc value
[  296.384397][ T6120] F2FS-fs (loop1): Found nat_bits in checkpoint
[  296.413876][ T6120] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  296.546882][  T566] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  296.590033][ T6127] attempt to access beyond end of device
[  296.590033][ T6127] loop1: rw=10241, want=45104, limit=40427
[  296.607929][ T6127] attempt to access beyond end of device
[  296.607929][ T6127] loop1: rw=2049, want=45112, limit=40427
[  296.676950][  T566] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  296.686007][  T566] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  296.693875][  T566] usb 3-1: SerialNumber: syz
[  296.834780][ T5844] attempt to access beyond end of device
[  296.834780][ T5844] loop1: rw=2049, want=45120, limit=40427
[  297.320269][ T6147] sit: Dst spoofed 0.0.0.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[  297.492129][ T6146] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode #
[  297.505780][ T6146] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117
[  297.518312][ T6146] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode #
[  297.531883][ T6146] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117
[  297.545319][ T6146] EXT4-fs (loop1): 1 orphan inode deleted
[  297.550865][ T6146] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_ioprio=0x0000000000000007,debug_want_extra_isize=0x000000000000005c,minixdf,nodelalloc,grpquota,usrjquota=,,errors=continue
[  297.638019][  T566] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  297.881403][ T6161] syz-executor.3[6161] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  297.881454][ T6161] syz-executor.3[6161] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  297.958008][ T6165] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  298.050143][ T1761] usb 3-1: USB disconnect, device number 24
[  298.057098][ T1761] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  299.061860][ T6185] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=100 sclass=netlink_tcpdiag_socket pid=6185 comm=syz-executor.2
[  299.799945][ T6200] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode #
[  299.813600][ T6200] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117
[  300.087457][ T6200] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode #
[  300.101790][ T6200] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117
[  300.114439][ T6200] EXT4-fs (loop1): 1 orphan inode deleted
[  300.120076][ T6200] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_ioprio=0x0000000000000007,debug_want_extra_isize=0x000000000000005c,minixdf,nodelalloc,grpquota,usrjquota=,,errors=continue
[  300.391595][   T24] kauditd_printk_skb: 50 callbacks suppressed
[  300.391610][   T24] audit: type=1326 audit(300.379:11607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6221 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x0
[  300.529254][ T6225] fuse: Unknown parameter '017777777777777777777770000000000000000000000000000000000000000'
[  300.652550][   T24] audit: type=1326 audit(300.639:11608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6228 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4b5114aea9 code=0x0
[  300.696625][ T1761] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  300.754621][   T24] audit: type=1326 audit(300.739:11609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6228 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4b5114aea9 code=0x0
[  300.946626][ T1761] usb 4-1: Using ep0 maxpacket: 32
[  301.086660][ T1761] usb 4-1: config 0 has an invalid interface number: 37 but max is 2
[  301.094594][ T1761] usb 4-1: config 0 has an invalid interface number: 14 but max is 2
[  301.102490][ T1761] usb 4-1: config 0 has no interface number 1
[  301.108377][ T1761] usb 4-1: config 0 has no interface number 2
[  301.114295][ T1761] usb 4-1: config 0 interface 0 has no altsetting 0
[  301.286674][ T1761] usb 4-1: New USB device found, idVendor=0403, idProduct=ff3c, bcdDevice=cd.a0
[  301.298182][ T1761] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.316101][ T1761] usb 4-1: Product: syz
[  301.320182][ T1761] usb 4-1: Manufacturer: syz
[  301.325722][ T1761] usb 4-1: SerialNumber: syz
[  301.333320][ T1761] usb 4-1: config 0 descriptor??
[  301.377388][ T1761] ftdi_sio 4-1:0.37: FTDI USB Serial Device converter detected
[  301.384983][ T1761] usb 4-1: Detected FT2232C
[  301.422080][ T6242] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz-executor.4: casefold flag without casefold feature
[  301.434979][ T6242] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #2: comm syz-executor.4: missing EA_INODE flag
[  301.446741][ T6242] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz-executor.4: error while reading EA inode 2 err=-117
[  301.459217][ T6242] EXT4-fs (loop4): 1 orphan inode deleted
[  301.464772][ T6242] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  301.510819][ T6248] tipc: Failed to remove local publication {66,1,1}/2184147954
[  301.518338][ T6248] tipc: Failed to remove local publication {66,1,1}/2184147954
[  301.586667][ T1761] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  301.606687][ T1761] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  301.613716][ T1761] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  302.107492][ T1761] ftdi_sio 4-1:0.14: FTDI USB Serial Device converter detected
[  302.115111][ T1761] usb 4-1: Detected FT2232C
[  302.191541][ T1761] ftdi_sio ttyUSB1: Unable to read latency timer: -71
[  302.199572][ T6256] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode #
[  302.213650][ T6256] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117
[  302.226181][ T6256] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz-executor.1: inode #1: comm syz-executor.1: iget: illegal inode #
[  302.239784][ T6256] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz-executor.1: error while reading EA inode 1 err=-117
[  302.252329][ T6256] EXT4-fs (loop1): 1 orphan inode deleted
[  302.257912][ T6256] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_ioprio=0x0000000000000007,debug_want_extra_isize=0x000000000000005c,minixdf,nodelalloc,grpquota,usrjquota=,,errors=continue
[  302.306691][ T1761] ftdi_sio ttyUSB1: Unable to write latency timer: -71
[  302.320045][ T1761] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB1
[  302.329565][ T1761] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  302.337296][ T1761] usb 4-1: Detected FT2232C
[  302.357652][ T1761] ftdi_sio ttyUSB2: Unable to read latency timer: -71
[  302.385937][   T24] audit: type=1326 audit(302.369:11610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6276 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  302.386742][ T1761] ftdi_sio ttyUSB2: Unable to write latency timer: -71
[  302.419254][   T24] audit: type=1326 audit(302.399:11611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6276 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  302.436809][ T1761] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB2
[  302.456773][   T24] audit: type=1326 audit(302.399:11612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6276 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  302.457464][ T6278] fuse: root generation should be zero
[  302.488904][   T24] audit: type=1326 audit(302.409:11613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6276 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  302.497729][ T1761] usb 4-1: USB disconnect, device number 30
[  302.518610][ T1761] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  302.536744][ T1761] ftdi_sio 4-1:0.37: device disconnected
[  302.542983][ T1761] ftdi_sio ttyUSB1: FTDI USB Serial Device converter now disconnected from ttyUSB1
[  302.556706][ T1761] ftdi_sio 4-1:0.14: device disconnected
[  302.566984][ T1761] ftdi_sio ttyUSB2: FTDI USB Serial Device converter now disconnected from ttyUSB2
[  302.579049][ T1761] ftdi_sio 4-1:0.0: device disconnected
[  302.588553][   T24] audit: type=1326 audit(302.579:11614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6276 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec89bc4ea9 code=0x7ffc0000
[  302.617075][   T24] audit: type=1326 audit(302.579:11615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6276 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fec89bc2627 code=0x7ffc0000
[  302.640421][   T24] audit: type=1326 audit(302.579:11616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6276 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fec89b88309 code=0x7ffc0000
[  303.469180][ T6317] device pim6reg1 entered promiscuous mode
[  303.627101][ T1763] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  303.642851][ T1761] kernel write not supported for file 6325/task/6326/clear_refs (pid: 1761 comm: kworker/0:9)
[  304.062134][ T6344] mmap: syz-executor.4 (6344) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  304.096627][ T1763] usb 3-1: Using ep0 maxpacket: 16
[  304.216662][ T1763] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  304.226359][ T1763] usb 3-1: config 0 interface 0 altsetting 0 has a duplicate endpoint with address 0xE, skipping
[  304.446661][ T1763] usb 3-1: New USB device found, idVendor=1608, idProduct=000f, bcdDevice=c8.c5
[  304.455566][ T1763] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.463315][ T1763] usb 3-1: Product: syz
[  304.467307][ T1763] usb 3-1: Manufacturer: syz
[  304.471730][ T1763] usb 3-1: SerialNumber: syz
[  304.476689][ T1763] usb 3-1: config 0 descriptor??
[  304.675360][ T1761] kernel write not supported for file 6355/task/6356/clear_refs (pid: 1761 comm: kworker/0:9)
[  304.719149][ T1120] usb 3-1: USB disconnect, device number 25
[  305.136632][ T1761] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  305.386636][ T1761] usb 4-1: Using ep0 maxpacket: 8
[  305.516692][ T1761] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  305.525703][ T1761] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.534143][ T1761] usb 4-1: config 0 descriptor??
[  305.740215][ T6377] device pim6reg1 entered promiscuous mode
[  305.816696][ T1761] asix 4-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  307.336652][ T1761] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  307.346866][ T1761] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  307.356997][ T1761] asix: probe of 4-1:0.0 failed with error -71
[  307.363467][ T1761] usb 4-1: USB disconnect, device number 31
[  307.876636][ T1262] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  308.002471][   T24] kauditd_printk_skb: 71 callbacks suppressed
[  308.002486][   T24] audit: type=1326 audit(307.989:11688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6434 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x0
[  308.103786][   T24] audit: type=1326 audit(308.089:11689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6434 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x0
[  308.116620][ T1262] usb 5-1: Using ep0 maxpacket: 16
[  308.276726][ T1262] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  308.287417][ T1262] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  308.300616][ T1262] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  308.309461][ T1262] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.317802][ T1262] usb 5-1: config 0 descriptor??
[  308.837635][ T1262] microsoft 0003:045E:07DA.002A: unknown global tag 0xe
[  308.844398][ T1262] microsoft 0003:045E:07DA.002A: item 0 1 1 14 parsing failed
[  308.851900][ T1262] microsoft 0003:045E:07DA.002A: parse failed
[  308.858240][ T1262] microsoft: probe of 0003:045E:07DA.002A failed with error -22
[  308.866061][   T24] audit: type=1326 audit(308.849:11690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x7ffc0000
[  308.889385][   T24] audit: type=1326 audit(308.859:11691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x7ffc0000
[  308.913007][   T24] audit: type=1326 audit(308.859:11692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2919771ea9 code=0x7ffc0000
[  308.936250][   T24] audit: type=1326 audit(308.879:11693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x7ffc0000
[  308.959537][   T24] audit: type=1326 audit(308.879:11694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x7ffc0000
[  308.982658][   T24] audit: type=1326 audit(308.889:11695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2919771ea9 code=0x7ffc0000
[  309.005944][   T24] audit: type=1326 audit(308.899:11696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2919771ea9 code=0x7ffc0000
[  309.029239][   T24] audit: type=1326 audit(308.909:11697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f291976f627 code=0x7ffc0000
[  309.255281][ T1761] usb 5-1: USB disconnect, device number 26
[  309.976666][ T1763] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  309.983463][ T6486] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  309.991791][ T6486] FAT-fs (loop4): Filesystem has been set read-only
[  309.998354][ T6486] attempt to access beyond end of device
[  309.998354][ T6486] loop4: rw=0, want=2073, limit=128
[  310.016194][ T6489] binder: 6488:6489 ioctl c0306201 200001c0 returned -14
[  310.376666][ T1763] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  310.387367][ T1763] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  310.396909][ T1760] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  310.404351][ T1763] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  310.413103][ T1763] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.421521][ T1763] usb 4-1: config 0 descriptor??
[  310.756669][ T1760] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  310.766170][ T1760] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  310.936758][ T1760] usb 5-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  310.945633][ T1760] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  310.953484][ T1760] usb 5-1: Product: syz
[  310.957452][ T1760] usb 5-1: Manufacturer: syz
[  310.961823][ T1760] usb 5-1: SerialNumber: syz
[  310.966922][ T1760] usb 5-1: config 0 descriptor??
[  311.216865][ T1760] snd-usb-audio: probe of 5-1:0.0 failed with error -12
[  311.224154][ T1760] usb 5-1: USB disconnect, device number 27
[  311.276618][ T1262] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  311.356675][ T1763] uclogic 0003:256C:006D.002B: failed retrieving Huion firmware version: -71
[  311.365284][ T1763] uclogic 0003:256C:006D.002B: failed probing parameters: -71
[  311.372585][ T1763] uclogic: probe of 0003:256C:006D.002B failed with error -71
[  311.380426][ T1763] usb 4-1: USB disconnect, device number 32
[  311.516727][ T1262] usb 3-1: Using ep0 maxpacket: 16
[  311.636756][ T1262] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  311.647491][ T1262] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  311.660013][ T1262] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  311.668851][ T1262] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.677180][ T1262] usb 3-1: config 0 descriptor??
[  312.136614][ T1120] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  312.187513][ T1262] microsoft 0003:045E:07DA.002C: unknown global tag 0xe
[  312.194281][ T1262] microsoft 0003:045E:07DA.002C: item 0 1 1 14 parsing failed
[  312.201810][ T1262] microsoft 0003:045E:07DA.002C: parse failed
[  312.207759][ T1262] microsoft: probe of 0003:045E:07DA.002C failed with error -22
[  312.376595][ T1120] usb 4-1: Using ep0 maxpacket: 16
[  312.516691][ T1120] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  312.529309][ T1120] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  312.540325][ T1120] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  312.554826][ T1120] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  312.565330][ T1120] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.584470][ T1120] usb 4-1: config 0 descriptor??
[  312.592429][ T1262] usb 3-1: USB disconnect, device number 26
[  312.678001][ T6512] EXT4-fs (loop4): mounted filesystem without journal. Opts: data_err=abort,stripe=0x0000000000000002,noblock_validity,errors=remount-ro,noblock_validity,bsddf,sysvgroups,nojournal_checksum,nodelalloc,
[  312.777959][ T6517] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e02d, mo2=0002]
[  312.785718][ T6517] System zones: 1-12
[  312.789783][ T6517] EXT4-fs error (device loop4): __ext4_iget:4958: inode #11: block 393240: comm syz-executor.4: invalid block
[  312.801354][ T6517] EXT4-fs (loop4): Remounting filesystem read-only
[  312.807707][ T6517] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz-executor.4: couldn't read orphan inode 11 (err -117)
[  312.819821][ T6517] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,nombcache,noinit_itable,errors=remount-ro,max_batch_time=0x0000000000000001
[  313.067433][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.074451][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.081516][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.088527][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.095533][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.102579][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.119139][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.126154][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.133606][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.140797][ T1120] microsoft 0003:045E:07DA.002D: unknown main item tag 0x0
[  313.153346][ T1120] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.002D/input/input35
[  313.165537][ T1120] microsoft 0003:045E:07DA.002D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  313.273334][ T1262] usb 4-1: USB disconnect, device number 33
[  313.456692][ T1761] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  313.816648][ T1761] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  313.826085][ T1761] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  313.986746][ T1761] usb 3-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  313.995582][ T1761] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.003401][ T1761] usb 3-1: Product: syz
[  314.007420][ T1761] usb 3-1: Manufacturer: syz
[  314.011951][ T1761] usb 3-1: SerialNumber: syz
[  314.017117][ T1761] usb 3-1: config 0 descriptor??
[  314.106629][ T1760] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  314.276827][ T1761] snd-usb-audio: probe of 3-1:0.0 failed with error -12
[  314.284117][ T1761] usb 3-1: USB disconnect, device number 27
[  314.346611][ T1760] usb 4-1: Using ep0 maxpacket: 8
[  314.466670][ T1760] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  314.556696][ T1760] usb 4-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  314.565535][ T1760] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[  314.573512][ T1760] usb 4-1: SerialNumber: syz
[  314.579477][ T1760] usb 4-1: config 0 descriptor??
[  314.617096][ T1760] uvcvideo: Found UVC 0.00 device <unnamed> (05ac:8501)
[  314.623860][ T1760] uvcvideo 4-1:0.0: Entity type for entity Output 255 was not initialized!
[  314.632289][ T1760] uvcvideo: Failed to create links for entity 255
[  314.638506][ T1760] uvcvideo: Failed to register entities (-22).
[  314.819843][ T1760] usb 4-1: USB disconnect, device number 34
[  315.620110][ T6560] EXT4-fs (loop3): mounted filesystem without journal. Opts: data_err=abort,stripe=0x0000000000000002,noblock_validity,errors=remount-ro,noblock_validity,bsddf,sysvgroups,nojournal_checksum,nodelalloc,
[  316.006627][  T874] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  316.016635][ T1120] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  316.256642][ T1120] usb 4-1: Using ep0 maxpacket: 16
[  316.376680][ T1120] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  316.376691][  T874] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  316.376710][  T874] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.387481][ T1120] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.387505][ T1120] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  316.398197][  T874] usb 3-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  316.407813][ T1120] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  316.417402][  T874] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.429929][ T1120] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.430691][ T1120] usb 4-1: config 0 descriptor??
[  316.439440][  T874] usb 3-1: config 0 descriptor??
[  316.927656][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  316.934900][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  316.941943][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  316.949011][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  316.955969][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  316.960878][ T6571] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.963095][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  316.971102][  T874] itetech 0003:258A:6A88.002F: unknown main item tag 0x0
[  316.977131][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  316.984484][  T874] itetech 0003:258A:6A88.002F: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.2-1/input0
[  316.990829][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  317.001801][ T6571] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.002215][ T6571] device bridge_slave_0 entered promiscuous mode
[  317.008862][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  317.016524][ T6571] bridge0: port 2(bridge_slave_1) entered blocking state
[  317.021913][ T1120] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  317.030242][ T6571] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.041059][ T1120] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.002E/input/input36
[  317.043195][ T6571] device bridge_slave_1 entered promiscuous mode
[  317.050832][ T1120] microsoft 0003:045E:07DA.002E: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  317.096686][ T6571] bridge0: port 2(bridge_slave_1) entered blocking state
[  317.103522][ T6571] bridge0: port 2(bridge_slave_1) entered forwarding state
[  317.110594][ T6571] bridge0: port 1(bridge_slave_0) entered blocking state
[  317.117404][ T6571] bridge0: port 1(bridge_slave_0) entered forwarding state
[  317.135043][ T1262] usb 4-1: USB disconnect, device number 35
[  317.141043][  T874] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.148089][  T874] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.155270][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  317.162610][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  317.174835][  T850] usb 3-1: USB disconnect, device number 28
[  317.187483][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  317.195880][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  317.203949][ T1761] bridge0: port 1(bridge_slave_0) entered blocking state
[  317.210779][ T1761] bridge0: port 1(bridge_slave_0) entered forwarding state
[  317.218304][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  317.226203][ T1761] bridge0: port 2(bridge_slave_1) entered blocking state
[  317.232962][ T1761] bridge0: port 2(bridge_slave_1) entered forwarding state
[  317.240610][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  317.248274][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  317.256809][ T1120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  317.265440][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  317.272648][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  317.280148][ T6571] device veth0_vlan entered promiscuous mode
[  317.290002][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  317.298754][ T6571] device veth1_macvtap entered promiscuous mode
[  317.308366][ T1760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  317.318335][  T421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  317.369736][ T6576] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  317.377808][ T6576] FAT-fs (loop0): Filesystem has been set read-only
[  317.384217][ T6576] attempt to access beyond end of device
[  317.384217][ T6576] loop0: rw=0, want=2073, limit=128
[  317.717290][ T6590] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  317.722310][ T6587] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e02d, mo2=0002]
[  317.734071][ T6587] System zones: 1-12
[  317.736271][ T6590] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  317.738355][ T6587] EXT4-fs error (device loop3): __ext4_iget:4958: inode #11: block 393240: comm syz-executor.3: invalid block
[  317.757622][ T6587] EXT4-fs (loop3): Remounting filesystem read-only
[  317.764024][ T6587] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz-executor.3: couldn't read orphan inode 11 (err -117)
[  317.776229][ T6587] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,nombcache,noinit_itable,errors=remount-ro,max_batch_time=0x0000000000000001
[  317.776347][ T6590] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  317.807988][ T6590] System zones: 0-2, 18-18, 34-34
[  317.814479][ T6590] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1047: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  317.829310][ T6590] EXT4-fs (loop0): 1 truncate cleaned up
[  317.834761][ T6590] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  318.028170][ T6604] F2FS-fs (loop3): invalid crc value
[  318.034475][ T6604] F2FS-fs (loop3): Found nat_bits in checkpoint
[  318.064599][ T6604] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  318.125392][  T850] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  318.243880][ T6609] attempt to access beyond end of device
[  318.243880][ T6609] loop3: rw=10241, want=45104, limit=40427
[  318.261443][ T6609] attempt to access beyond end of device
[  318.261443][ T6609] loop3: rw=2049, want=45112, limit=40427
[  318.426851][  T850] usb 3-1: Using ep0 maxpacket: 32
[  318.576805][  T850] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  318.587900][  T850] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  318.598851][  T850] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  318.607694][  T850] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  318.616106][  T850] usb 3-1: config 0 descriptor??
[  318.646645][ T6599] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  318.663464][ T6620] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev sda1, type ext4) errno=-22
[  318.677189][  T850] hub 3-1:0.0: USB hub found
[  318.683552][   T24] kauditd_printk_skb: 8158 callbacks suppressed
[  318.683563][   T24] audit: type=1400 audit(318.669:19856): avc:  denied  { unlink } for  pid=6621 comm="syz-executor.0" name="#69" dev="tmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  318.781069][ T5693] attempt to access beyond end of device
[  318.781069][ T5693] loop3: rw=2049, want=45120, limit=40427
[  318.911785][   T24] audit: type=1326 audit(318.899:19857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  318.944221][   T24] audit: type=1326 audit(318.899:19858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  318.973045][   T24] audit: type=1326 audit(318.899:19859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  318.996759][  T850] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  319.004868][   T24] audit: type=1326 audit(318.919:19860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  319.028995][   T24] audit: type=1326 audit(318.929:19861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  319.052897][   T24] audit: type=1326 audit(318.959:19862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  319.076371][   T24] audit: type=1326 audit(318.959:19863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda18020627 code=0x7ffc0000
[  319.099819][   T24] audit: type=1326 audit(318.959:19864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda17fe6309 code=0x7ffc0000
[  319.123515][   T24] audit: type=1326 audit(318.959:19865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6632 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda18020627 code=0x7ffc0000
[  319.126745][  T850] usbhid 3-1:0.0: can't add hid device: -71
[  319.166680][  T850] usbhid: probe of 3-1:0.0 failed with error -71
[  319.188560][ T6647] SELinux: security_context_str_to_sid(s) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  319.217810][  T850] usb 3-1: USB disconnect, device number 29
[  319.233091][ T6652] tmpfs: Unknown parameter 'n'
[  320.426629][ T1262] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  320.606123][  T110] Bluetooth: hci0: Frame reassembly failed (-84)
[  320.666629][ T1262] usb 1-1: Using ep0 maxpacket: 32
[  320.786640][ T1262] usb 1-1: config 0 has an invalid interface number: 37 but max is 2
[  320.794554][ T1262] usb 1-1: config 0 has an invalid interface number: 14 but max is 2
[  320.802418][ T1262] usb 1-1: config 0 has no interface number 1
[  320.808337][ T1262] usb 1-1: config 0 has no interface number 2
[  320.814437][ T1262] usb 1-1: config 0 interface 0 has no altsetting 0
[  320.976751][ T1262] usb 1-1: New USB device found, idVendor=0403, idProduct=ff3c, bcdDevice=cd.a0
[  320.985602][ T1262] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.993703][ T1262] usb 1-1: Product: syz
[  320.996260][ T6684] device batadv_slave_1 entered promiscuous mode
[  320.997711][ T1262] usb 1-1: Manufacturer: syz
[  321.004564][ T6683] device batadv_slave_1 left promiscuous mode
[  321.008365][ T1262] usb 1-1: SerialNumber: syz
[  321.019315][ T1262] usb 1-1: config 0 descriptor??
[  321.027783][ T6686] tipc: Started in network mode
[  321.032436][ T6686] tipc: Own node identity f0, cluster identity 4711
[  321.038951][ T6686] tipc: 32-bit node address hash set to f0
[  321.057184][ T1262] ftdi_sio 1-1:0.37: FTDI USB Serial Device converter detected
[  321.064736][ T1262] usb 1-1: Detected FT2232C
[  321.266655][ T1262] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  321.286640][ T1262] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  321.293660][ T1262] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  321.302009][ T1262] ftdi_sio 1-1:0.14: FTDI USB Serial Device converter detected
[  321.309868][ T1262] usb 1-1: Detected FT2232C
[  321.316635][  T850] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  321.326628][ T1262] ftdi_sio ttyUSB1: Unable to read latency timer: -71
[  321.346624][ T1262] ftdi_sio ttyUSB1: Unable to write latency timer: -71
[  321.353601][ T1262] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB1
[  321.362021][ T1262] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  321.369436][ T1262] usb 1-1: Detected FT2232C
[  321.386624][ T1262] ftdi_sio ttyUSB2: Unable to read latency timer: -71
[  321.406770][ T1262] ftdi_sio ttyUSB2: Unable to write latency timer: -71
[  321.413752][ T1262] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB2
[  321.422429][ T1262] usb 1-1: USB disconnect, device number 27
[  321.428624][ T1262] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  321.437881][ T1262] ftdi_sio 1-1:0.37: device disconnected
[  321.443910][ T1262] ftdi_sio ttyUSB1: FTDI USB Serial Device converter now disconnected from ttyUSB1
[  321.453109][ T1262] ftdi_sio 1-1:0.14: device disconnected
[  321.459281][ T1262] ftdi_sio ttyUSB2: FTDI USB Serial Device converter now disconnected from ttyUSB2
[  321.468514][ T1262] ftdi_sio 1-1:0.0: device disconnected
[  321.566732][  T850] usb 4-1: Using ep0 maxpacket: 32
[  321.706692][  T850] usb 4-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  321.896645][  T850] usb 4-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice= 1.d2
[  321.905609][  T850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.913389][  T850] usb 4-1: Product: syz
[  321.917390][  T850] usb 4-1: Manufacturer: syz
[  321.921790][  T850] usb 4-1: SerialNumber: syz
[  322.227119][  T850] ftdi_sio 4-1:6.0: FTDI USB Serial Device converter detected
[  322.234623][  T850] usb 4-1: Detected SIO
[  322.238936][  T850] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  322.247258][  T850] usb 4-1: USB disconnect, device number 36
[  322.253405][  T850] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  322.262594][  T850] ftdi_sio 4-1:6.0: device disconnected
[  322.656628][ T1761] Bluetooth: hci0: command 0x1003 tx timeout
[  322.662477][   T40] Bluetooth: hci0: sending frame failed (-49)
[  322.718540][  T464] tipc: Subscription rejected, illegal request
[  322.749270][ T6709] device batadv_slave_1 entered promiscuous mode
[  322.756356][ T6708] device batadv_slave_1 left promiscuous mode
[  323.046637][  T850] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  323.296617][  T850] usb 4-1: Using ep0 maxpacket: 16
[  323.446710][  T850] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8
[  323.606679][  T850] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  323.615576][  T850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.623354][  T850] usb 4-1: Product: syz
[  323.627339][  T850] usb 4-1: Manufacturer: syz
[  323.631748][  T850] usb 4-1: SerialNumber: syz
[  323.637188][  T850] usb 4-1: config 0 descriptor??
[  323.687522][  T850] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  323.695272][  T850] usb 4-1: Detected FT232RL
[  324.016666][  T850] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  324.277974][  T850] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  324.479952][ T1761] usb 4-1: USB disconnect, device number 37
[  324.486922][ T1761] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  324.496131][ T1761] ftdi_sio 4-1:0.0: device disconnected
[  324.588825][ T6737] 9pnet: p9_errstr2errno: server reported unknown error elf_freezi
[  324.746629][ T1761] Bluetooth: hci0: command 0x1001 tx timeout
[  324.752478][   T40] Bluetooth: hci0: sending frame failed (-49)
[  325.917215][ T6763] syz-executor.3[6763] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  325.917252][ T6763] syz-executor.3[6763] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  326.606635][ T1760] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  326.816649][ T1262] Bluetooth: hci0: command 0x1009 tx timeout
[  326.986957][ T1760] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  326.997679][ T1760] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  327.007215][ T1760] usb 4-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  327.016136][ T1760] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.024520][ T1760] usb 4-1: config 0 descriptor??
[  327.885492][ T6768] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.892395][ T6768] bridge0: port 1(bridge_slave_0) entered disabled state
[  327.899880][ T6768] device bridge_slave_0 entered promiscuous mode
[  327.906778][ T6768] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.913610][ T6768] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.920878][ T6768] device bridge_slave_1 entered promiscuous mode
[  327.936702][ T1760] hid-led: probe of 0003:27B8:01ED.0030 failed with error -71
[  327.945936][ T1760] usb 4-1: USB disconnect, device number 38
[  327.970509][ T6768] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.977375][ T6768] bridge0: port 2(bridge_slave_1) entered forwarding state
[  327.984425][ T6768] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.991228][ T6768] bridge0: port 1(bridge_slave_0) entered forwarding state
[  328.009985][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  328.017859][ T1262] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.024848][ T1262] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.035460][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  328.043655][ T1761] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.050481][ T1761] bridge0: port 1(bridge_slave_0) entered forwarding state
[  328.059019][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  328.067047][ T1262] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.073873][ T1262] bridge0: port 2(bridge_slave_1) entered forwarding state
[  328.088427][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  328.097369][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  328.113279][ T1761] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  328.124538][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  328.132688][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  328.140052][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  328.149859][ T6768] device veth0_vlan entered promiscuous mode
[  328.160621][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  328.169661][ T6768] device veth1_macvtap entered promiscuous mode
[  328.179320][  T850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  328.190820][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  328.297074][  T110] device bridge_slave_1 left promiscuous mode
[  328.303046][  T110] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.310189][  T110] device bridge_slave_0 left promiscuous mode
[  328.316103][  T110] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.323698][  T110] device veth1_macvtap left promiscuous mode
[  328.329530][  T110] device veth0_vlan left promiscuous mode
[  328.476654][ T1262] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  328.521370][   T24] kauditd_printk_skb: 68 callbacks suppressed
[  328.521383][   T24] audit: type=1326 audit(328.509:19934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda18020627 code=0x7ffc0000
[  328.550763][   T24] audit: type=1326 audit(328.509:19935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda17fe6309 code=0x7ffc0000
[  328.573958][   T24] audit: type=1326 audit(328.519:19936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  328.597512][   T24] audit: type=1326 audit(328.519:19937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda18020627 code=0x7ffc0000
[  328.621775][   T24] audit: type=1326 audit(328.539:19938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda17fe6309 code=0x7ffc0000
[  328.645048][   T24] audit: type=1326 audit(328.539:19939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  328.668465][   T24] audit: type=1326 audit(328.539:19940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda18020627 code=0x7ffc0000
[  328.691781][   T24] audit: type=1326 audit(328.539:19941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fda17fe6309 code=0x7ffc0000
[  328.714996][   T24] audit: type=1326 audit(328.539:19942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda18022ea9 code=0x7ffc0000
[  328.738572][   T24] audit: type=1326 audit(328.539:19943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6774 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fda18020627 code=0x7ffc0000
[  328.856659][ T1262] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  328.873365][ T1262] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  328.884733][ T1262] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  328.893989][ T1262] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.903863][ T1262] usb 2-1: config 0 descriptor??
[  328.921264][ T6778] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  329.816662][  T421] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  330.056605][  T421] usb 4-1: Using ep0 maxpacket: 8
[  330.177162][  T421] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  330.186054][  T421] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.194460][  T421] usb 4-1: config 0 descriptor??
[  330.216695][ T1262] uclogic 0003:256C:006D.0031: failed retrieving Huion firmware version: -71
[  330.225297][ T1262] uclogic 0003:256C:006D.0031: failed probing parameters: -71
[  330.232813][ T1262] uclogic: probe of 0003:256C:006D.0031 failed with error -71
[  330.240971][ T1262] usb 2-1: USB disconnect, device number 14
[  330.480715][  T421] asix 4-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  330.976631][ T1763] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  331.246597][ T1763] usb 2-1: Using ep0 maxpacket: 8
[  331.386689][ T1763] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  331.400713][ T1763] usb 2-1: config 179 has no interface number 0
[  331.407519][ T1763] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  331.418758][ T1763] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  331.430063][ T1763] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  331.441407][ T1763] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  331.452698][ T1763] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  331.466202][ T1763] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  331.475058][ T1763] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.506682][ T6794] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  331.956753][  T421] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  331.969397][  T421] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  331.979866][  T421] asix: probe of 4-1:0.0 failed with error -71
[  331.986770][  T421] usb 4-1: USB disconnect, device number 39
[  332.074951][  T110] Bluetooth: hci0: Frame reassembly failed (-84)
[  332.816909][  T421] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  333.056607][  T421] usb 4-1: Using ep0 maxpacket: 32
[  333.176638][  T421] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  333.187325][  T421] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  333.196886][  T421] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  333.205721][  T421] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.214373][  T421] usb 4-1: config 0 descriptor??
[  333.257036][  T421] hub 4-1:0.0: USB hub found
[  333.476662][  T421] hub 4-1:0.0: 1 port detected
[  333.705965][  T850] usb 2-1: USB disconnect, device number 15
[  333.726600][    C0] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  333.734827][ T1763] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  334.006581][ T1763] usb 1-1: Using ep0 maxpacket: 16
[  334.096613][  T421] Bluetooth: hci0: command 0x1003 tx timeout
[  334.102549][   T40] Bluetooth: hci0: sending frame failed (-49)
[  334.126659][  T850] hub 4-1:0.0: activate --> -90
[  334.146646][ T1763] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 8
[  334.336649][ T1763] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  334.345606][ T1763] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  334.353405][ T1763] usb 1-1: Product: syz
[  334.357403][ T1763] usb 1-1: Manufacturer: syz
[  334.361808][ T1763] usb 1-1: SerialNumber: syz
[  334.366792][ T1763] usb 1-1: config 0 descriptor??
[  334.407137][ T1763] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  334.414618][ T1763] usb 1-1: Detected FT232RL
[  334.626748][ T1763] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  334.726651][   T24] kauditd_printk_skb: 9231 callbacks suppressed
[  334.726674][   T24] audit: type=1400 audit(334.699:29175): avc:  denied  { ioctl } for  pid=6850 comm="syz-executor.1" path="socket:[43491]" dev="sockfs" ino=43491 ioctlcmd=0x8912 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  335.017560][ T1763] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  335.216655][  T850] usb 4-1-port1: over-current condition
[  335.222380][ T1763] usb 1-1: USB disconnect, device number 28
[  335.228938][ T1763] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  335.238105][ T1763] ftdi_sio 1-1:0.0: device disconnected
[  335.417053][   T53] usb 4-1: USB disconnect, device number 40
[  335.527704][ T6860] serio: Serial port pts1
[  335.973293][   T24] audit: type=1107 audit(335.959:29176): pid=6890 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  335.996719][   T53] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  336.068230][ T6898] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'.
[  336.077395][ T6898] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'.
[  336.086420][ T6898] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'.
[  336.176769][  T421] Bluetooth: hci0: command 0x1001 tx timeout
[  336.182621][   T40] Bluetooth: hci0: sending frame failed (-49)
[  336.196699][  T850] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  336.236623][   T53] usb 1-1: Using ep0 maxpacket: 32
[  336.273380][   T24] audit: type=1400 audit(336.259:29177): avc:  denied  { accept } for  pid=6911 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  336.324944][ T6922] futex_wake_op: syz-executor.1 tries to shift op by -1; fix this program
[  336.446633][  T850] usb 4-1: Using ep0 maxpacket: 8
[  336.566798][  T850] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  336.575833][  T850] usb 4-1: config 1 has no interface number 1
[  336.582316][  T850] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  336.616789][   T53] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  336.625877][   T53] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.634320][   T53] usb 1-1: Product: syz
[  336.638352][   T53] usb 1-1: Manufacturer: syz
[  336.642708][   T53] usb 1-1: SerialNumber: syz
[  336.647631][   T53] usb 1-1: config 0 descriptor??
[  336.746659][  T850] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  336.755626][  T850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.763420][  T850] usb 4-1: Product: syz
[  336.767418][  T850] usb 4-1: Manufacturer: syz
[  336.771813][  T850] usb 4-1: SerialNumber: syz
[  337.096718][  T850] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[  337.104360][  T850] usb 4-1: 2:1 : format type 0 is detected, processed as PCM
[  337.148436][  T850] usb 4-1: USB disconnect, device number 41
[  337.346643][   T53] (unnamed net_device) (uninitialized): Assigned a random MAC address: c6:c7:98:ff:b5:f7
[  337.357673][   T53] rtl8150 1-1:0.0: eth1: rtl8150 is detected
[  337.363829][   T53] usb 1-1: USB disconnect, device number 29
[  337.851758][   T24] audit: type=1400 audit(337.839:29178): avc:  denied  { write } for  pid=6958 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  337.980599][ T6972] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.0'.
[  338.073857][ T6976] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev bpf, type bpf) errno=-22
[  338.176703][ T1761] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  338.256642][ T1763] Bluetooth: hci0: command 0x1009 tx timeout
[  338.416621][ T1763] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  338.443770][ T6984] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.450658][ T6984] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.457990][ T6984] device bridge_slave_0 entered promiscuous mode
[  338.465977][ T6984] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.472839][ T6984] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.479942][ T6984] device bridge_slave_1 entered promiscuous mode
[  338.516422][ T6984] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.523276][ T6984] bridge0: port 2(bridge_slave_1) entered forwarding state
[  338.530334][ T6984] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.537140][ T6984] bridge0: port 1(bridge_slave_0) entered forwarding state
[  338.555104][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  338.562770][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.569970][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.577031][  T850] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  338.588232][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  338.596218][  T874] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.603050][  T874] bridge0: port 1(bridge_slave_0) entered forwarding state
[  338.610259][ T1761] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.621208][ T1761] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  338.630769][ T1761] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  338.639730][ T1761] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.647873][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  338.648574][ T1761] usb 4-1: config 0 descriptor??
[  338.655905][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.667302][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  338.685313][ T6984] device veth0_vlan entered promiscuous mode
[  338.691558][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  338.700226][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  338.707968][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  338.715109][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  338.722285][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  338.730046][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  338.744339][ T6984] device veth1_macvtap entered promiscuous mode
[  338.750937][  T874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  338.763680][ T1760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  338.772271][ T1760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  338.816686][ T1763] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.816750][  T850] usb 2-1: Using ep0 maxpacket: 32
[  338.927115][ T1673] device bridge_slave_1 left promiscuous mode
[  338.933068][ T1673] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.940325][ T1673] device bridge_slave_0 left promiscuous mode
[  338.946254][ T1673] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.946669][  T850] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.963803][  T850] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  338.973314][  T850] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  338.973372][ T1673] device veth1_macvtap left promiscuous mode
[  338.982212][  T850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.988295][ T1673] device veth0_vlan left promiscuous mode
[  339.006693][ T1763] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  339.015657][ T1763] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  339.023482][ T1763] usb 1-1: Product: syz
[  339.027581][ T1763] usb 1-1: Manufacturer: syz
[  339.031978][ T1763] usb 1-1: SerialNumber: syz
[  339.037232][  T850] hub 2-1:4.0: USB hub found
[  339.066711][  T414] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  339.256636][  T850] hub 2-1:4.0: 2 ports detected
[  339.326677][  T414] usb 5-1: Using ep0 maxpacket: 32
[  339.626968][ T1761] usb 4-1: string descriptor 0 read error: -71
[  339.633008][  T414] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  339.641876][  T414] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  339.649620][  T414] usb 5-1: Product: syz
[  339.653586][  T414] usb 5-1: Manufacturer: syz
[  339.658061][ T1761] uclogic 0003:256C:006D.0032: failed retrieving string descriptor #200: -71
[  339.666652][  T414] usb 5-1: SerialNumber: syz
[  339.671313][ T1761] uclogic 0003:256C:006D.0032: failed retrieving pen parameters: -71
[  339.679409][  T414] usb 5-1: config 0 descriptor??
[  339.684206][ T1761] uclogic 0003:256C:006D.0032: failed probing pen v2 parameters: -71
[  339.692153][ T1761] uclogic 0003:256C:006D.0032: failed probing parameters: -71
[  339.699549][ T1761] uclogic: probe of 0003:256C:006D.0032 failed with error -71
[  339.707684][ T1761] usb 4-1: USB disconnect, device number 42
[  340.166656][ T1763] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[  340.174034][ T1763] cdc_ncm 1-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  340.188748][ T1763] cdc_ncm 1-1:1.0: setting rx_max = 2048
[  340.366693][  T414] (unnamed net_device) (uninitialized): Assigned a random MAC address: 46:e6:4b:27:c3:09
[  340.376685][ T1763] cdc_ncm 1-1:1.0: setting tx_max = 184
[  340.384782][ T1763] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM, 42:42:42:42:42:42
[  340.400589][  T414] rtl8150 5-1:0.0: eth1: rtl8150 is detected
[  340.414079][  T414] usb 5-1: USB disconnect, device number 28
[  340.422929][ T1763] usb 1-1: USB disconnect, device number 30
[  340.435506][ T1763] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM
[  340.466740][  T850] hub 2-1:4.0: hub_hub_status failed (err = -32)
[  340.472878][  T850] hub 2-1:4.0: config failed, can't get hub status (err -32)
[  340.607390][ T6992] F2FS-fs (loop3): Segment count (31) mismatch with total segments from devices (0)
[  340.616674][ T6992] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  340.625635][ T6992] F2FS-fs (loop3): invalid crc value
[  340.632199][ T6992] F2FS-fs (loop3): Found nat_bits in checkpoint
[  340.671738][ T6992] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  340.678621][ T6992] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  341.206668][  T850] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  341.636883][  T850] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  341.644164][ T7027] sit: non-ECT from 0.0.0.0 with TOS=0x3
[  341.647037][  T850] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  341.663209][  T850] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  341.673605][  T850] usb 1-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  341.686515][  T850] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  341.695355][  T850] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.747656][  T850] usb 1-1: invalid MIDI out EP 0
[  341.762360][  T850] snd-usb-audio: probe of 1-1:27.0 failed with error -22
[  341.952505][  T421] usb 1-1: USB disconnect, device number 31
[  342.675612][ T7050] syz-executor.0[7050] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  342.675906][ T7050] syz-executor.0[7050] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  342.861493][ T1761] usb 2-1: USB disconnect, device number 16
[  342.937501][ T7054] EXT4-fs (loop4): Ignoring removed orlov option
[  342.943687][ T7054] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  342.958039][ T7054] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,errors=continue,noauto_da_alloc,nomblk_io_submit,,errors=continue
[  342.987570][ T7054] EXT4-fs error (device loop4): get_max_inline_xattr_value_size:68: inode #12: comm syz-executor.4: corrupt xattr in inline inode
[  343.001000][ T7054] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2204: inode #12: comm syz-executor.4: corrupted in-inode xattr
[  343.017831][   T24] audit: type=1400 audit(343.009:29179): avc:  denied  { unlink } for  pid=6984 comm="syz-executor.4" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  343.039867][   T24] audit: type=1400 audit(343.009:29180): avc:  denied  { unlink } for  pid=6984 comm="syz-executor.4" name="file1" dev="loop4" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  343.040245][ T6984] ==================================================================
[  343.069990][ T6984] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xc67/0xc80
[  343.077809][ T6984] Read of size 4 at addr ffff88813330f000 by task syz-executor.4/6984
[  343.085868][ T6984] 
[  343.088042][ T6984] CPU: 0 PID: 6984 Comm: syz-executor.4 Tainted: G        W         5.10.214-syzkaller-00187-ge6f44899ce5d #0
[  343.099494][ T6984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  343.109386][ T6984] Call Trace:
[  343.112524][ T6984]  dump_stack_lvl+0x1e2/0x24b
[  343.117038][ T6984]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  343.122325][ T6984]  ? panic+0x80b/0x80b
[  343.126232][ T6984]  ? ext4_mark_iloc_dirty+0x2c23/0x3e60
[  343.131611][ T6984]  print_address_description+0x81/0x3b0
[  343.137007][ T6984]  kasan_report+0x179/0x1c0
[  343.141511][ T6984]  ? __ext4_journal_ensure_credits+0x470/0x470
[  343.147490][ T6984]  ? ext4_xattr_delete_inode+0xc67/0xc80
[  343.152953][ T6984]  ? ext4_xattr_delete_inode+0xc67/0xc80
[  343.158429][ T6984]  __asan_report_load4_noabort+0x14/0x20
[  343.163890][ T6984]  ext4_xattr_delete_inode+0xc67/0xc80
[  343.169185][ T6984]  ? sb_end_intwrite+0x110/0x110
[  343.173960][ T6984]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  343.179863][ T6984]  ? __kasan_check_read+0x11/0x20
[  343.184723][ T6984]  ext4_evict_inode+0x1095/0x1730
[  343.189586][ T6984]  ? ext4_inode_is_fast_symlink+0x360/0x360
[  343.195398][ T6984]  ? __kasan_check_write+0x14/0x20
[  343.200345][ T6984]  ? _raw_spin_lock+0xa4/0x1b0
[  343.204944][ T6984]  ? _raw_spin_trylock_bh+0x190/0x190
[  343.210153][ T6984]  ? ext4_inode_is_fast_symlink+0x360/0x360
[  343.215879][ T6984]  evict+0x2a3/0x6c0
[  343.219612][ T6984]  iput+0x632/0x7e0
[  343.223265][ T6984]  vfs_rmdir+0x271/0x3f0
[  343.227342][ T6984]  do_rmdir+0x2cf/0x5c0
[  343.231333][ T6984]  ? d_delete_notify+0xd0/0xd0
[  343.235931][ T6984]  ? strncpy_from_user+0x18e/0x2d0
[  343.240879][ T6984]  ? getname_flags+0x1fd/0x520
[  343.245479][ T6984]  __x64_sys_unlinkat+0xdf/0xf0
[  343.250162][ T6984]  do_syscall_64+0x34/0x70
[  343.254419][ T6984]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  343.260144][ T6984] RIP: 0033:0x7f4e17d94687
[  343.264398][ T6984] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  343.283844][ T6984] RSP: 002b:00007ffdd5b61cd8 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  343.292080][ T6984] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007f4e17d94687
[  343.299891][ T6984] RDX: 0000000000000200 RSI: 00007ffdd5b62e80 RDI: 00000000ffffff9c
[  343.307707][ T6984] RBP: 00007f4e17df1636 R08: 0000000000000000 R09: 0000000000000000
[  343.315516][ T6984] R10: 0000000000000100 R11: 0000000000000207 R12: 00007ffdd5b62e80
[  343.323325][ T6984] R13: 00007f4e17df1636 R14: 0000000000053b74 R15: 0000000000000007
[  343.331138][ T6984] 
[  343.333305][ T6984] The buggy address belongs to the page:
[  343.338802][ T6984] page:ffffea0004ccc3c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x13330f
[  343.348842][ T6984] flags: 0x4000000000000000()
[  343.353366][ T6984] raw: 4000000000000000 ffffea0004d48f48 ffffea0004ccd808 0000000000000000
[  343.361795][ T6984] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[  343.370190][ T6984] page dumped because: kasan: bad access detected
[  343.376447][ T6984] page_owner tracks the page as freed
[  343.381661][ T6984] page last allocated via order 0, migratetype Movable, gfp_mask 0x8100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x8000000), pid 7053, ts 342979601380, free_ts 343015763597
[  343.398062][ T6984]  prep_new_page+0x166/0x180
[  343.402485][ T6984]  get_page_from_freelist+0x2d8c/0x2f30
[  343.407867][ T6984]  __alloc_pages_nodemask+0x435/0xaf0
[  343.413073][ T6984]  wp_page_copy+0x201/0x1940
[  343.417500][ T6984]  do_wp_page+0x71b/0xca0
[  343.421669][ T6984]  handle_pte_fault+0x1685/0x3e30
[  343.426526][ T6984]  __handle_speculative_fault+0x13a6/0x1ec0
[  343.432260][ T6984]  exc_page_fault+0x234/0x5b0
[  343.436770][ T6984]  asm_exc_page_fault+0x1e/0x30
[  343.441449][ T6984] page last free stack trace:
[  343.445966][ T6984]  free_unref_page_prepare+0x2ae/0x2d0
[  343.451261][ T6984]  free_unref_page_list+0x122/0xb20
[  343.456295][ T6984]  release_pages+0xea0/0xef0
[  343.460722][ T6984]  free_pages_and_swap_cache+0x8a/0xa0
[  343.466018][ T6984]  tlb_finish_mmu+0x177/0x320
[  343.470526][ T6984]  exit_mmap+0x312/0x5c0
[  343.474607][ T6984]  __mmput+0x95/0x2d0
[  343.478424][ T6984]  mmput+0x59/0x170
[  343.482069][ T6984]  do_exit+0xbda/0x2a50
[  343.486064][ T6984]  do_group_exit+0x141/0x310
[  343.490510][ T6984]  __x64_sys_exit_group+0x3f/0x40
[  343.495349][ T6984]  do_syscall_64+0x34/0x70
[  343.499605][ T6984]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  343.505328][ T6984] 
[  343.507497][ T6984] Memory state around the buggy address:
[  343.512972][ T6984]  ffff88813330ef00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  343.520870][ T6984]  ffff88813330ef80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  343.528766][ T6984] >ffff88813330f000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
1970/01/01 00:05:43 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  343.536661][ T6984]                    ^
[  343.540575][ T6984]  ffff88813330f080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  343.548469][ T6984]  ffff88813330f100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  343.556360][ T6984] ==================================================================
[  343.564274][ T6984] Disabling lock debugging due to kernel taint
[  343.600868][   T24] audit: type=1400 audit(343.009:29181): avc:  denied  { unmount } for  pid=6984 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  343.691931][ T1673] tipc: Left network mode