last executing test programs:

4.490967286s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, &(0x7f0000000080), 0x20)

4.474266909s ago: executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000680)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x810, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000001500)={0x2c, &(0x7f00000012c0)={0x0, 0x0, 0x3, {0x3, 0x0, 'k'}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xb, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000280)={'tunl0\x00', 0x0})
sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000014}, 0x44110)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x4}, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, {0x0, 0x0, 0x101}}}}]}, 0x78}}, 0x0)

3.398082105s ago: executing program 1:
pipe2$9p(&(0x7f0000000240), 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/snmp6\x00')
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/4\x00')
mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r3}})

3.362779441s ago: executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x112dd10, 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1007010, 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x8002, &(0x7f00000057c0)={[{@resuid}, {@nobarrier}, {@disable_ext_identify}, {@noflush_merge}, {@noinline_dentry}, {@jqfmt_vfsv1}, {@nodiscard}, {@lazytime}, {@prjjquota={'prjjquota', 0x3d, 'err\xeflA\xf5hJf\xf6\x9f\xf0R\x1dH\x7fMJE\x1b&\xf6s\x8b\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x00\xa8&\x00'}}, {@nodiscard}, {@inline_dentry}, {}, {@whint_mode_user}]}, 0x0, 0x551a, &(0x7f0000005a00)="$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")
r0 = memfd_create(&(0x7f0000000ec0)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x100800001)

2.708817281s ago: executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x5, 0x8, 0x1}, 0x48)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000940)={r3, &(0x7f0000000780)="d9", &(0x7f0000000900)=@udp=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

2.625038595s ago: executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f1000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b708000000000010"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

2.550406846s ago: executing program 4:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
creat(0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
readv(r2, &(0x7f0000002980)=[{&(0x7f0000000700)=""/163, 0xa3}], 0x2)

2.318266612s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffe00}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='ext4_allocate_blocks\x00', r1}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)

2.279573958s ago: executing program 1:
futex(&(0x7f0000000080), 0x18b, 0x1, 0x0, 0x0, 0x0)

2.145191238s ago: executing program 3:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)

2.139969119s ago: executing program 1:
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x2018040, &(0x7f00000002c0)={[{@numtail}, {@uni_xlate}, {@utf8no}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@rodir}, {@shortname_mixed}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'utf8'}}, {@uni_xlate}, {@shortname_lower}, {@numtail}, {@utf8no}, {@shortname_mixed}]}, 0x25, 0x344, &(0x7f0000000680)="$eJzs3U1oHOUbAPBnM0k2DfSfHP4geHH1JkhpAh70lFAqFHPQyuLXxcWmVbNrIYsrUch2L4pHxYugJ2896LFn8SDizYNXK0hVvNhbocWR3Znszn7ZRNjUj9/vsDw87/vM+8ww7E5C8u5LG7FzYSEu3rx5I5aWSjG/cWYjbpViNeYiicyV3usDAQD8O9xK0/gtzdx99gfLB9HijPsCAGan9/l/6eQgUb6X3QAAx+GQP/8/NTF7eWZtAQAzNPb5/9DQ8Miv+ef7fxMAAPxzPfP8C09ubkWcr1SWIhrvtqqtajw+GN+8GK9GPbbjdKzEnYjsQSF7Wui+PnFu6+zpStdPq1HtVrSqEY12q5o9KWwmvfpyrMVKrOb1ab8+6dav9eorEXGl3Vs/GqVWdSGW8/W/X47tWI+V+P9YfcS5rbPrlfwA1cZBfTuiE0sHJ9Ht/1SsxLcvx+Wox4Xo1g7631+rVM6kW0P1ravl3jwAAAAAAAAAAAAAAAAAAAAAAJiFU5W+1f7+N2mj3Xrn/OiE1aH9carZcL4/UCfbHygtH+zO814yuj/Q8P48rep8zN3TMwcAAAAAAAAAAAAAAAAAAIC/j+beYtTq9e3d5t5bO8WgXci8/vVnX554u9J4s1vRn/NaMqiK+exwQ8fJc1E4cjIoT/vlaTI0Jw+S4lpXr/U7Ls4p989irLwblMeGSnlPtXr95IM/fjyp6vdBJomxyzIclPL1C0ON/2WpP6maHqzfZc71NE2nle9/NF4VpYj5OHIbhwi+uvFKmqbpo73MF/mmDw8/svLs9Q8//WWnVo/80tTri7vNO+lfXisp3D+l/DqXJtwJk4POINPZbe7Vku9+fe7+978ZmZxMvn/SYuaN6Wt9PppZzIJum4c504UJN//k4MXb/bv36Bfzvk82atf2f/h5ZOjS0pSqwpvEXEQkM3n7AQAAAAAAAAAAAAAAAAAACgr/K34Ejz09u44AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4PgNvv+/EHTGMocJbrdjfKi8vducuviJYz1VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+w/4IAAD//1s9ejQ=")
openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x440, 0x0)

1.980417574s ago: executing program 2:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f1000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b708000000000010"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

1.931307362s ago: executing program 4:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
socket(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f1000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b708000000000010"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000016c0)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

1.273413363s ago: executing program 0:
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18020000002000000000000080000000850000003600000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.117267217s ago: executing program 0:
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000240)={'sit0\x00', &(0x7f0000000580)={'erspan0\x00', <r0=>0x0, 0x7, 0x700, 0x3ff, 0x8, {{0x2a, 0x4, 0x1, 0x0, 0xa8, 0x67, 0x0, 0x9, 0x4, 0x0, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp={0x44, 0x10, 0x0, 0x0, 0x7, [0x0, 0x7fff8000, 0x400]}, @noop, @timestamp={0x44, 0x18, 0xa5, 0x0, 0xc, [0x1, 0x42, 0x9, 0x400, 0x8]}, @generic={0x44, 0x8, "9d4744247a1e"}, @ssrr={0x89, 0x13, 0xc0, [@remote, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback]}, @end, @ssrr={0x89, 0x27, 0x83, [@dev={0xac, 0x14, 0x14, 0x15}, @multicast2, @empty, @private=0xa010102, @loopback, @local, @dev={0xac, 0x14, 0x14, 0x1c}, @private=0xa010100, @empty]}, @ssrr={0x89, 0x27, 0xff, [@private=0xa010102, @local, @private=0xa010101, @dev={0xac, 0x14, 0x14, 0x34}, @empty, @private=0xa010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @multicast2]}]}}}}})
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0xfffff001, '\x00', r0, r1, 0x4, 0x0, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3c}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x70)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x7f)
chown(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff)

1.107083979s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, &(0x7f0000000080), 0x20)

1.0956746s ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b405000091c3000071101c000000000027000000000000009500200000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd96, &(0x7f0000000080)=""/201, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffd56, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)

1.083669822s ago: executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000680)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x810, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000001500)={0x2c, &(0x7f00000012c0)={0x0, 0x0, 0x3, {0x3, 0x0, 'k'}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xb, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000280)={'tunl0\x00', 0x0})
sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000014}, 0x44110)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x4}, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, {0x0, 0x0, 0x101}}}}]}, 0x78}}, 0x0)

1.006855104s ago: executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/locks\x00', 0x0, 0x0)
preadv(r1, &(0x7f0000000140)=[{&(0x7f0000000000)=""/90, 0x5a}], 0x1, 0x0, 0x0)

984.827607ms ago: executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000540)='ext4_es_insert_delayed_block\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0x43451)

856.787557ms ago: executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=@base={0x16, 0x0, 0xb161, 0x2}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3, <r4=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000200)={r4, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000300)={0xffffffffffffffff, 0x6, 0x8}, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_newneigh={0x40, 0x1c, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8}, [@NDA_LLADDR={0xa, 0x2, @link_local}, @NDA_DST_IPV6={0x14, 0x1, @mcast1}, @NDA_FDB_EXT_ATTRS={0x4}]}, 0x40}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x12, 0x4, 0x100, 0x1, 0x4, r6, 0x80000001, '\x00', r8, r0, 0x3, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000040)={{}, &(0x7f00000002c0), &(0x7f00000001c0)='%pK    \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='block_split\x00'}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='block_split\x00', r9}, 0x10)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r10, &(0x7f0000000180), 0x40001)

799.352356ms ago: executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='ext4_es_lookup_extent_enter\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r2}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)

710.09353ms ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fffffff0000000000001d00000020000180140002006e657464657673696d30000000000000080003"], 0x34}}, 0x0)

700.557312ms ago: executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000003280)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000580)=ANY=[])

672.831636ms ago: executing program 4:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000003280)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000580)=ANY=[])

210.218467ms ago: executing program 3:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)

157.853595ms ago: executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000005600)='sys_enter\x00', r0}, 0x10)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

127.36276ms ago: executing program 3:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
r1 = open(&(0x7f00000001c0)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f00000003c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)

74.671658ms ago: executing program 1:
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x2018040, &(0x7f00000002c0)={[{@numtail}, {@uni_xlate}, {@utf8no}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '950'}}, {@rodir}, {@shortname_mixed}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'utf8'}}, {@uni_xlate}, {@shortname_lower}, {@numtail}, {@utf8no}, {@shortname_mixed}]}, 0x25, 0x344, &(0x7f0000000680)="$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")
openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x440, 0x0)

0s ago: executing program 3:
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$eJzs3UFrE1sYxvGnTW+TprTJhcuFe0E96EY3oY0fQIO0IAaU2hR1IUztREPGpMyESkRsNuLWD+Gq6M6doC7ddCNu3LsrguCmC3HETNImbVrTNklj+/9BmTd5z8OcttPyptDJ2o1n9/NZL5G1ShqMGA1KFa1L8V9VzUDtOFith9WoonOj3z6duH7z1pVUOj01Y8x0avZ80hgzfurNg0cvTr8rjc69Gn8d1mr89trX5OfVf1f/W/sxey/nmZxnCsWSscx8sViy5h3bLOS8fMKYa45tebbJFTzbbepnneLiYtlYhYWx6KJre56xCmWTt8umVDQlt2ysu1auYBKJhBmL6ngbamNNZmVmxkrt2PZDHd0Rum6k1ZOum6q0bmZWerAnAADQZ3af/4NZf+f5Pz0XHNua/18+l9qb/6VOzv8DPf2C9rlK06PfzP84Elw3ZUVrP7/NmP8BAAAAAAAAAAAAAAAAAAAAAPgTrPt+zPf9WP1Y/whLikiqPz7sfaI79vn9v3BI20WHNfzjXkRyni5lljLBMeinssrJka0JxfS9ej3UBPX05fTUhKmK662zXMsvL2VCCtfzdfFW+ZN/TwZ505z/S9HG8ycV0z+tz59smR/W2TMN+YRi+nBHRTlaqF7Xm/nHk8Zcuprekh+prgMAAAAA4ChImA3bXr9X+9UFEW3vB/k9/H1gy+vrIf3fzi0qAQAAAADAgXnlh3nLcWx3H0VY0gHieyj8ga6fonNFSH2xjS3FRUl9sI1eFRFJwTNmP/EvG/G2Un4ba4YkHfTzivTw0jrs30wAAAAAOm1z6N9D6OOTLu4IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDjp937gdXXb2vVG7vEG04X0vuNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAjp2fAQAA//91iCZA")
rename(&(0x7f0000000400)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fdatasync(r0)

kernel console output (not intermixed with test programs):

etected capacity change from 0 to 16
[  705.127521][T12216] usb 4-1: Using ep0 maxpacket: 8
[  705.136829][T29698] erofs: (device loop2): mounted with root inode @ nid 36.
[  705.193239][T29708] incfs: Options parsing error. -22
[  705.198585][T29708] incfs: mount failed -22
[  705.202388][T29710] loop1: detected capacity change from 0 to 256
[  705.214508][T29710] FAT-fs (loop1): Directory bread(block 64) failed
[  705.220942][T29710] FAT-fs (loop1): Directory bread(block 65) failed
[  705.229513][T29710] FAT-fs (loop1): Directory bread(block 66) failed
[  705.236196][T29710] FAT-fs (loop1): Directory bread(block 67) failed
[  705.242609][T29710] FAT-fs (loop1): Directory bread(block 68) failed
[  705.249548][T29710] FAT-fs (loop1): Directory bread(block 69) failed
[  705.255974][T29710] FAT-fs (loop1): Directory bread(block 70) failed
[  705.266776][T29710] FAT-fs (loop1): Directory bread(block 71) failed
[  705.273917][T29710] FAT-fs (loop1): Directory bread(block 72) failed
[  705.282367][T29710] FAT-fs (loop1): Directory bread(block 73) failed
[  705.283824][T29715] loop4: detected capacity change from 0 to 256
[  705.300529][T29715] FAT-fs (loop4): Directory bread(block 64) failed
[  705.307123][T29715] FAT-fs (loop4): Directory bread(block 65) failed
[  705.317172][T29715] FAT-fs (loop4): Directory bread(block 66) failed
[  705.323716][T29715] FAT-fs (loop4): Directory bread(block 67) failed
[  705.330122][T29715] FAT-fs (loop4): Directory bread(block 68) failed
[  705.339471][T29715] FAT-fs (loop4): Directory bread(block 69) failed
[  705.344979][T12216] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  705.346595][T29715] FAT-fs (loop4): Directory bread(block 70) failed
[  705.364920][T29715] FAT-fs (loop4): Directory bread(block 71) failed
[  705.373454][T29715] FAT-fs (loop4): Directory bread(block 72) failed
[  705.379939][T29715] FAT-fs (loop4): Directory bread(block 73) failed
[  705.402973][   T43] device bridge_slave_1 left promiscuous mode
[  705.409162][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  705.417630][   T43] device bridge_slave_0 left promiscuous mode
[  705.425619][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  705.444694][   T43] device veth1_macvtap left promiscuous mode
[  705.450516][   T28] kauditd_printk_skb: 492 callbacks suppressed
[  705.450530][   T28] audit: type=1326 audit(2000000078.796:99585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29722 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa88467cee9 code=0x0
[  705.480699][   T43] device veth0_vlan left promiscuous mode
[  705.482095][T29727] loop4: detected capacity change from 0 to 16
[  705.486443][   T28] audit: type=1326 audit(2000000078.796:99586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29724 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94127cee9 code=0x0
[  705.493167][T29727] erofs: (device loop4): mounted with root inode @ nid 36.
[  705.560812][T12216] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  705.569819][T12216] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  705.577744][T12216] usb 4-1: Product: syz
[  705.577762][T12216] usb 4-1: Manufacturer: syz
[  705.577775][T12216] usb 4-1: SerialNumber: syz
[  705.603092][T29733] binder: 29732:29733 ioctl c0306201 200003c0 returned -14
[  705.610218][T29674] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  705.626470][T12216] cdc_ether: probe of 4-1:1.0 failed with error -22
[  705.856164][T27126] usb 4-1: USB disconnect, device number 78
[  706.060300][T29767] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.067235][T29767] bridge0: port 1(bridge_slave_0) entered disabled state
[  706.074717][T29767] device bridge_slave_0 entered promiscuous mode
[  706.083677][T29767] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.090545][T29767] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.094907][T29773] loop4: detected capacity change from 0 to 256
[  706.098102][T29767] device bridge_slave_1 entered promiscuous mode
[  706.104049][T29773] exfat: Deprecated parameter 'namecase'
[  706.115159][T29773] exfat: Deprecated parameter 'utf8'
[  706.120216][T29773] exfat: Deprecated parameter 'namecase'
[  706.125729][T29773] exfat: Deprecated parameter 'utf8'
[  706.133068][T29773] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d)
[  706.164947][T29773] exFAT-fs (loop4): error, found bogus dentry(37) beyond unused empty group(22) (start_clu : 5, cur_clu : 5)
[  706.189630][T29775] Invalid ELF header magic: != ELF
[  706.205756][T29767] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.212631][T29767] bridge0: port 2(bridge_slave_1) entered forwarding state
[  706.219680][T29767] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.226506][T29767] bridge0: port 1(bridge_slave_0) entered forwarding state
[  706.247723][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  706.255447][    T6] bridge0: port 1(bridge_slave_0) entered disabled state
[  706.262459][    T6] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.272610][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  706.280584][  T705] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.287431][  T705] bridge0: port 1(bridge_slave_0) entered forwarding state
[  706.296446][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  706.305097][T12216] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.311935][T12216] bridge0: port 2(bridge_slave_1) entered forwarding state
[  706.330993][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  706.339018][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  706.347012][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  706.360169][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  706.370773][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  706.379456][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  706.393969][T29767] device veth0_vlan entered promiscuous mode
[  706.423076][T29767] device veth1_macvtap entered promiscuous mode
[  706.440217][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  706.448166][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  706.459741][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  706.467983][T29790] netem: change failed
[  706.484341][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  706.495002][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  706.524812][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  706.534530][   T28] audit: type=1400 audit(2000000079.802:99587): avc:  denied  { watch } for  pid=29798 comm="syz-executor.2" path="/proc/29798/fdinfo" dev="proc" ino=159516 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  706.536565][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  706.574225][T29801] incfs: Options parsing error. -22
[  706.584390][T29801] incfs: mount failed -22
[  706.587754][   T28] audit: type=1326 audit(2000000079.848:99588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29804 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff94127cee9 code=0x0
[  706.624970][   T43] device bridge_slave_1 left promiscuous mode
[  706.631872][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.639026][   T28] audit: type=1400 audit(2000000079.885:99589): avc:  denied  { getopt } for  pid=29806 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  706.659218][   T43] device bridge_slave_0 left promiscuous mode
[  706.665260][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  706.673989][   T43] device veth1_macvtap left promiscuous mode
[  706.680104][   T43] device veth0_vlan left promiscuous mode
[  706.834781][   T28] audit: type=1326 audit(2000000080.079:99590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29831 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f946547cee9 code=0x0
[  706.869534][T29834] loop3: detected capacity change from 0 to 512
[  706.884200][T29834] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  706.892968][T29834] ext4 filesystem being mounted at /root/syzkaller-testdir3915393762/syzkaller.4UM1xl/73/file0 supports timestamps until 2038 (0x7fffffff)
[  706.916786][T28696] EXT4-fs (loop3): unmounting filesystem.
[  706.990881][  T331] usb 3-1: new high-speed USB device number 81 using dummy_hcd
[  707.191358][T29855] overlayfs: metacopy with no lower data found - abort lookup (/file1)
[  707.199508][T29855] overlayfs: failed to look up (file1) for ino (-5)
[  707.380949][  T331] usb 3-1: config 0 has an invalid interface number: 182 but max is 0
[  707.388999][  T331] usb 3-1: config 0 has no interface number 0
[  707.394917][  T331] usb 3-1: config 0 interface 182 altsetting 0 endpoint 0x8 has invalid maxpacket 1023, setting to 64
[  707.405611][  T331] usb 3-1: config 0 interface 182 altsetting 0 endpoint 0x7 has an invalid bInterval 0, changing to 7
[  707.416478][  T331] usb 3-1: config 0 interface 182 altsetting 0 endpoint 0x7 has invalid maxpacket 1136, setting to 1024
[  707.427431][  T331] usb 3-1: config 0 interface 182 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  707.438261][  T331] usb 3-1: config 0 interface 182 altsetting 0 has a duplicate endpoint with address 0xF, skipping
[  707.448748][  T331] usb 3-1: config 0 interface 182 altsetting 0 has an invalid endpoint with address 0x80, skipping
[  707.459253][  T331] usb 3-1: config 0 interface 182 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 32
[  707.468977][  T331] usb 3-1: Dual-Role OTG device on HNP port
[  707.489254][  T331] usb 3-1: New USB device found, idVendor=2357, idProduct=0107, bcdDevice=a6.89
[  707.498163][  T331] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  707.507089][  T331] usb 3-1: config 0 descriptor??
[  707.513714][T29865] syz-executor.1[29865] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  707.513759][T29865] syz-executor.1[29865] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  707.533180][T29820] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  707.775224][    T6] usb 3-1: USB disconnect, device number 81
[  707.855419][T29891] syz-executor.0[29891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  707.855495][T29891] syz-executor.0[29891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  708.018545][T29895] bridge0: port 1(bridge_slave_0) entered blocking state
[  708.037166][T29895] bridge0: port 1(bridge_slave_0) entered disabled state
[  708.044338][T29895] device bridge_slave_0 entered promiscuous mode
[  708.052844][T29895] bridge0: port 2(bridge_slave_1) entered blocking state
[  708.059677][T29895] bridge0: port 2(bridge_slave_1) entered disabled state
[  708.066859][T29895] device bridge_slave_1 entered promiscuous mode
[  708.112274][T29895] bridge0: port 2(bridge_slave_1) entered blocking state
[  708.119120][T29895] bridge0: port 2(bridge_slave_1) entered forwarding state
[  708.126183][T29895] bridge0: port 1(bridge_slave_0) entered blocking state
[  708.133004][T29895] bridge0: port 1(bridge_slave_0) entered forwarding state
[  708.151859][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  708.159182][  T331] bridge0: port 1(bridge_slave_0) entered disabled state
[  708.166370][  T331] bridge0: port 2(bridge_slave_1) entered disabled state
[  708.177390][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  708.185377][    T6] bridge0: port 1(bridge_slave_0) entered blocking state
[  708.192218][    T6] bridge0: port 1(bridge_slave_0) entered forwarding state
[  708.210193][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  708.218415][    T6] bridge0: port 2(bridge_slave_1) entered blocking state
[  708.225267][    T6] bridge0: port 2(bridge_slave_1) entered forwarding state
[  708.233346][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  708.241153][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  708.253937][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  708.265409][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  708.273100][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  708.280357][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  708.287544][T29895] device veth0_vlan entered promiscuous mode
[  708.298480][T29895] device veth1_macvtap entered promiscuous mode
[  708.305122][T27126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  708.702447][T29904] device wireguard0 entered promiscuous mode
[  708.712664][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  708.722522][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  708.730859][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  708.766180][   T28] audit: type=1326 audit(2000000081.860:99591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29917 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66247cee9 code=0x7ffc0000
[  708.790530][   T28] audit: type=1326 audit(2000000081.860:99592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29917 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa66247cee9 code=0x7ffc0000
[  708.815111][   T28] audit: type=1326 audit(2000000081.860:99593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29917 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66247cee9 code=0x7ffc0000
[  708.840074][   T28] audit: type=1326 audit(2000000081.860:99594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29917 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa66247cee9 code=0x7ffc0000
[  708.889377][T29928] sit0: mtu greater than device maximum
[  709.049370][  T705] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[  709.093295][   T10] device bridge_slave_1 left promiscuous mode
[  709.099293][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  709.106494][   T10] device bridge_slave_0 left promiscuous mode
[  709.112477][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.120078][   T10] device veth1_macvtap left promiscuous mode
[  709.125971][   T10] device veth0_vlan left promiscuous mode
[  709.255206][T12216] usb 1-1: new high-speed USB device number 108 using dummy_hcd
[  709.301630][T29938] overlayfs: metacopy with no lower data found - abort lookup (/file1)
[  709.309372][  T705] usb 2-1: Using ep0 maxpacket: 32
[  709.309797][T29938] overlayfs: failed to look up (file1) for ino (-5)
[  709.346973][T29942] loop3: detected capacity change from 0 to 2048
[  709.385784][T29942]  loop3: p3 < > p4 < >
[  709.389842][T29942] loop3: partition table partially beyond EOD, truncated
[  709.396885][T29942] loop3: p3 start 4284289 is beyond EOD, truncated
[  709.439477][  T705] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  709.449468][  T705] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  709.469241][  T705] usb 2-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1
[  709.479129][  T705] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.495526][  T705] usb 2-1: config 0 descriptor??
[  709.515259][T12216] usb 1-1: Using ep0 maxpacket: 32
[  709.548132][  T705] usb 2-1: bad CDC descriptors
[  709.645268][T12216] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  709.655968][T12216] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  709.665624][T12216] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  709.674501][T12216] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.743770][T12216] hub 1-1:4.0: USB hub found
[  709.765794][  T705] usb 2-1: USB disconnect, device number 66
[  709.868066][T29952] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  709.877392][T29952] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  709.886565][T29952] tc_dump_action: action bad kind
[  709.981169][T12216] hub 1-1:4.0: 2 ports detected
[  710.631800][    T6] usb 2-1: new high-speed USB device number 67 using dummy_hcd
[  710.639323][ T2965] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[  710.934555][    T6] usb 2-1: Using ep0 maxpacket: 32
[  710.935222][T12142] usb 3-1: new high-speed USB device number 82 using dummy_hcd
[  711.118749][ T2965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  711.129541][    T6] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  711.140117][    T6] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  711.149675][ T2965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  711.159234][ T2965] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  711.168072][    T6] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  711.176925][ T2965] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  711.184738][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  711.193194][ T2965] usb 4-1: config 0 descriptor??
[  711.205371][T12142] usb 3-1: Using ep0 maxpacket: 32
[  711.249517][    T6] hub 2-1:4.0: USB hub found
[  711.335418][T12142] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  711.346099][T12142] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  711.355683][T12142] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  711.364515][T12142] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  711.384270][T27126] usb 1-1: USB disconnect, device number 108
[  711.400386][  T705] hub 1-1:4.0: hub_ext_port_status failed (err = -71)
[  711.411469][T12142] hub 3-1:4.0: USB hub found
[  711.497979][    T6] hub 2-1:4.0: 2 ports detected
[  711.649613][T12142] hub 3-1:4.0: 2 ports detected
[  712.126296][ T2965] usb 4-1: string descriptor 0 read error: -71
[  712.158791][ T2965] uclogic 0003:256C:006D.009B: failed retrieving string descriptor #200: -71
[  712.167384][ T2965] uclogic 0003:256C:006D.009B: failed retrieving pen parameters: -71
[  712.175302][ T2965] uclogic 0003:256C:006D.009B: failed probing pen v2 parameters: -71
[  712.183377][ T2965] uclogic 0003:256C:006D.009B: failed probing parameters: -71
[  712.190577][ T2965] uclogic: probe of 0003:256C:006D.009B failed with error -71
[  712.199116][ T2965] usb 4-1: USB disconnect, device number 79
[  712.899979][ T2965] usb 2-1: USB disconnect, device number 67
[  712.917214][    T6] hub 2-1:4.0: hub_ext_port_status failed (err = -71)
[  713.068915][T12142] hub 3-1:4.0: activate --> -90
[  713.350534][    T6] usb 1-1: new high-speed USB device number 109 using dummy_hcd
[  713.609590][T29983] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  713.618689][T29983] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  713.627684][    T6] usb 1-1: Using ep0 maxpacket: 32
[  713.632690][T29983] tc_dump_action: action bad kind
[  713.805669][    T6] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  713.815723][    T6] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  713.828691][    T6] usb 1-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1
[  713.837631][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  713.846459][    T6] usb 1-1: config 0 descriptor??
[  713.892791][    T6] usb 1-1: bad CDC descriptors
[  714.045846][T30005] bridge0: port 1(bridge_slave_0) entered blocking state
[  714.052683][T30005] bridge0: port 1(bridge_slave_0) entered disabled state
[  714.059945][T30005] device bridge_slave_0 entered promiscuous mode
[  714.066507][T30005] bridge0: port 2(bridge_slave_1) entered blocking state
[  714.073328][T30005] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.080746][T30005] device bridge_slave_1 entered promiscuous mode
[  714.112037][  T331] usb 1-1: USB disconnect, device number 109
[  714.133590][T30005] bridge0: port 2(bridge_slave_1) entered blocking state
[  714.140438][T30005] bridge0: port 2(bridge_slave_1) entered forwarding state
[  714.147506][T30005] bridge0: port 1(bridge_slave_0) entered blocking state
[  714.154321][T30005] bridge0: port 1(bridge_slave_0) entered forwarding state
[  714.176078][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  714.183407][  T705] bridge0: port 1(bridge_slave_0) entered disabled state
[  714.190648][  T705] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.199617][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  714.208076][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[  714.214898][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[  714.225074][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  714.233242][T12216] bridge0: port 2(bridge_slave_1) entered blocking state
[  714.240078][T12216] bridge0: port 2(bridge_slave_1) entered forwarding state
[  714.259689][T30005] device veth0_vlan entered promiscuous mode
[  714.266885][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  714.275109][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  714.283055][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  714.290252][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  714.297481][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  714.306025][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  714.319861][T30005] device veth1_macvtap entered promiscuous mode
[  714.326542][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  714.337533][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  714.349597][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  714.553768][T21075] device bridge_slave_1 left promiscuous mode
[  714.559722][T21075] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.567075][T21075] device bridge_slave_0 left promiscuous mode
[  714.573185][T21075] bridge0: port 1(bridge_slave_0) entered disabled state
[  714.586294][T21075] device veth1_macvtap left promiscuous mode
[  714.592198][T21075] device veth0_vlan left promiscuous mode
[  714.683783][    T6] usb 3-1: USB disconnect, device number 82
[  714.704830][T12142] hub 3-1:4.0: hub_ext_port_status failed (err = -71)
[  715.333234][    T6] usb 1-1: new high-speed USB device number 110 using dummy_hcd
[  715.494373][T30069] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  715.582467][T27126] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[  715.745100][    T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  715.756368][    T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  715.765937][    T6] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  715.778556][    T6] usb 1-1: New USB device found, idVendor=11c2, idProduct=2208, bcdDevice= 0.00
[  715.787359][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  715.795883][    T6] usb 1-1: config 0 descriptor??
[  715.827907][T30072] bridge0: port 1(bridge_slave_0) entered blocking state
[  715.834762][T30072] bridge0: port 1(bridge_slave_0) entered disabled state
[  715.841898][T30072] device bridge_slave_0 entered promiscuous mode
[  715.848821][T30072] bridge0: port 2(bridge_slave_1) entered blocking state
[  715.855751][T30072] bridge0: port 2(bridge_slave_1) entered disabled state
[  715.862806][T30072] device bridge_slave_1 entered promiscuous mode
[  715.864080][T27126] usb 4-1: Using ep0 maxpacket: 32
[  715.910006][T30072] bridge0: port 2(bridge_slave_1) entered blocking state
[  715.916837][T30072] bridge0: port 2(bridge_slave_1) entered forwarding state
[  715.923936][T30072] bridge0: port 1(bridge_slave_0) entered blocking state
[  715.930740][T30072] bridge0: port 1(bridge_slave_0) entered forwarding state
[  715.951509][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  715.958762][T12142] bridge0: port 1(bridge_slave_0) entered disabled state
[  715.965856][T12142] bridge0: port 2(bridge_slave_1) entered disabled state
[  715.974515][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  715.982461][  T538] bridge0: port 1(bridge_slave_0) entered blocking state
[  715.989301][  T538] bridge0: port 1(bridge_slave_0) entered forwarding state
[  716.000386][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  716.008338][  T538] bridge0: port 2(bridge_slave_1) entered blocking state
[  716.015162][  T538] bridge0: port 2(bridge_slave_1) entered forwarding state
[  716.028167][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  716.035841][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  716.043488][T27126] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  716.053664][T27126] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  716.067781][T27126] usb 4-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1
[  716.076655][T27126] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  716.085391][T27126] usb 4-1: config 0 descriptor??
[  716.097684][T30072] device veth0_vlan entered promiscuous mode
[  716.105255][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  716.113551][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  716.121310][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  716.128583][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  716.136136][T27126] usb 4-1: bad CDC descriptors
[  716.147646][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  716.155534][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  716.164097][T30072] device veth1_macvtap entered promiscuous mode
[  716.173804][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  716.181285][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  716.189404][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  716.200393][T27126] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  716.208388][T27126] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  716.323891][T30097] serio: Serial port pts0
[  716.330719][    T6] betop 0003:11C2:2208.009C: item fetching failed at offset 4/5
[  716.338245][    T6] betop 0003:11C2:2208.009C: parse failed
[  716.344053][    T6] betop: probe of 0003:11C2:2208.009C failed with error -22
[  716.351403][T21075] device bridge_slave_1 left promiscuous mode
[  716.357515][T21075] bridge0: port 2(bridge_slave_1) entered disabled state
[  716.364928][T21075] device bridge_slave_0 left promiscuous mode
[  716.367273][T12142] usb 4-1: USB disconnect, device number 80
[  716.370852][T21075] bridge0: port 1(bridge_slave_0) entered disabled state
[  716.384614][T21075] device veth1_macvtap left promiscuous mode
[  716.390417][T21075] device veth0_vlan left promiscuous mode
[  716.550663][  T331] usb 1-1: USB disconnect, device number 110
[  716.810432][T30107] device pim6reg1 entered promiscuous mode
[  716.905450][T30111] 9pnet: Could not find request transport: rdma
[  716.912346][   T28] kauditd_printk_skb: 44 callbacks suppressed
[  716.912359][   T28] audit: type=1400 audit(2000000089.375:99639): avc:  denied  { mounton } for  pid=30110 comm="syz-executor.2" path="/root/syzkaller-testdir1398812700/syzkaller.LZrqGD/15/file0" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[  716.915291][T30111] loop2: detected capacity change from 0 to 16
[  716.952686][T30111] erofs: (device loop2): mounted with root inode @ nid 36.
[  716.968675][T30115] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  717.114320][T30131] overlayfs: missing 'lowerdir'
[  717.233125][T30142] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  717.299133][T30144] overlayfs: statfs failed on './file0'
[  717.370132][  T538] usb 4-1: new high-speed USB device number 81 using dummy_hcd
[  717.393362][T30145] bridge0: port 1(bridge_slave_0) entered blocking state
[  717.400287][T30145] bridge0: port 1(bridge_slave_0) entered disabled state
[  717.408006][T30145] device bridge_slave_0 entered promiscuous mode
[  717.417096][T30145] bridge0: port 2(bridge_slave_1) entered blocking state
[  717.424041][T30145] bridge0: port 2(bridge_slave_1) entered disabled state
[  717.431359][T30145] device bridge_slave_1 entered promiscuous mode
[  717.510073][T30145] bridge0: port 2(bridge_slave_1) entered blocking state
[  717.516947][T30145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  717.524125][T30145] bridge0: port 1(bridge_slave_0) entered blocking state
[  717.530900][T30145] bridge0: port 1(bridge_slave_0) entered forwarding state
[  717.557198][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  717.564856][    T6] bridge0: port 1(bridge_slave_0) entered disabled state
[  717.573157][    T6] bridge0: port 2(bridge_slave_1) entered disabled state
[  717.600072][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  717.608740][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  717.616765][    T6] bridge0: port 1(bridge_slave_0) entered blocking state
[  717.623603][    T6] bridge0: port 1(bridge_slave_0) entered forwarding state
[  717.631954][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  717.639923][    T6] bridge0: port 2(bridge_slave_1) entered blocking state
[  717.646769][    T6] bridge0: port 2(bridge_slave_1) entered forwarding state
[  717.653972][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  717.661667][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  717.675735][T30145] device veth0_vlan entered promiscuous mode
[  717.684538][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  717.692396][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  717.699617][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  717.709379][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  717.718839][T30145] device veth1_macvtap entered promiscuous mode
[  717.727614][T28345] Bluetooth: hci0: command 0x1003 tx timeout
[  717.727664][ T1292] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  717.734836][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  717.751020][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  717.762581][  T344] device bridge_slave_1 left promiscuous mode
[  717.768542][  T344] bridge0: port 2(bridge_slave_1) entered disabled state
[  717.775865][  T344] device bridge_slave_0 left promiscuous mode
[  717.781977][  T538] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  717.782218][  T344] bridge0: port 1(bridge_slave_0) entered disabled state
[  717.792881][  T538] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  717.809135][  T538] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  717.817945][  T538] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  717.818039][  T344] device veth1_macvtap left promiscuous mode
[  717.831894][  T538] usb 4-1: config 0 descriptor??
[  717.836829][  T344] device veth0_vlan left promiscuous mode
[  717.849429][T30168] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  717.968000][T30174] overlayfs: missing 'lowerdir'
[  718.106628][T30176] bridge0: port 1(bridge_slave_0) entered blocking state
[  718.113565][T30176] bridge0: port 1(bridge_slave_0) entered disabled state
[  718.121021][T30176] device bridge_slave_0 entered promiscuous mode
[  718.128271][T30176] bridge0: port 2(bridge_slave_1) entered blocking state
[  718.135225][T30176] bridge0: port 2(bridge_slave_1) entered disabled state
[  718.142562][T30176] device bridge_slave_1 entered promiscuous mode
[  718.185936][T30176] bridge0: port 2(bridge_slave_1) entered blocking state
[  718.192767][T30176] bridge0: port 2(bridge_slave_1) entered forwarding state
[  718.199849][T30176] bridge0: port 1(bridge_slave_0) entered blocking state
[  718.206669][T30176] bridge0: port 1(bridge_slave_0) entered forwarding state
[  718.227633][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  718.234881][T12142] bridge0: port 1(bridge_slave_0) entered disabled state
[  718.241898][T12142] bridge0: port 2(bridge_slave_1) entered disabled state
[  718.250491][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  718.259329][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[  718.266171][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[  718.289345][T30176] device veth0_vlan entered promiscuous mode
[  718.296483][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  718.304600][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  718.312282][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  718.320267][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  718.328657][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  718.336611][ T2965] bridge0: port 2(bridge_slave_1) entered blocking state
[  718.343422][ T2965] bridge0: port 2(bridge_slave_1) entered forwarding state
[  718.350563][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  718.358175][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  718.372746][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  718.380681][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  718.389935][T30176] device veth1_macvtap entered promiscuous mode
[  718.398651][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  718.406073][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  718.414761][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  718.439573][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  718.447962][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  718.470671][T30181] overlayfs: statfs failed on './file0'
[  718.531013][T30193] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'.
[  718.540219][T30193] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'.
[  718.778555][  T705] usb 3-1: new high-speed USB device number 83 using dummy_hcd
[  718.789969][  T344] device bridge_slave_1 left promiscuous mode
[  718.796025][  T344] bridge0: port 2(bridge_slave_1) entered disabled state
[  718.804155][  T344] device bridge_slave_0 left promiscuous mode
[  718.810130][  T344] bridge0: port 1(bridge_slave_0) entered disabled state
[  718.817777][  T344] device veth1_macvtap left promiscuous mode
[  718.823770][  T344] device veth0_vlan left promiscuous mode
[  719.092840][  T538] uclogic 0003:256C:006D.009D: failed retrieving string descriptor #200: -71
[  719.101487][  T538] uclogic 0003:256C:006D.009D: failed retrieving pen parameters: -71
[  719.109513][  T538] uclogic 0003:256C:006D.009D: failed probing pen v2 parameters: -71
[  719.119353][  T538] uclogic 0003:256C:006D.009D: failed probing parameters: -71
[  719.126685][  T538] uclogic: probe of 0003:256C:006D.009D failed with error -71
[  719.134818][  T538] usb 4-1: USB disconnect, device number 81
[  719.168579][  T705] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  719.179465][  T705] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  719.188904][  T705] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  719.197764][  T705] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  719.205968][  T705] usb 3-1: config 0 descriptor??
[  719.309384][ T2965] usb 1-1: new high-speed USB device number 111 using dummy_hcd
[  719.643358][T30215] syz-executor.3[30215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  719.643451][T30215] syz-executor.3[30215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  719.684677][T30219] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  719.705697][T30219] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  719.764492][ T2965] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  719.777138][ T2965] usb 1-1: New USB device found, idVendor=054c, idProduct=0002, bcdDevice= 0.00
[  719.785938][ T2965] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  719.795769][ T2965] usb 1-1: config 0 descriptor??
[  720.067853][T28345] Bluetooth: hci0: command 0x1003 tx timeout
[  720.078625][ T1292] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  720.089496][  T705] usb 3-1: string descriptor 0 read error: -71
[  720.111156][  T705] uclogic 0003:256C:006D.009E: failed retrieving string descriptor #200: -71
[  720.111167][ T2965] usb 1-1: string descriptor 0 read error: -71
[  720.111483][ T2965] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  720.120032][  T705] uclogic 0003:256C:006D.009E: failed retrieving pen parameters: -71
[  720.141166][  T705] uclogic 0003:256C:006D.009E: failed probing pen v2 parameters: -71
[  720.141693][ T2965] usb 1-1: USB disconnect, device number 111
[  720.149553][  T705] uclogic 0003:256C:006D.009E: failed probing parameters: -71
[  720.162868][  T705] uclogic: probe of 0003:256C:006D.009E failed with error -71
[  720.171388][  T705] usb 3-1: USB disconnect, device number 83
[  720.173426][T30237] syz-executor.1[30237] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  720.177384][T30237] syz-executor.1[30237] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  720.217923][T30239] fuse: Bad value for 'fd'
[  720.620346][T12142] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[  720.660074][T30245] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'.
[  720.669369][T30245] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'.
[  720.880517][T12142] usb 2-1: Using ep0 maxpacket: 32
[  720.914700][T30265] fuse: Bad value for 'fd'
[  720.952136][T30270] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  720.964294][T30270] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  721.010394][T12142] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  721.024266][T12142] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  721.045866][T12142] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  721.058371][T12142] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  721.108675][T12142] hub 2-1:4.0: USB hub found
[  721.204562][T30290] loop3: detected capacity change from 0 to 256
[  721.212877][T30290] exfat: Deprecated parameter 'utf8'
[  721.218247][T30290] exfat: Deprecated parameter 'namecase'
[  721.224787][T30290] exfat: Bad value for 'namecase'
[  721.346332][T12142] hub 2-1:4.0: 2 ports detected
[  721.684481][T30327] loop4: detected capacity change from 0 to 256
[  721.691030][T30327] exfat: Deprecated parameter 'utf8'
[  721.696780][T30327] exfat: Deprecated parameter 'namecase'
[  721.702301][T30327] exfat: Bad value for 'namecase'
[  722.231475][T30341] fuse: Bad value for 'fd'
[  722.250556][   T28] audit: type=1326 audit(2000000094.304:99640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30304 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effd0e7cee9 code=0x7fc00000
[  722.296760][T30347] loop3: detected capacity change from 0 to 16
[  722.303624][T30347] erofs: (device loop3): erofs_read_inode: unsupported chunk format ffff of nid 36
[  722.344728][T30347] usb usb8: usbfs: process 30347 (syz-executor.3) did not claim interface 0 before use
[  722.506988][T30363] fuse: Bad value for 'fd'
[  722.765543][T12142] hub 2-1:4.0: activate --> -90
[  723.372208][ T2965] usb 1-1: new high-speed USB device number 112 using dummy_hcd
[  723.483991][   T28] audit: type=1326 audit(2000000095.448:99641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30367 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bcb47cee9 code=0x7fc00000
[  723.643082][ T2965] usb 1-1: Using ep0 maxpacket: 32
[  723.784070][ T2965] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  723.806019][   T28] audit: type=1326 audit(2000000095.744:99642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  723.810057][ T2965] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  723.839580][ T2965] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  723.848707][ T2965] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  723.857043][   T28] audit: type=1326 audit(2000000095.744:99643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  723.881241][   T28] audit: type=1326 audit(2000000095.744:99644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  723.905341][   T28] audit: type=1326 audit(2000000095.744:99645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  723.930093][ T2965] hub 1-1:4.0: USB hub found
[  723.934704][   T28] audit: type=1326 audit(2000000095.744:99646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  723.958768][   T28] audit: type=1326 audit(2000000095.744:99647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  723.983956][   T28] audit: type=1326 audit(2000000095.744:99648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  724.008119][   T28] audit: type=1326 audit(2000000095.744:99649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  724.032093][   T28] audit: type=1326 audit(2000000095.744:99650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30378 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1a47cee9 code=0x7fc00000
[  724.066667][T30397] loop3: detected capacity change from 0 to 16
[  724.073060][T30397] erofs: (device loop3): erofs_read_inode: unsupported chunk format ffff of nid 36
[  724.110202][T30397] usb usb8: usbfs: process 30397 (syz-executor.3) did not claim interface 0 before use
[  724.152336][ T2965] hub 1-1:4.0: 2 ports detected
[  724.271498][   T24] usb 3-1: new high-speed USB device number 84 using dummy_hcd
[  724.386828][T30408] device veth0_vlan left promiscuous mode
[  724.392704][T30408] device veth0_vlan entered promiscuous mode
[  724.399093][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  724.407729][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  724.415695][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  724.422966][  T331] usb 2-1: USB disconnect, device number 68
[  724.428719][T12142] hub 2-1:4.0: hub_ext_port_status failed (err = -71)
[  724.661564][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  724.672425][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  724.681982][   T24] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  724.690843][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  724.699063][   T24] usb 3-1: config 0 descriptor??
[  725.571606][ T2965] hub 1-1:4.0: activate --> -90
[  725.701615][  T538] usb 4-1: new high-speed USB device number 82 using dummy_hcd
[  725.929204][   T24] uclogic 0003:256C:006D.009F: failed retrieving string descriptor #200: -71
[  725.937816][   T24] uclogic 0003:256C:006D.009F: failed retrieving pen parameters: -71
[  725.945719][   T24] uclogic 0003:256C:006D.009F: failed probing pen v2 parameters: -71
[  725.953702][   T24] uclogic 0003:256C:006D.009F: failed probing parameters: -71
[  725.960889][   T24] uclogic: probe of 0003:256C:006D.009F failed with error -71
[  725.968832][   T24] usb 3-1: USB disconnect, device number 84
[  726.167538][  T538] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  726.178341][  T538] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  726.187940][  T538] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  726.200571][  T538] usb 4-1: New USB device found, idVendor=11c2, idProduct=2208, bcdDevice= 0.00
[  726.209450][  T538] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  726.217788][  T538] usb 4-1: config 0 descriptor??
[  726.294453][T30442] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.1'.
[  726.611714][  T331] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[  726.624376][T30450] bridge0: port 1(bridge_slave_0) entered blocking state
[  726.631266][T30450] bridge0: port 1(bridge_slave_0) entered disabled state
[  726.638477][T30450] device bridge_slave_0 entered promiscuous mode
[  726.645217][T30450] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.652037][T30450] bridge0: port 2(bridge_slave_1) entered disabled state
[  726.659302][T30450] device bridge_slave_1 entered promiscuous mode
[  726.703459][T30450] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.710295][T30450] bridge0: port 2(bridge_slave_1) entered forwarding state
[  726.717365][T30450] bridge0: port 1(bridge_slave_0) entered blocking state
[  726.724186][T30450] bridge0: port 1(bridge_slave_0) entered forwarding state
[  726.732173][  T538] betop 0003:11C2:2208.00A0: item fetching failed at offset 4/5
[  726.739784][  T538] betop 0003:11C2:2208.00A0: parse failed
[  726.746087][  T538] betop: probe of 0003:11C2:2208.00A0 failed with error -22
[  726.755313][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  726.762636][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  726.771383][   T24] bridge0: port 2(bridge_slave_1) entered disabled state
[  726.786260][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  726.794216][  T705] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.801164][  T705] bridge0: port 2(bridge_slave_1) entered forwarding state
[  726.808381][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  726.816091][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  726.830647][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  726.842255][T30450] device veth0_vlan entered promiscuous mode
[  726.852137][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  726.859827][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  726.867030][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  726.871663][  T331] usb 2-1: Using ep0 maxpacket: 8
[  726.877949][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  726.887934][T30450] device veth1_macvtap entered promiscuous mode
[  726.899449][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  726.908102][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  726.933459][T30455] device veth0_vlan left promiscuous mode
[  726.939705][T30455] device veth0_vlan entered promiscuous mode
[  726.952189][  T705] usb 4-1: USB disconnect, device number 82
[  727.002115][  T331] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  727.088391][  T331] usb 2-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  727.097344][  T331] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[  727.105354][  T331] usb 2-1: SerialNumber: syz
[  727.110601][  T331] usb 2-1: config 0 descriptor??
[  727.153847][  T331] usb 2-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  727.160590][  T331] uvcvideo 2-1:0.0: Entity type for entity Output 255 was not initialized!
[  727.169034][  T331] usb 2-1: Failed to create links for entity 255
[  727.169297][   T43] device bridge_slave_1 left promiscuous mode
[  727.175282][  T331] usb 2-1: Failed to register entities (-22).
[  727.181150][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  727.194328][   T43] device bridge_slave_0 left promiscuous mode
[  727.197252][  T705] usb 1-1: USB disconnect, device number 112
[  727.200437][ T2965] hub 1-1:4.0: hub_ext_port_status failed (err = -71)
[  727.212759][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  727.220470][   T43] device veth1_macvtap left promiscuous mode
[  727.226363][   T43] device veth0_vlan left promiscuous mode
[  727.360107][T30469] overlayfs: upper fs does not support tmpfile.
[  727.367008][T30469] overlayfs: upper fs does not support tmpfile.
[  727.382763][  T331] usb 2-1: USB disconnect, device number 69
[  727.676199][T30486] loop3: detected capacity change from 0 to 256
[  727.733079][T30492] overlayfs: upper fs does not support tmpfile.
[  727.740222][T30492] overlayfs: upper fs does not support tmpfile.
[  727.790815][T30498] overlayfs: statfs failed on './file0'
[  727.861466][T30517] loop0: detected capacity change from 0 to 256
[  727.906622][T30522] overlayfs: statfs failed on './file0'
[  727.985903][T30529] overlayfs: statfs failed on './file0'
[  728.045076][T30535] overlayfs: upper fs does not support tmpfile.
[  728.061527][T30535] overlayfs: upper fs does not support tmpfile.
[  728.104861][T30530] bridge0: port 1(bridge_slave_0) entered blocking state
[  728.112410][T30546] loop1: detected capacity change from 0 to 256
[  728.127750][T30530] bridge0: port 1(bridge_slave_0) entered disabled state
[  728.149953][T30530] device bridge_slave_0 entered promiscuous mode
[  728.157152][T30530] bridge0: port 2(bridge_slave_1) entered blocking state
[  728.164081][T30530] bridge0: port 2(bridge_slave_1) entered disabled state
[  728.171313][T30530] device bridge_slave_1 entered promiscuous mode
[  728.337970][T30530] bridge0: port 2(bridge_slave_1) entered blocking state
[  728.344847][T30530] bridge0: port 2(bridge_slave_1) entered forwarding state
[  728.351945][T30530] bridge0: port 1(bridge_slave_0) entered blocking state
[  728.358728][T30530] bridge0: port 1(bridge_slave_0) entered forwarding state
[  728.392380][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  728.400206][  T538] bridge0: port 1(bridge_slave_0) entered disabled state
[  728.408640][  T538] bridge0: port 2(bridge_slave_1) entered disabled state
[  728.435078][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  728.443662][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[  728.448104][T30564] loop2: detected capacity change from 0 to 256
[  728.450505][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[  728.450799][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  728.471833][ T2965] bridge0: port 2(bridge_slave_1) entered blocking state
[  728.478691][ T2965] bridge0: port 2(bridge_slave_1) entered forwarding state
[  728.486062][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  728.503791][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  728.516974][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  728.530077][T30530] device veth0_vlan entered promiscuous mode
[  728.536868][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  728.548824][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  728.556638][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  728.571891][T30530] device veth1_macvtap entered promiscuous mode
[  728.584388][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  728.598815][  T538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  728.612203][ T2965] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  728.631488][T30576] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  728.768894][T30592] loop0: detected capacity change from 0 to 512
[  728.774977][T30594] overlayfs: upper fs does not support tmpfile.
[  728.786995][T30594] overlayfs: upper fs does not support tmpfile.
[  728.799026][T30592] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  728.823213][T30592] EXT4-fs (loop0): orphan cleanup on readonly fs
[  728.829979][T30592] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz-executor.0: bg 0: block 248: padding at end of block bitmap is not set
[  728.845108][T30592] EXT4-fs (loop0): 1 truncate cleaned up
[  728.885008][T30592] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  728.899697][T30592] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.0'.
[  728.910864][T30592] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  728.930908][T30530] EXT4-fs (loop0): unmounting filesystem.
[  728.933482][T30607] loop2: detected capacity change from 0 to 256
[  728.938983][T30574] loop1: detected capacity change from 0 to 40427
[  728.956193][T30574] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  728.968582][T30611] overlayfs: statfs failed on './file0'
[  728.974576][T30574] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  728.992312][T30574] F2FS-fs (loop1): Found nat_bits in checkpoint
[  729.101038][T30574] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  729.108006][T30574] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  729.130755][T30636] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  729.163076][   T28] kauditd_printk_skb: 3450 callbacks suppressed
[  729.163090][   T28] audit: type=1326 audit(2000000100.691:103099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.202931][   T28] audit: type=1326 audit(2000000100.700:103100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.227345][   T28] audit: type=1326 audit(2000000100.700:103101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.258689][   T28] audit: type=1326 audit(2000000100.700:103102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.278808][T30642] overlayfs: statfs failed on './file0'
[  729.292748][   T28] audit: type=1326 audit(2000000100.700:103103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.319083][   T28] audit: type=1326 audit(2000000100.700:103104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.348629][   T28] audit: type=1326 audit(2000000100.700:103105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.372982][   T28] audit: type=1326 audit(2000000100.700:103106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30639 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  729.459477][T30663] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  729.462634][T30664] loop3: detected capacity change from 0 to 512
[  729.476374][T30664] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  729.491549][   T28] audit: type=1326 audit(2000000100.986:103107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30665 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff94127cee9 code=0x7ffc0000
[  729.495936][T30664] EXT4-fs (loop3): orphan cleanup on readonly fs
[  729.522925][T30664] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz-executor.3: bg 0: block 248: padding at end of block bitmap is not set
[  729.537052][   T28] audit: type=1326 audit(2000000100.986:103108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30665 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7ff94127cee9 code=0x7ffc0000
[  729.539323][T30664] EXT4-fs (loop3): 1 truncate cleaned up
[  729.569999][T30664] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  729.590127][T30664] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.3'.
[  729.599410][T30664] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  729.614422][T30005] EXT4-fs (loop3): unmounting filesystem.
[  729.644814][T30675] serio: Serial port ptm0
[  729.698075][T30660] loop2: detected capacity change from 0 to 40427
[  729.705365][T30660] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  729.715626][T30660] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  729.730407][T30660] F2FS-fs (loop2): Found nat_bits in checkpoint
[  729.753312][T30693] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  729.784787][T30660] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  729.795909][T30660] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  729.798245][T30698] loop1: detected capacity change from 0 to 512
[  729.811170][T30698] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  729.820931][T30698] EXT4-fs (loop1): orphan cleanup on readonly fs
[  729.827949][T30698] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz-executor.1: bg 0: block 248: padding at end of block bitmap is not set
[  729.842899][T30698] EXT4-fs (loop1): 1 truncate cleaned up
[  729.877050][T30698] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  729.889288][T30698] netlink: 108 bytes leftover after parsing attributes in process `syz-executor.1'.
[  729.906499][T28631] EXT4-fs (loop1): unmounting filesystem.
[  729.961623][T30716] serio: Serial port ptm1
[  729.963398][T30719] serio: Serial port ptm0
[  729.975542][T30721] tipc: Failed to remove unknown binding: 66,1,1/0:2731383364/2731383366
[  729.984058][T30721] tipc: Failed to remove unknown binding: 66,1,1/0:2731383364/2731383366
[  729.992520][T30720] tipc: Failed to remove unknown binding: 66,1,1/0:2731383364/2731383366
[  730.000791][T30720] tipc: Failed to remove unknown binding: 66,1,1/0:2731383364/2731383366
[  730.046508][T30735] loop2: detected capacity change from 0 to 512
[  730.053456][T30735] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  730.062764][T30735] EXT4-fs (loop2): orphan cleanup on readonly fs
[  730.070306][T30735] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz-executor.2: bg 0: block 248: padding at end of block bitmap is not set
[  730.085161][T30735] EXT4-fs (loop2): 1 truncate cleaned up
[  730.111417][T30735] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  730.131285][T30450] EXT4-fs (loop2): unmounting filesystem.
[  730.171036][T30753] serio: Serial port ptm0
[  730.235304][T30757] serio: Serial port ptm0
[  730.303509][T30760] loop0: detected capacity change from 0 to 2048
[  730.317005][T27126] usb 4-1: new high-speed USB device number 83 using dummy_hcd
[  730.339821][T30760] Alternate GPT is invalid, using primary GPT.
[  730.345957][T30760]  loop0: p1 p2 p3
[  730.409861][T30774] overlayfs: statfs failed on './file0'
[  730.587901][T27126] usb 4-1: Using ep0 maxpacket: 8
[  730.675127][   T43] device bridge_slave_1 left promiscuous mode
[  730.681137][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  730.688312][   T43] device bridge_slave_0 left promiscuous mode
[  730.694211][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  730.696327][  T538] usb 1-1: new high-speed USB device number 113 using dummy_hcd
[  730.708601][ T2965] usb 3-1: new high-speed USB device number 85 using dummy_hcd
[  730.715971][   T43] device veth1_macvtap left promiscuous mode
[  730.721858][   T43] device veth0_vlan left promiscuous mode
[  730.729490][T27126] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  730.837086][T27126] usb 4-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  730.846099][T27126] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[  730.854228][T27126] usb 4-1: SerialNumber: syz
[  730.859602][T27126] usb 4-1: config 0 descriptor??
[  730.913421][T27126] usb 4-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  730.920114][T27126] uvcvideo 4-1:0.0: Entity type for entity Output 255 was not initialized!
[  730.928553][T27126] usb 4-1: Failed to create links for entity 255
[  730.934756][T27126] usb 4-1: Failed to register entities (-22).
[  731.118788][  T538] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  731.131558][ T2965] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  731.142297][ T2965] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  731.151898][ T2965] usb 3-1: New USB device found, idVendor=0810, idProduct=0002, bcdDevice= 0.00
[  731.161075][   T24] usb 4-1: USB disconnect, device number 83
[  731.162315][ T2965] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.176175][ T2965] usb 3-1: config 0 descriptor??
[  731.229421][T30789] loop1: detected capacity change from 0 to 2048
[  731.270427][  T538] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  731.271175][T30789] Alternate GPT is invalid, using primary GPT.
[  731.279328][  T538] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  731.285482][T30789]  loop1: p1 p2 p3
[  731.293116][  T538] usb 1-1: SerialNumber: syz
[  731.346450][  T538] usb 1-1: bad CDC descriptors
[  731.569982][  T705] usb 1-1: USB disconnect, device number 113
[  731.715274][ T2965] pantherlord 0003:0810:0002.00A1: item fetching failed at offset 0/3
[  731.725056][ T2965] pantherlord 0003:0810:0002.00A1: parse failed
[  731.731313][ T2965] pantherlord: probe of 0003:0810:0002.00A1 failed with error -22
[  731.934797][  T705] usb 3-1: USB disconnect, device number 85
[  732.132052][T30812] serio: Serial port ptm0
[  732.198138][T30815] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  732.207472][T30815] FAT-fs (loop1): unable to read boot sector
[  732.300444][T30828] tipc: Started in network mode
[  732.305426][T30828] tipc: Node identity e0000001, cluster identity 4711
[  732.312100][T30828] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  732.330224][T30832] loop0: detected capacity change from 0 to 1024
[  732.344874][T30832] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  732.360103][T30530] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 32: comm syz-executor.0: path /root/syzkaller-testdir2181930226/syzkaller.zIigAq/33/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.386014][T30530] EXT4-fs error (device loop0): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor.0: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.405247][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.416795][T30530] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 32: comm syz-executor.0: path /root/syzkaller-testdir2181930226/syzkaller.zIigAq/33/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.442550][T30530] EXT4-fs error (device loop0): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor.0: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.461794][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.473450][T30530] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 32: comm syz-executor.0: path /root/syzkaller-testdir2181930226/syzkaller.zIigAq/33/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.499641][T30530] EXT4-fs error (device loop0): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor.0: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.519177][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.530740][T30530] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 32: comm syz-executor.0: path /root/syzkaller-testdir2181930226/syzkaller.zIigAq/33/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.556611][T30530] EXT4-fs error (device loop0): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor.0: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.576258][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.587880][T30530] EXT4-fs error (device loop0): ext4_readdir:260: inode #11: block 32: comm syz-executor.0: path /root/syzkaller-testdir2181930226/syzkaller.zIigAq/33/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.617572][T30530] EXT4-fs error (device loop0): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor.0: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  732.637224][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.649108][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.661075][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.672473][ T2965] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[  732.680466][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.692346][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.704307][T30530] EXT4-fs warning (device loop0): ext4_empty_dir:3101: inode #11: comm syz-executor.0: directory missing '.'
[  732.767861][T30855] tipc: Started in network mode
[  732.772552][T30855] tipc: Node identity e0000001, cluster identity 4711
[  732.779214][T30855] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  732.799744][  T344] tipc: Left network mode
[  732.800078][T30530] EXT4-fs (loop0): unmounting filesystem.
[  732.823490][T30859] loop2: detected capacity change from 0 to 512
[  732.831362][T30859] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  732.860317][T30859] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  732.871940][T30859] ext4 filesystem being mounted at /root/syzkaller-testdir1567974427/syzkaller.41UE8z/45/file1 supports timestamps until 2038 (0x7fffffff)
[  732.895105][T30866] tipc: Failed to remove unknown binding: 66,1,1/0:2100438024/2100438026
[  732.904283][T30450] EXT4-fs (loop2): unmounting filesystem.
[  732.905189][T30866] tipc: Failed to remove unknown binding: 66,1,1/0:2100438024/2100438026
[  732.980263][T30871] bridge0: port 1(bridge_slave_0) entered blocking state
[  732.987427][T30871] bridge0: port 1(bridge_slave_0) entered disabled state
[  732.994802][T30871] device bridge_slave_0 entered promiscuous mode
[  733.001713][T30871] bridge0: port 2(bridge_slave_1) entered blocking state
[  733.008831][T30871] bridge0: port 2(bridge_slave_1) entered disabled state
[  733.016117][T30871] device bridge_slave_1 entered promiscuous mode
[  733.023106][T30881] tipc: Failed to remove unknown binding: 66,1,1/0:964066443/964066445
[  733.031345][T30881] tipc: Failed to remove unknown binding: 66,1,1/0:964066443/964066445
[  733.060825][T30885] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  733.095989][T30871] bridge0: port 2(bridge_slave_1) entered blocking state
[  733.102838][T30871] bridge0: port 2(bridge_slave_1) entered forwarding state
[  733.109887][T30871] bridge0: port 1(bridge_slave_0) entered blocking state
[  733.116719][T30871] bridge0: port 1(bridge_slave_0) entered forwarding state
[  733.123964][ T2965] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  733.147091][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  733.155111][T12142] bridge0: port 1(bridge_slave_0) entered disabled state
[  733.162884][T12142] bridge0: port 2(bridge_slave_1) entered disabled state
[  733.181834][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  733.190401][  T705] bridge0: port 1(bridge_slave_0) entered blocking state
[  733.197266][  T705] bridge0: port 1(bridge_slave_0) entered forwarding state
[  733.204510][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  733.213176][  T705] bridge0: port 2(bridge_slave_1) entered blocking state
[  733.220118][  T705] bridge0: port 2(bridge_slave_1) entered forwarding state
[  733.236887][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  733.245445][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  733.253305][ T2965] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  733.261739][T30871] device veth0_vlan entered promiscuous mode
[  733.265508][ T2965] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  733.269172][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  733.284224][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  733.287140][ T2965] usb 2-1: SerialNumber: syz
[  733.292632][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  733.303905][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  733.317502][T30871] device veth1_macvtap entered promiscuous mode
[  733.329300][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  733.329403][ T2965] usb 2-1: bad CDC descriptors
[  733.344416][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  733.365888][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  733.394599][  T344] device bridge_slave_1 left promiscuous mode
[  733.400626][  T344] bridge0: port 2(bridge_slave_1) entered disabled state
[  733.408355][  T344] device bridge_slave_0 left promiscuous mode
[  733.414828][  T344] bridge0: port 1(bridge_slave_0) entered disabled state
[  733.423081][  T344] device veth1_macvtap left promiscuous mode
[  733.429332][  T344] device veth0_vlan left promiscuous mode
[  733.557245][ T2965] usb 2-1: USB disconnect, device number 70
[  733.664760][T12142] usb 1-1: new high-speed USB device number 114 using dummy_hcd
[  733.860681][T30894] incfs: Can't find or create .index dir in ./file0
[  733.867204][T30894] incfs: mount failed -14
[  733.912430][T30898] loop4: detected capacity change from 0 to 512
[  733.923047][T30898] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  733.937447][T30900] tipc: Failed to remove unknown binding: 66,1,1/0:4158772790/4158772792
[  733.947185][T30898] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  733.955921][T30900] tipc: Failed to remove unknown binding: 66,1,1/0:4158772790/4158772792
[  733.964483][T30898] ext4 filesystem being mounted at /root/syzkaller-testdir2625203710/syzkaller.GNGfAy/123/file1 supports timestamps until 2038 (0x7fffffff)
[  734.009120][T29058] EXT4-fs (loop4): unmounting filesystem.
[  734.034843][T30910] tipc: Failed to remove unknown binding: 66,1,1/0:3299722138/3299722140
[  734.043261][T30910] tipc: Failed to remove unknown binding: 66,1,1/0:3299722138/3299722140
[  734.054790][T12142] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  734.065523][T12142] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  734.080120][T12142] usb 1-1: New USB device found, idVendor=0810, idProduct=0002, bcdDevice= 0.00
[  734.090403][T12142] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  734.103909][T12142] usb 1-1: config 0 descriptor??
[  734.132741][T30928] tipc: Failed to remove unknown binding: 66,1,1/0:3590866948/3590866950
[  734.141111][T30928] tipc: Failed to remove unknown binding: 66,1,1/0:3590866948/3590866950
[  734.175882][T30932] loop4: detected capacity change from 0 to 512
[  734.182878][T30932] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  734.201407][T30932] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  734.210304][T30932] ext4 filesystem being mounted at /root/syzkaller-testdir2625203710/syzkaller.GNGfAy/127/file1 supports timestamps until 2038 (0x7fffffff)
[  734.231952][T29058] EXT4-fs (loop4): unmounting filesystem.
[  734.346882][T30957] tipc: Failed to remove unknown binding: 66,1,1/0:3830781487/3830781489
[  734.356254][T30957] tipc: Failed to remove unknown binding: 66,1,1/0:3830781487/3830781489
[  734.585728][   T28] kauditd_printk_skb: 8442 callbacks suppressed
[  734.585744][   T28] audit: type=1326 audit(2000000105.684:111545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2df3040329 code=0x7ffc0000
[  734.616391][   T28] audit: type=1326 audit(2000000105.721:111546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  734.630906][T12142] pantherlord 0003:0810:0002.00A2: item fetching failed at offset 0/3
[  734.640549][   T28] audit: type=1326 audit(2000000105.721:111547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2df307a667 code=0x7ffc0000
[  734.654510][T12142] pantherlord 0003:0810:0002.00A2: parse failed
[  734.675046][   T28] audit: type=1326 audit(2000000105.721:111548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2df3040329 code=0x7ffc0000
[  734.687572][T12142] pantherlord: probe of 0003:0810:0002.00A2 failed with error -22
[  734.706905][   T28] audit: type=1326 audit(2000000105.721:111549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  734.736243][   T28] audit: type=1326 audit(2000000105.721:111550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2df307a667 code=0x7ffc0000
[  734.760854][   T28] audit: type=1326 audit(2000000105.721:111551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2df3040329 code=0x7ffc0000
[  734.785395][   T28] audit: type=1326 audit(2000000105.721:111552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2df307cee9 code=0x7ffc0000
[  734.802484][T30986] tipc: Failed to remove unknown binding: 66,1,1/0:3011754406/3011754408
[  734.810159][   T28] audit: type=1326 audit(2000000105.721:111553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2df307a667 code=0x7ffc0000
[  734.818280][T30986] tipc: Failed to remove unknown binding: 66,1,1/0:3011754406/3011754408
[  734.842199][   T28] audit: type=1326 audit(2000000105.721:111554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30935 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2df3040329 code=0x7ffc0000
[  734.884755][ T2965] usb 1-1: USB disconnect, device number 114
[  736.004991][ T2965] usb 3-1: new high-speed USB device number 86 using dummy_hcd
[  736.417390][ T2965] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  736.428109][ T2965] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  736.437633][ T2965] usb 3-1: New USB device found, idVendor=0810, idProduct=0002, bcdDevice= 0.00
[  736.446613][ T2965] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  736.454814][ T2965] usb 3-1: config 0 descriptor??
[  736.487505][T31155] syz-executor.0[31155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.487553][T31155] syz-executor.0[31155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.501017][T31155] syz-executor.0[31155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.512694][T31155] syz-executor.0[31155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.547763][T31161] loop0: detected capacity change from 0 to 1024
[  736.566045][T31161] EXT4-fs: Ignoring removed orlov option
[  736.572179][T31161] EXT4-fs: Ignoring removed nomblk_io_submit option
[  736.605510][T31161] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  736.629756][T31161] EXT4-fs error (device loop0): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.0: corrupt xattr in inline inode
[  736.644479][T31161] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.0: corrupted in-inode xattr
[  736.688503][T30871] EXT4-fs (loop0): unmounting filesystem.
[  736.749460][T31186] syz-executor.3[31186] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.749529][T31186] syz-executor.3[31186] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.773800][T31186] syz-executor.3[31186] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.788356][T31186] syz-executor.3[31186] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  736.909504][T31183] loop0: detected capacity change from 0 to 40427
[  736.928386][T31183] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  736.935863][T31183] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  736.944949][T31183] F2FS-fs (loop0): invalid crc value
[  736.951237][T31183] F2FS-fs (loop0): Found nat_bits in checkpoint
[  736.959193][ T2965] pantherlord 0003:0810:0002.00A3: item fetching failed at offset 0/3
[  736.967355][ T2965] pantherlord 0003:0810:0002.00A3: parse failed
[  736.973844][ T2965] pantherlord: probe of 0003:0810:0002.00A3 failed with error -22
[  737.007771][T31183] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  737.015019][T31183] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  737.043477][T30871] syz-executor.0: attempt to access beyond end of device
[  737.043477][T30871] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  737.144967][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x1
[  737.152190][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.159989][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.167283][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.174602][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.181831][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.189176][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x4
[  737.199332][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.200972][T12142] usb 3-1: USB disconnect, device number 86
[  737.206550][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x2
[  737.219501][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.226658][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.233909][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.241091][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.248273][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x4
[  737.255503][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.262701][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.269886][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.278228][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.285443][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.292618][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.299831][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.307044][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.314238][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.321451][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.328669][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.335841][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.343062][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.350283][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.357454][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.364700][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.371893][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.379069][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.386278][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.393485][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.400672][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.407893][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.415110][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.422284][ T2965] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  737.430115][ T2965] hid-generic 0000:0000:0000.00A4: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  737.521167][T31248] loop4: detected capacity change from 0 to 256
[  737.530587][T31248] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  737.555709][T31248] FAT-fs (loop4): Directory bread(block 64) failed
[  737.568489][T31252] loop0: detected capacity change from 0 to 1024
[  737.575621][T31252] EXT4-fs: Ignoring removed orlov option
[  737.581552][T31248] FAT-fs (loop4): Directory bread(block 65) failed
[  737.588091][T31252] EXT4-fs: Ignoring removed nomblk_io_submit option
[  737.594584][T31248] FAT-fs (loop4): Directory bread(block 66) failed
[  737.601491][T31248] FAT-fs (loop4): Directory bread(block 67) failed
[  737.607874][T31248] FAT-fs (loop4): Directory bread(block 68) failed
[  737.614783][T31248] FAT-fs (loop4): Directory bread(block 69) failed
[  737.621184][T31248] FAT-fs (loop4): Directory bread(block 70) failed
[  737.628765][T31252] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  737.637107][T31248] FAT-fs (loop4): Directory bread(block 71) failed
[  737.643645][T31248] FAT-fs (loop4): Directory bread(block 72) failed
[  737.650034][T31248] FAT-fs (loop4): Directory bread(block 73) failed
[  737.679389][T31252] EXT4-fs error (device loop0): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.0: corrupt xattr in inline inode
[  737.709817][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x1
[  737.714557][T31252] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.0: corrupted in-inode xattr
[  737.718199][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.736323][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.743567][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.752378][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.759585][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.769394][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x4
[  737.776907][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.784179][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x2
[  737.792944][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.800626][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.801996][T31240] loop3: detected capacity change from 0 to 40427
[  737.808215][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.822305][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x1
[  737.824431][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.833284][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.843357][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x4
[  737.844806][T30871] EXT4-fs (loop0): unmounting filesystem.
[  737.857391][T31240] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  737.857755][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.864975][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.872144][T31240] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  737.879758][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.887693][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.901767][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.905007][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.909174][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.922393][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.923959][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x4
[  737.931515][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.938356][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.945445][T31240] F2FS-fs (loop3): invalid crc value
[  737.952622][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x2
[  737.957754][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.964917][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.972232][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  737.979421][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  737.986582][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.001088][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.004226][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.008397][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.015719][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.022967][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.030019][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x4
[  738.037260][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.044453][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.051630][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.058892][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.066219][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.073242][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.080364][T31240] F2FS-fs (loop3): Found nat_bits in checkpoint
[  738.087593][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.095996][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.100928][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.115271][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.116311][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.122487][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.136891][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.139163][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.144165][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.158491][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.159669][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.166052][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.175055][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.180340][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.188406][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.188428][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.188447][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.188465][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.188484][   T24] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  738.189128][   T24] hid-generic 0000:0000:0000.00A5: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  738.196981][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.204740][T31240] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  738.225378][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.232535][T31240] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  738.241774][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.277467][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.284677][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.292111][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.292423][T30005] syz-executor.3: attempt to access beyond end of device
[  738.292423][T30005] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  738.299301][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.299322][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.327650][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.334819][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.342002][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.349223][ T2965] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  738.361016][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x1
[  738.368661][ T2965] hid-generic 0000:0000:0000.00A6: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  738.380986][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.389903][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.397102][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.404803][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.406776][T31281] loop3: detected capacity change from 0 to 512
[  738.412075][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.425385][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x4
[  738.432617][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.433517][T31281] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  738.439771][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x2
[  738.439794][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.448695][T31281] ext4 filesystem being mounted at /root/syzkaller-testdir2947669192/syzkaller.lqu0lD/145/bus supports timestamps until 2038 (0x7fffffff)
[  738.455673][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.455693][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.491261][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.498404][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x4
[  738.505560][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.512797][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.519981][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.527184][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.534452][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.541825][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.550801][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.558061][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.565238][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.572438][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.579628][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.586827][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.594031][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.601220][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.608435][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.615622][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.622845][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.630303][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.843602][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.850922][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.858193][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.865373][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.872554][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.879947][  T538] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  738.888484][  T538] hid-generic 0000:0000:0000.00A7: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  738.931238][T31293] loop1: detected capacity change from 0 to 256
[  738.937896][T31293] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  738.958471][T31293] FAT-fs (loop1): Directory bread(block 64) failed
[  738.960356][T31297] loop0: detected capacity change from 0 to 1024
[  738.964884][T31293] FAT-fs (loop1): Directory bread(block 65) failed
[  738.964924][T31293] FAT-fs (loop1): Directory bread(block 66) failed
[  738.964943][T31293] FAT-fs (loop1): Directory bread(block 67) failed
[  738.964975][T31293] FAT-fs (loop1): Directory bread(block 68) failed
[  738.964992][T31293] FAT-fs (loop1): Directory bread(block 69) failed
[  738.965022][T31293] FAT-fs (loop1): Directory bread(block 70) failed
[  738.976324][T31297] EXT4-fs: Ignoring removed orlov option
[  738.977786][T31293] FAT-fs (loop1): Directory bread(block 71) failed
[  738.986159][T31297] EXT4-fs: Ignoring removed nomblk_io_submit option
[  738.990280][T31293] FAT-fs (loop1): Directory bread(block 72) failed
[  739.033862][T31293] FAT-fs (loop1): Directory bread(block 73) failed
[  739.052170][T31297] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  739.100638][T31297] EXT4-fs error (device loop0): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.0: corrupt xattr in inline inode
[  739.114257][T31297] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.0: corrupted in-inode xattr
[  739.148833][T30871] EXT4-fs (loop0): unmounting filesystem.
[  739.154755][T31287] loop4: detected capacity change from 0 to 40427
[  739.170342][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x1
[  739.177553][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.184979][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.190467][T31287] F2FS-fs (loop4): Found nat_bits in checkpoint
[  739.192644][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.205504][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.212737][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.219852][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x4
[  739.227298][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.232172][T31287] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  739.234570][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x2
[  739.249262][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.256716][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.264048][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.266038][  T538] usb 3-1: new high-speed USB device number 87 using dummy_hcd
[  739.271303][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.286027][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x4
[  739.293257][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.300456][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.317109][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.324398][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.331551][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.338758][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.346951][T30005] EXT4-fs (loop3): unmounting filesystem.
[  739.349011][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.361355][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.370249][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.371561][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x1
[  739.377541][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.377561][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.384917][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.392023][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.399378][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.399400][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.399419][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.399436][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.399455][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x4
[  739.399472][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.407241][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.414011][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x2
[  739.421642][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.439800][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.442984][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.464350][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.471859][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.507565][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.514774][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.522059][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x4
[  739.524776][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.534219][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.537779][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.544092][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.558187][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.564961][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.565855][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.580914][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.581401][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.588177][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.602654][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.609951][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.610691][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.617179][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.631626][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.638957][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.639593][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.646494][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.660812][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.661133][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.675245][  T705] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  739.675450][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.688777][  T705] hid-generic 0000:0000:0000.00A8: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  739.690060][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.706982][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.720285][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.728130][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.735518][  T538] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  739.747119][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.755008][  T538] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  739.770216][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.777599][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.784921][  T538] usb 3-1: New USB device found, idVendor=0810, idProduct=0002, bcdDevice= 0.00
[  739.794044][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.801712][  T538] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.809592][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.817067][ T2965] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  739.824441][  T538] usb 3-1: config 0 descriptor??
[  739.834668][T31317] bridge0: port 1(bridge_slave_0) entered blocking state
[  739.841567][ T2965] hid-generic 0000:0000:0000.00A9: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  739.851716][T31317] bridge0: port 1(bridge_slave_0) entered disabled state
[  739.859100][T31317] device bridge_slave_0 entered promiscuous mode
[  739.869547][T31317] bridge0: port 2(bridge_slave_1) entered blocking state
[  739.876562][T31317] bridge0: port 2(bridge_slave_1) entered disabled state
[  739.884917][T31317] device bridge_slave_1 entered promiscuous mode
[  739.901361][T31330] loop3: detected capacity change from 0 to 256
[  739.908498][T31330] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  739.930923][T31330] FAT-fs (loop3): Directory bread(block 64) failed
[  739.937326][T31330] FAT-fs (loop3): Directory bread(block 65) failed
[  739.944276][T31330] FAT-fs (loop3): Directory bread(block 66) failed
[  739.950688][T31330] FAT-fs (loop3): Directory bread(block 67) failed
[  739.956965][T31330] FAT-fs (loop3): Directory bread(block 68) failed
[  739.963328][T31330] FAT-fs (loop3): Directory bread(block 69) failed
[  739.969626][T31330] FAT-fs (loop3): Directory bread(block 70) failed
[  739.975982][T31330] FAT-fs (loop3): Directory bread(block 71) failed
[  739.982621][T31330] FAT-fs (loop3): Directory bread(block 72) failed
[  739.988954][T31330] FAT-fs (loop3): Directory bread(block 73) failed
[  740.022006][  T705] kernel write not supported for file /31333/net/snmp6 (pid: 705 comm: kworker/1:4)
[  740.048395][T31317] bridge0: port 2(bridge_slave_1) entered blocking state
[  740.055242][T31317] bridge0: port 2(bridge_slave_1) entered forwarding state
[  740.062358][T31317] bridge0: port 1(bridge_slave_0) entered blocking state
[  740.069144][T31317] bridge0: port 1(bridge_slave_0) entered forwarding state
[  740.104078][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  740.105827][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x1
[  740.118422][  T705] bridge0: port 1(bridge_slave_0) entered disabled state
[  740.118552][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.132543][  T705] bridge0: port 2(bridge_slave_1) entered disabled state
[  740.142981][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.156520][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  740.164209][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.164643][T12142] bridge0: port 1(bridge_slave_0) entered blocking state
[  740.178383][T12142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  740.185517][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.185675][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  740.201281][T12142] bridge0: port 2(bridge_slave_1) entered blocking state
[  740.205386][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.208127][T12142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  740.233842][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  740.233940][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x4
[  740.241891][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  740.259064][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.263164][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  740.276350][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x2
[  740.288242][T31317] device veth0_vlan entered promiscuous mode
[  740.290572][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.295357][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  740.309154][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  740.316429][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  740.324461][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.328884][T31317] device veth1_macvtap entered promiscuous mode
[  740.338471][T12142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  740.343320][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.359558][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.362212][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  740.371493][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x4
[  740.377375][  T705] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  740.382824][  T538] pantherlord 0003:0810:0002.00AB: item fetching failed at offset 0/3
[  740.400267][   T10] device bridge_slave_1 left promiscuous mode
[  740.407547][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.414859][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  740.426692][  T538] pantherlord 0003:0810:0002.00AB: parse failed
[  740.432855][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.432990][   T10] device bridge_slave_0 left promiscuous mode
[  740.444701][  T538] pantherlord: probe of 0003:0810:0002.00AB failed with error -22
[  740.448575][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  740.455340][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.471649][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.479365][   T10] device veth1_macvtap left promiscuous mode
[  740.480398][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.492461][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.497005][   T10] device veth0_vlan left promiscuous mode
[  740.499624][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.512396][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.517698][T31340] loop3: detected capacity change from 0 to 40427
[  740.519589][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.533047][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.544053][T31340] F2FS-fs (loop3): Found nat_bits in checkpoint
[  740.544339][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.559141][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.564747][T31338] loop1: detected capacity change from 0 to 40427
[  740.566441][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.581426][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.584006][T31338] F2FS-fs (loop1): Found nat_bits in checkpoint
[  740.626576][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.633735][T31340] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  740.634606][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.648468][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.648465][T31338] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  740.663658][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.670925][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.680824][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.693584][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.714430][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.728913][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.740411][ T2965] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  740.762246][ T2965] hid-generic 0000:0000:0000.00AA: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  740.784921][T31348] loop0: detected capacity change from 0 to 512
[  740.795278][T31348] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  740.803976][T31348] ext4 filesystem being mounted at /root/syzkaller-testdir2453141754/syzkaller.R2fTya/25/bus supports timestamps until 2038 (0x7fffffff)
[  740.867134][T12142] usb 3-1: USB disconnect, device number 87
[  740.882844][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x1
[  740.890035][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  740.897366][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  740.904709][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  740.911878][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  740.919092][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  740.926301][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x4
[  740.933508][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  740.940922][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x2
[  741.159854][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.167108][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.174312][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.181468][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.188700][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x4
[  741.195885][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.203079][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.210309][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.227004][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.234216][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.241453][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.251331][   T10] tipc: Left network mode
[  741.260434][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.269426][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.285510][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.300556][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.315522][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.330500][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.345519][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.355827][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.366186][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.373460][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.380637][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.387822][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.395622][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.402862][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.410053][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.417263][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.424509][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.437926][T31363] loop2: detected capacity change from 0 to 512
[  741.444045][T27126] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  741.454063][T27126] hid-generic 0000:0000:0000.00AC: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  741.482158][T31363] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  741.483231][T31370] loop4: detected capacity change from 0 to 512
[  741.491520][T31363] ext4 filesystem being mounted at /root/syzkaller-testdir1567974427/syzkaller.41UE8z/74/bus supports timestamps until 2038 (0x7fffffff)
[  741.514860][T31360] bridge0: port 1(bridge_slave_0) entered blocking state
[  741.522167][T31360] bridge0: port 1(bridge_slave_0) entered disabled state
[  741.529483][T31360] device bridge_slave_0 entered promiscuous mode
[  741.542993][T31360] bridge0: port 2(bridge_slave_1) entered blocking state
[  741.549907][T31360] bridge0: port 2(bridge_slave_1) entered disabled state
[  741.557168][T31360] device bridge_slave_1 entered promiscuous mode
[  741.598441][T31370] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  741.607757][T31370] ext4 filesystem being mounted at /root/syzkaller-testdir2123574051/syzkaller.JV6HAj/2/bus supports timestamps until 2038 (0x7fffffff)
[  742.100170][T30871] EXT4-fs (loop0): unmounting filesystem.
[  742.213950][T31361] bridge0: port 1(bridge_slave_0) entered blocking state
[  742.222226][T31361] bridge0: port 1(bridge_slave_0) entered disabled state
[  742.231794][T31361] device bridge_slave_0 entered promiscuous mode
[  742.257131][T31361] bridge0: port 2(bridge_slave_1) entered blocking state
[  742.264080][T31361] bridge0: port 2(bridge_slave_1) entered disabled state
[  742.271357][T31361] device bridge_slave_1 entered promiscuous mode
[  742.324679][T27126] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  742.331901][T27126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  742.385999][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  742.395231][T30450] EXT4-fs (loop2): unmounting filesystem.
[  742.414734][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  742.422787][  T311] bridge0: port 1(bridge_slave_0) entered blocking state
[  742.423465][T31317] EXT4-fs (loop4): unmounting filesystem.
[  742.429724][  T311] bridge0: port 1(bridge_slave_0) entered forwarding state
[  742.438806][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  742.450415][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  742.458506][  T311] bridge0: port 2(bridge_slave_1) entered blocking state
[  742.465343][  T311] bridge0: port 2(bridge_slave_1) entered forwarding state
[  742.472493][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  742.480271][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  742.487938][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  742.495720][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  742.503810][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  742.531898][  T844] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  742.541175][  T844] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  742.554171][T31360] device veth0_vlan entered promiscuous mode
[  742.565475][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  742.573120][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  742.580822][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  742.588389][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  742.607598][T31399] syz-executor.4[31399] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  742.607656][T31399] syz-executor.4[31399] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  742.619717][T12142] usb 1-1: new high-speed USB device number 115 using dummy_hcd
[  742.639092][T31360] device veth1_macvtap entered promiscuous mode
[  742.645691][T31399] syz-executor.4[31399] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  742.645753][T31399] syz-executor.4[31399] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  742.658309][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  742.690499][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  742.698067][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  742.705724][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  742.714443][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  742.725138][   T24] bridge0: port 1(bridge_slave_0) entered blocking state
[  742.731992][   T24] bridge0: port 1(bridge_slave_0) entered forwarding state
[  742.739362][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  742.748320][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  742.765722][   T24] bridge0: port 2(bridge_slave_1) entered blocking state
[  742.772568][   T24] bridge0: port 2(bridge_slave_1) entered forwarding state
[  742.781090][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  742.795566][   T10] device bridge_slave_1 left promiscuous mode
[  742.802773][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  742.815830][   T10] device bridge_slave_0 left promiscuous mode
[  742.825363][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  742.839552][   T10] device bridge_slave_1 left promiscuous mode
[  742.846209][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  742.853623][   T10] device bridge_slave_0 left promiscuous mode
[  742.859609][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  742.867357][   T10] device veth1_macvtap left promiscuous mode
[  742.873234][   T10] device veth0_vlan left promiscuous mode
[  742.879053][   T10] device veth1_macvtap left promiscuous mode
[  742.884891][   T10] device veth0_vlan left promiscuous mode
[  743.036427][T12142] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  743.047193][T12142] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  743.056738][T12142] usb 1-1: New USB device found, idVendor=0810, idProduct=0002, bcdDevice= 0.00
[  743.065583][T12142] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  743.074480][T12142] usb 1-1: config 0 descriptor??
[  743.133605][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  743.141600][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  743.149661][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  743.157641][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  743.165685][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  743.173819][  T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  743.194649][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  743.207715][T31361] device veth0_vlan entered promiscuous mode
[  743.215758][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  743.224154][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  743.231350][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  743.246335][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  743.255125][T31361] device veth1_macvtap entered promiscuous mode
[  743.264918][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  743.276432][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  743.282762][T31413] loop3: detected capacity change from 0 to 1024
[  743.291995][T31413] EXT4-fs: Ignoring removed orlov option
[  743.297617][T31413] EXT4-fs: Ignoring removed nomblk_io_submit option
[  743.298296][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  743.305022][T12216] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  743.332953][T31413] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  743.334341][T31417] loop1: detected capacity change from 0 to 256
[  743.348841][T31417] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  743.360854][T31413] EXT4-fs error (device loop3): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.3: corrupt xattr in inline inode
[  743.374662][T31413] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.3: corrupted in-inode xattr
[  743.378217][T31417] FAT-fs (loop1): Directory bread(block 64) failed
[  743.393975][T31417] FAT-fs (loop1): Directory bread(block 65) failed
[  743.400769][T31417] FAT-fs (loop1): Directory bread(block 66) failed
[  743.400852][T31360] ==================================================================
[  743.407445][T31417] FAT-fs (loop1): Directory bread(block 67) failed
[  743.414982][T31360] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xcd0/0xce0
[  743.421662][T31417] FAT-fs (loop1): Directory bread(block 68) failed
[  743.429136][T31360] Read of size 4 at addr ffff88816ab91000 by task syz-executor.3/31360
[  743.429153][T31360] 
2033/05/18 03:35:13 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  743.429160][T31360] CPU: 0 PID: 31360 Comm: syz-executor.3 Tainted: G        W          6.1.78-syzkaller-00134-g997e6b3f6a21 #0
[  743.429178][T31360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  743.429188][T31360] Call Trace:
[  743.429193][T31360]  <TASK>
[  743.429199][T31360]  dump_stack_lvl+0x151/0x1b7
[  743.435563][T31417] FAT-fs (loop1): Directory bread(block 69) failed
[  743.443536][T31360]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  743.443558][T31360]  ? _printk+0xd1/0x111
[  743.443579][T31360]  ? __virt_addr_valid+0x242/0x2f0
[  743.445754][T31417] FAT-fs (loop1): Directory bread(block 70) failed
[  743.457163][T31360]  print_report+0x158/0x4e0
[  743.457189][T31360]  ? __virt_addr_valid+0x242/0x2f0
[  743.457210][T31360]  ? kasan_addr_to_slab+0xd/0x80
[  743.457229][T31360]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  743.501518][T31417] FAT-fs (loop1): Directory bread(block 71) failed
[  743.504376][T31360]  kasan_report+0x13c/0x170
[  743.504404][T31360]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  743.504431][T31360]  __asan_report_load4_noabort+0x14/0x20
[  743.508866][T31417] FAT-fs (loop1): Directory bread(block 72) failed
[  743.513662][T31360]  ext4_xattr_delete_inode+0xcd0/0xce0
[  743.513689][T31360]  ? sb_end_intwrite+0x130/0x130
[  743.513707][T31360]  ? ext4_expand_extra_isize_ea+0x1c40/0x1c40
[  743.513731][T31360]  ? __kasan_check_read+0x11/0x20
[  743.513744][T31360]  ? ext4_inode_is_fast_symlink+0x295/0x3d0
[  743.518494][T31417] FAT-fs (loop1): Directory bread(block 73) failed
[  743.523903][T31360]  ? ext4_evict_inode+0xbc2/0x1550
[  743.523928][T31360]  ext4_evict_inode+0xef9/0x1550
[  743.523946][T31360]  ? _raw_spin_unlock+0x4c/0x70
[  743.523969][T31360]  ? ext4_inode_is_fast_symlink+0x3d0/0x3d0
[  743.523987][T31360]  ? _raw_spin_unlock+0x4c/0x70
[  743.609570][T31360]  ? inode_io_list_del+0x18b/0x1a0
[  743.614520][T31360]  ? ext4_inode_is_fast_symlink+0x3d0/0x3d0
[  743.620246][T31360]  evict+0x2a3/0x630
[  743.623980][T31360]  iput+0x642/0x870
[  743.627623][T31360]  vfs_rmdir+0x3c2/0x500
[  743.631703][T31360]  do_rmdir+0x3ab/0x630
[  743.635717][T31360]  ? d_delete_notify+0x160/0x160
[  743.640474][T31360]  __x64_sys_unlinkat+0xdf/0xf0
[  743.645158][T31360]  do_syscall_64