last executing test programs:

2.041329512s ago: executing program 2 (id=1080):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, 0x0)
readv(r0, 0x0, 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="6c617a7974696d652c6e6f696e6c696e655f78617474722c6c617a7974696d652c6e6f626172726965722c6163746976655f6c6f67733d342c757365725f78617474722c6d6f64653d6c66732c616c6c6f635f6d6f64653d64656661756c742c00be9ee044c45511e65887f6fac9eba6d787c3684a836f23dbf8ad3dd5931c08b4d8bde7e8acbbf3bf3326f2faa5952a332ad2ced40c98a2affa2dad4d623f9ff3ffa81e45095548ab6200f069d0f63d20fd71d3043b0dd5c4cf9785f3f531abc19bc1678f5e0b33006bd1049ca45fd8500d67a5aa6e1c23d900000000007867738729e703bb122283fb2fae9813a0cfefcdf3dc968af1cf80e96649d943198a96d9b1af9c91506b30922be8537f54e65cf60c6b6a5798955796aea325770d6ccc93a95fad93b2c7bad114fcbc55036a301c23b07073c71555791db8919235022bb0ee4294211ab9b43f3fbedecd223722d937aa22b31e2e9c97e5ea94e4ab83d4e5811c7556813c334aec856af0a0c12b3c93ba5aa906c6e2268a0c6cbbb13f496d87c608604eb02b2c031d5ae40c75"], 0x1, 0x54f6, &(0x7f0000005800)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x0)
mmap(&(0x7f000001a000/0x3000)=nil, 0x3000, 0x0, 0x11012, r6, 0x0)

2.039190712s ago: executing program 4 (id=1081):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

1.282234575s ago: executing program 1 (id=1090):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.249492197s ago: executing program 1 (id=1091):
r0 = getpid()
sched_setscheduler(r0, 0x0, &(0x7f0000000100)=0x3)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f000000c380)='./file0\x00', 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
umount2(&(0x7f0000000200)='./file0\x00', 0x1)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x4, &(0x7f0000000000), 0x1, 0x625, &(0x7f0000000340)="$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")

1.148589646s ago: executing program 4 (id=1093):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000080)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
write$cgroup_type(r2, &(0x7f0000000380), 0x9)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000800000095000000000000009500a5050000000077d8f3b423cdac8d8000000000000020e16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f68a7d06d10bfe150a7487535f7866907dc6751dfb265a0e3ccae669e173a649c1cfd6587d452d46b7c57d77578f4c35235138d5521f9453559c3421eed73d5661cfeecf9c66c54c3b3ffe1b4ce25d7c983c044c03bf3ff03fe3e26e7a23129d6606fd28a7f9105f82317874b33d96b39fa4e045469989d552af6200000003a00000000000000abecc2f4a3799af2551ce935b0f327cb3f011a7d06602e2fd5234712596b696418f1623ed38ae89d24e14b40234756ddcebfba2f87925bfacba83109753f543ad027edd68149ee99eebc6f7d6dd4aed4afe1f44ccb19e810879b70a70900000000000000000000d7900a820b6327944e9a217b9800e02a92895614cd50cbf83a1ed25268816b004519c9c5cff097d8000000000009d27d753a30a147b24a48435bd8a568669596e9e08679b3ce48e90defb6670c3d6209000000c773713a66b223fa8b148871c8d31d24000025449f106b99893ed20fa7a050fbbef90327e827e513e9606800000000e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e69ee52b59d13182e1f24ed208ada12f7a1525320e71666f472a972d5eb1affb87ba55b2d72078e9f40b4ae7dc3b2aeb0d11cd22c35d32940f19dff00ffffffff080000ff003853e59de7621e348955735264f34b1046a1813668297a7edad187ef106ae7fcbb25090f17d0baadeb8ae190a1fb5a315f8347fb0379659500000000000000000000000000000000000000002fdf0193ec79c90ed210ebc2fbed6d4216770c1b0dec886b388d138c2b69c6aacb714e7264093061c660a5100b7cc165889eb94c8d7c77b6fa06f1a4f8e4a6b6cb37e319c5c22f276b03cae853f42b07ca0b03b1eb32a6b1a81cd511fd0b59d57a11c6a3ebf9731464ad21f07f618efc31023ac60007426162b57e803519954d7c956fda392fa84be38e937d36af1c35138e05a9e8d6dc0272de72c41500000000304402e22af23437126f330f8eb4075daaeae3134ece35cd86d95bd9836bd186c4b6565e967a4e3e86f299b7400994ba136b4eccf3b0f001a266c0d160b3ce1182001d64b52a5ce7f506295d59eea6903b84ffbabf5a5b91c1d6ecce8728a224aec66c610e3becd60a35e848c224f8251947eed20e2b612cb099bfe8924d33ba7f0691fed04a43e9c64b7a1e3165e86cdb9871c678a6bbb14821f441c6c14d1bd78d8ffdfea12c19ea04264335d60b6b7a7da6fb83f33101db32f6ab137d943dd3c1e8db9f3e1263573dc721ae82fe0bc63598751a5092c9f7dbfc39d564834e3703492c2a651643d8ce5c36d97a4812cf73fc8ea0d68d7489cfcb0176"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0xb)
getdents64(r3, 0x0, 0x0)

1.081525431s ago: executing program 4 (id=1094):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'sit0\x00', @local})

1.080965121s ago: executing program 2 (id=1095):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000020"], 0xfe44, 0x0)

1.080687921s ago: executing program 4 (id=1096):
close(0xffffffffffffffff)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r0=>0xffffffffffffffff]}}], 0x18}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r3}, 0x10)
write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0xfdef)

1.017817906s ago: executing program 4 (id=1097):
syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa)

1.017485426s ago: executing program 1 (id=1098):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000eef000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff})
close(0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

869.123848ms ago: executing program 1 (id=1100):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'macsec0\x00'})

553.889404ms ago: executing program 2 (id=1101):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

459.934762ms ago: executing program 1 (id=1102):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)

459.602672ms ago: executing program 2 (id=1103):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)

383.783718ms ago: executing program 2 (id=1104):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000080)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
write$cgroup_type(r2, &(0x7f0000000380), 0x9)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0xb)
getdents64(r3, 0x0, 0x0)

382.537758ms ago: executing program 1 (id=1105):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1d64, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

313.767574ms ago: executing program 2 (id=1106):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, 0x0)
readv(r0, 0x0, 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x1, 0x54f6, &(0x7f0000005800)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x0)
mmap(&(0x7f000001a000/0x3000)=nil, 0x3000, 0x0, 0x11012, r6, 0x0)

295.036986ms ago: executing program 0 (id=1108):
close(0xffffffffffffffff)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r0=>0xffffffffffffffff]}}], 0x18}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r3}, 0x10)
write$cgroup_subtree(r0, &(0x7f0000000280)=ANY=[], 0xfdef)

269.645248ms ago: executing program 0 (id=1109):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = memfd_create(&(0x7f0000000680)='#}\x04\xe4\xfc\x1e\xff~\xb1\xe0\xa5\x9d\xc8\xca3\'\x12xY!\xa4\x9c\x97\xf1\xfc\xb0\xe8~\x91\xd5\x04i}\x03\x00@\x0e\xe6\x995b\x00\x00\x00\x00\x00\x00\x00\x8e\x96\xb7=\xb9OmILO\x8d\x00\x00\x00\x00\x00\xfe\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
ftruncate(r0, 0x40001)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e22, 0x800, @empty}, 0x7a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280)={'#! ', './file0'}, 0xb)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x4, 0x9, 0x0, 0x1}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000077c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000080)='mm_page_alloc\x00', r5}, 0x10)
write(r1, &(0x7f0000000200)="89ba41c97928dec7cec15a160d3dba257872aed129d4b5247c9834550448a4f46c37425b873ec95db3d757e8b2333a64d9abf416fd83f942661c47bcdf71f7d07ba2b2f051829a7f66952e57962614db0d03474a4a4bce636ea8d2b882b2b49ef18e76edbec7302a96e41f206d930eda2769c56e6d5e3d541ce9a21c3ce5cb5f", 0x1fc0)

256.506869ms ago: executing program 3 (id=1110):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000500)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
sendmsg$tipc(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
close(r1)

195.896334ms ago: executing program 0 (id=1111):
socket$nl_generic(0x10, 0x3, 0x10)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
linkat(0xffffffffffffffff, &(0x7f00000001c0)='./file0/../file0\x00', 0xffffffffffffffff, &(0x7f0000002300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

185.170945ms ago: executing program 3 (id=1112):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'macsec0\x00'})

184.690205ms ago: executing program 0 (id=1113):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x1, 0xa, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000280)='./file0\x00', 0x400, &(0x7f0000000300)={[{@uni_xlate}, {@shortname_win95}, {@uni_xlate}, {@fat=@dos1xfloppy}, {@utf8}, {@utf8no}, {@shortname_winnt}, {@shortname_lower}, {@uni_xlate}]}, 0x0, 0x237, &(0x7f00000009c0)="$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")
r3 = openat(r2, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r3, 0x82307201, &(0x7f0000000780)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$VFAT_IOCTL_READDIR_BOTH(r3, 0x82307201, &(0x7f0000000c00)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])

89.917752ms ago: executing program 3 (id=1114):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)

89.741902ms ago: executing program 3 (id=1115):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

76.015523ms ago: executing program 0 (id=1116):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018400110800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000080)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
write$cgroup_type(r2, &(0x7f0000000380), 0x9)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000800000095000000000000009500a5050000000077d8f3b423cdac8d8000000000000020e16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f68a7d06d10bfe150a7487535f7866907dc6751dfb265a0e3ccae669e173a649c1cfd6587d452d46b7c57d77578f4c35235138d5521f9453559c3421eed73d5661cfeecf9c66c54c3b3ffe1b4ce25d7c983c044c03bf3ff03fe3e26e7a23129d6606fd28a7f9105f82317874b33d96b39fa4e045469989d552af6200000003a00000000000000abecc2f4a3799af2551ce935b0f327cb3f011a7d06602e2fd5234712596b696418f1623ed38ae89d24e14b40234756ddcebfba2f87925bfacba83109753f543ad027edd68149ee99eebc6f7d6dd4aed4afe1f44ccb19e810879b70a70900000000000000000000d7900a820b6327944e9a217b9800e02a92895614cd50cbf83a1ed25268816b004519c9c5cff097d8000000000009d27d753a30a147b24a48435bd8a568669596e9e08679b3ce48e90defb6670c3d6209000000c773713a66b223fa8b148871c8d31d24000025449f106b99893ed20fa7a050fbbef90327e827e513e9606800000000e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e69ee52b59d13182e1f24ed208ada12f7a1525320e71666f472a972d5eb1affb87ba55b2d72078e9f40b4ae7dc3b2aeb0d11cd22c35d32940f19dff00ffffffff080000ff003853e59de7621e348955735264f34b1046a1813668297a7edad187ef106ae7fcbb25090f17d0baadeb8ae190a1fb5a315f8347fb0379659500000000000000000000000000000000000000002fdf0193ec79c90ed210ebc2fbed6d4216770c1b0dec886b388d138c2b69c6aacb714e7264093061c660a5100b7cc165889eb94c8d7c77b6fa06f1a4f8e4a6b6cb37e319c5c22f276b03cae853f42b07ca0b03b1eb32a6b1a81cd511fd0b59d57a11c6a3ebf9731464ad21f07f618efc31023ac60007426162b57e803519954d7c956fda392fa84be38e937d36af1c35138e05a9e8d6dc0272de72c41500000000304402e22af23437126f330f8eb4075daaeae3134ece35cd86d95bd9836bd186c4b6565e967a4e3e86f299b7400994ba136b4eccf3b0f001a266c0d160b3ce1182001d64b52a5ce7f506295d59eea6903b84ffbabf5a5b91c1d6ecce8728a224aec66c610e3becd60a35e848c224f8251947eed20e2b612cb099bfe8924d33ba7f0691fed04a43e9c64b7a1e3165e86cdb9871c678a6bbb14821f441c6c14d1bd78d8ffdfea12c19ea04264335d60b6b7a7da6fb83f33101db32f6ab137d943dd3c1e8db9f3e1263573dc721ae82fe0bc63598751a5092c9f7dbfc39d564834e3703492c2a651643d8ce5c36d97a4812cf73fc8ea0d68d7489cfcb0176"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0xb)
getdents64(r3, 0x0, 0x0)

52.689216ms ago: executing program 4 (id=1117):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)

36.027217ms ago: executing program 3 (id=1118):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'sit0\x00', @local})

260.14µs ago: executing program 0 (id=1119):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f00000001c0), 0x2, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000140)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
gettid()
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r6}, 0x10)
syz_clone(0x24084200, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001a40))
r7 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r7, &(0x7f0000000200), 0x12)

0s ago: executing program 3 (id=1120):
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4}, &(0x7f0000000040), &(0x7f0000000140)=r3}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r5}, 0x10)
write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[], 0xfdef)

kernel console output (not intermixed with test programs):

 USB device number 2 using dummy_hcd
[   26.477387][  T361] syz.0.16[361] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   26.478389][  T361] syz.0.16[361] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   26.758125][  T363] device pim6reg1 entered promiscuous mode
[   26.778039][   T39] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   26.787038][   T39] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   26.814767][   T39] usb 3-1: config 0 descriptor??
[   26.860177][  T371] loop3: detected capacity change from 0 to 512
[   26.877851][  T371] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   26.890983][  T371] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   26.904248][  T371] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   26.917678][  T371] EXT4-fs (loop3): 1 truncate cleaned up
[   26.923142][  T371] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   28.557854][   T30] kauditd_printk_skb: 41 callbacks suppressed
[   28.557871][   T30] audit: type=1400 audit(1722924337.926:117): avc:  denied  { confidentiality } for  pid=370 comm="syz.3.17" lockdown_reason="use of bpf to read kernel RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[   28.588156][   T30] audit: type=1400 audit(1722924338.146:118): avc:  denied  { write } for  pid=370 comm="syz.3.17" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   28.610464][   T30] audit: type=1400 audit(1722924338.146:119): avc:  denied  { add_name } for  pid=370 comm="syz.3.17" name="cpuacct.usage_sys" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   28.637585][  T315] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   28.647915][   T30] audit: type=1400 audit(1722924338.146:120): avc:  denied  { create } for  pid=370 comm="syz.3.17" name="cpuacct.usage_sys" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   28.668947][   T30] audit: type=1400 audit(1722924338.156:121): avc:  denied  { read append open } for  pid=370 comm="syz.3.17" path="/1/bus/cpuacct.usage_sys" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   28.700351][   T30] audit: type=1400 audit(1722924338.226:122): avc:  denied  { create } for  pid=370 comm="syz.3.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   28.720385][   T30] audit: type=1400 audit(1722924338.276:123): avc:  denied  { setopt } for  pid=370 comm="syz.3.17" lport=8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   28.740256][   T30] audit: type=1400 audit(1722924338.326:124): avc:  denied  { remount } for  pid=370 comm="syz.3.17" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   28.760114][   T30] audit: type=1400 audit(1722924338.626:125): avc:  denied  { read } for  pid=82 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   28.798726][   T30] audit: type=1400 audit(1722924338.786:126): avc:  denied  { setopt } for  pid=396 comm="syz.3.25" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   28.866815][  T407] device pim6reg1 entered promiscuous mode
[   29.006039][   T39] usb 3-1: Cannot read MAC address
[   29.013342][   T39] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71
[   29.022457][   T39] usb 3-1: USB disconnect, device number 2
[   29.032713][  T405] loop3: detected capacity change from 0 to 40427
[   29.248276][  T405] F2FS-fs (loop3): Found nat_bits in checkpoint
[   29.291506][  T315] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   29.301475][  T315] usb 1-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   29.313492][  T315] usb 1-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0
[   29.324316][  T315] usb 1-1: config 0 interface 0 has no altsetting 0
[   29.331210][  T315] usb 1-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00
[   29.340278][  T405] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   29.354007][  T315] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   29.372761][  T315] usb 1-1: config 0 descriptor??
[   29.576418][  T446] device pim6reg1 entered promiscuous mode
[   30.197263][  T315] zeroplus 0003:0C12:0005.0001: item fetching failed at offset 1/5
[   30.205262][  T315] zeroplus 0003:0C12:0005.0001: parse failed
[   30.209243][   T39] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   30.211115][  T315] zeroplus: probe of 0003:0C12:0005.0001 failed with error -22
[   30.293948][   T60] usb 1-1: USB disconnect, device number 2
[   30.300784][  T478] device pim6reg1 entered promiscuous mode
[   30.367742][  T312] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   30.453790][  T480] loop3: detected capacity change from 0 to 40427
[   30.500897][  T480] F2FS-fs (loop3): Found nat_bits in checkpoint
[   30.534808][  T480] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   30.592926][   T39] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   30.602036][   T39] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   30.610946][   T39] usb 5-1: config 0 descriptor??
[   30.757693][  T312] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   30.768743][  T312] usb 3-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   30.779150][  T312] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   30.791155][  T312] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   30.825643][  T312] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   30.989501][  T510] device pim6reg1 entered promiscuous mode
[   31.037657][  T312] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   31.046857][  T312] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   31.055269][  T312] usb 3-1: Product: syz
[   31.059566][  T312] usb 3-1: Manufacturer: syz
[   31.064051][  T312] usb 3-1: SerialNumber: syz
[   31.118887][  T516] loop0: detected capacity change from 0 to 512
[   31.167848][   T39] usb 5-1: Cannot read MAC address
[   31.172839][   T39] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[   31.181703][   T39] usb 5-1: USB disconnect, device number 2
[   31.188129][  T516] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   31.200301][  T516] EXT4-fs (loop0): 1 truncate cleaned up
[   31.205821][  T516] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   31.725044][  T535] device pim6reg1 entered promiscuous mode
[   31.877956][  T539] loop4: detected capacity change from 0 to 40427
[   31.989199][  T539] F2FS-fs (loop4): Found nat_bits in checkpoint
[   32.033954][  T539] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   32.120354][   T60] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   32.419201][  T575] device pim6reg1 entered promiscuous mode
[   32.487660][   T60] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   32.497081][   T60] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   32.506068][   T60] usb 2-1: config 0 descriptor??
[   32.533312][  T583] loop0: detected capacity change from 0 to 512
[   32.578607][  T583] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   32.590533][  T583] EXT4-fs (loop0): 1 truncate cleaned up
[   32.596552][  T583] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   32.741311][  T599] device pim6reg1 entered promiscuous mode
[   33.468713][  T312] usb 3-1: 2:1 : no or invalid class specific endpoint descriptor
[   33.477128][  T312] usb 3-1: 2:1 : format type 0 is detected, processed as PCM
[   33.484467][  T312] usb 3-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   33.490908][  T312] usb 3-1: 2:1 : invalid channels 0
[   33.511203][  T312] usb 3-1: USB disconnect, device number 3
[   33.723244][  T613] loop4: detected capacity change from 0 to 40427
[   33.765225][   T60] usb 2-1: Cannot read MAC address
[   33.771049][   T60] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[   33.780631][   T60] usb 2-1: USB disconnect, device number 2
[   33.790830][  T613] F2FS-fs (loop4): Found nat_bits in checkpoint
[   33.871181][  T613] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   34.010570][   T30] kauditd_printk_skb: 2 callbacks suppressed
[   34.010593][   T30] audit: type=1400 audit(1722924343.996:129): avc:  denied  { create } for  pid=644 comm="syz.2.121" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   34.194319][  T660] loop2: detected capacity change from 0 to 512
[   34.247621][  T602] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   34.452547][  T660] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   34.477944][  T660] EXT4-fs (loop2): 1 truncate cleaned up
[   34.487645][  T660] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   34.602281][  T672] device pim6reg1 entered promiscuous mode
[   34.668025][  T602] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   34.690351][  T602] usb 4-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   34.700174][  T602] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   34.733580][  T602] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   34.743733][  T602] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   34.808777][   T30] audit: type=1400 audit(1722924344.796:130): avc:  denied  { write } for  pid=680 comm="syz.4.135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   35.037673][  T602] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   35.049857][  T602] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   35.064264][  T602] usb 4-1: Product: syz
[   35.072796][  T602] usb 4-1: Manufacturer: syz
[   35.077467][  T602] usb 4-1: SerialNumber: syz
[   35.104660][  T695] loop0: detected capacity change from 0 to 40427
[   35.139392][  T695] F2FS-fs (loop0): Found nat_bits in checkpoint
[   35.177631][   T20] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   35.203212][  T695] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   35.592471][   T20] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   35.609351][   T20] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   35.621477][   T20] usb 2-1: config 0 descriptor??
[   35.650420][  T732] loop2: detected capacity change from 0 to 512
[   35.729574][  T732] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   35.741585][  T732] EXT4-fs (loop2): 1 truncate cleaned up
[   35.747093][  T732] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   36.257623][   T20] usb 2-1: Cannot read MAC address
[   36.262683][   T20] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[   36.275822][   T20] usb 2-1: USB disconnect, device number 3
[   36.464178][  T767] loop0: detected capacity change from 0 to 40427
[   36.517136][  T767] F2FS-fs (loop0): Found nat_bits in checkpoint
[   36.559552][  T767] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   36.828234][  T602] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[   36.892468][  T602] usb 4-1: 2:1 : format type 0 is detected, processed as PCM
[   37.061957][  T602] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   37.091733][  T602] usb 4-1: 2:1 : invalid channels 0
[   37.135166][  T602] usb 4-1: USB disconnect, device number 2
[   37.292186][  T819] loop3: detected capacity change from 0 to 512
[   37.488586][  T819] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   37.529041][  T819] EXT4-fs (loop3): 1 truncate cleaned up
[   37.565017][  T819] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   37.647694][   T20] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   38.193714][  T851] loop1: detected capacity change from 0 to 40427
[   38.536334][  T851] F2FS-fs (loop1): Found nat_bits in checkpoint
[   38.607372][  T851] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   38.621714][   T20] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   38.631067][   T20] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   38.643481][   T20] usb 5-1: config 0 descriptor??
[   38.698188][  T602] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   39.077662][  T602] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   39.082203][  T910] loop2: detected capacity change from 0 to 512
[   39.094886][  T910] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   39.105315][  T602] usb 1-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   39.114627][  T602] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   39.125517][  T602] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   39.135693][  T602] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   39.147338][  T910] EXT4-fs (loop2): 1 truncate cleaned up
[   39.152817][  T910] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   39.318297][  T602] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   39.383345][  T602] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   39.430188][  T602] usb 1-1: Product: syz
[   39.489109][  T602] usb 1-1: Manufacturer: syz
[   39.518960][  T602] usb 1-1: SerialNumber: syz
[   39.597613][   T20] usb 5-1: Cannot read MAC address
[   39.602616][   T20] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[   39.614625][   T20] usb 5-1: USB disconnect, device number 3
[   39.691808][  T929] loop1: detected capacity change from 0 to 40427
[   39.760891][  T929] F2FS-fs (loop1): Found nat_bits in checkpoint
[   39.817512][  T929] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   40.247842][  T369] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   40.637650][  T369] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   40.646630][  T369] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   40.668281][  T369] usb 5-1: config 0 descriptor??
[   40.675651][ T1000] loop1: detected capacity change from 0 to 512
[   40.699729][ T1000] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   40.726554][ T1000] EXT4-fs (loop1): 1 truncate cleaned up
[   40.732314][ T1000] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   40.742191][  T994] loop3: detected capacity change from 0 to 40427
[   40.822504][  T994] F2FS-fs (loop3): Found nat_bits in checkpoint
[   40.855099][  T994] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   41.448397][  T602] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[   41.567914][  T602] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[   41.605118][  T602] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   41.637598][  T602] usb 1-1: 2:1 : invalid channels 0
[   41.708222][  T369] usb 5-1: Cannot read MAC address
[   41.720288][  T369] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[   41.736498][  T602] usb 1-1: USB disconnect, device number 3
[   41.753545][  T369] usb 5-1: USB disconnect, device number 4
[   42.085065][ T1053] loop2: detected capacity change from 0 to 512
[   42.198129][ T1053] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   42.222386][ T1053] EXT4-fs (loop2): 1 truncate cleaned up
[   42.257597][ T1053] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   42.353401][ T1059] loop0: detected capacity change from 0 to 40427
[   42.438738][ T1059] F2FS-fs (loop0): Found nat_bits in checkpoint
[   42.504655][ T1059] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   43.695820][    T6] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   43.809871][ T1151] loop2: detected capacity change from 0 to 512
[   43.937247][ T1151] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   43.956425][ T1151] EXT4-fs (loop2): 1 truncate cleaned up
[   43.962288][ T1151] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   44.150853][ T1157] loop3: detected capacity change from 0 to 40427
[   44.262656][ T1157] F2FS-fs (loop3): Found nat_bits in checkpoint
[   44.385958][ T1157] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   44.554341][    T6] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   44.563332][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   44.587398][    T6] usb 2-1: config 0 descriptor??
[   45.527660][    T6] usb 2-1: Cannot read MAC address
[   45.532643][    T6] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[   45.558940][    T6] usb 2-1: USB disconnect, device number 4
[   45.607637][   T60] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   45.672826][ T1232] loop3: detected capacity change from 0 to 512
[   45.685127][ T1232] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   45.696668][ T1232] EXT4-fs (loop3): 1 truncate cleaned up
[   45.706479][ T1232] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   45.837913][ T1230] loop0: detected capacity change from 0 to 40427
[   46.007967][   T60] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   46.063475][   T60] usb 5-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   46.118829][ T1230] F2FS-fs (loop0): Found nat_bits in checkpoint
[   46.136259][   T60] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   46.147572][   T60] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   46.157117][   T60] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   46.183691][ T1230] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   46.367749][   T60] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   46.376595][   T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   46.397581][   T60] usb 5-1: Product: syz
[   46.401568][   T60] usb 5-1: Manufacturer: syz
[   46.414235][   T60] usb 5-1: SerialNumber: syz
[   46.607636][    T6] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   46.778138][ T1285] device pim6reg1 entered promiscuous mode
[   46.987726][    T6] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   47.006717][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   47.017797][    T6] usb 2-1: config 0 descriptor??
[   47.066737][ T1292] loop3: detected capacity change from 0 to 40427
[   47.099292][ T1292] F2FS-fs (loop3): Found nat_bits in checkpoint
[   47.157082][ T1292] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   47.287389][ T1307] loop2: detected capacity change from 0 to 512
[   47.349967][ T1307] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   47.361324][ T1307] EXT4-fs (loop2): 1 truncate cleaned up
[   47.366847][ T1307] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   47.837627][    T6] usb 2-1: Cannot read MAC address
[   47.842708][    T6] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[   47.851439][    T6] usb 2-1: USB disconnect, device number 5
[   47.863426][ T1317] device pim6reg1 entered promiscuous mode
[   48.127678][   T60] usb 5-1: 2:1 : no or invalid class specific endpoint descriptor
[   48.135321][   T60] usb 5-1: 2:1 : format type 0 is detected, processed as PCM
[   48.173380][   T60] usb 5-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   48.197066][   T60] usb 5-1: 2:1 : invalid channels 0
[   48.252945][   T60] usb 5-1: USB disconnect, device number 5
[   48.319847][ T1354] device pim6reg1 entered promiscuous mode
[   48.490711][ T1341] loop1: detected capacity change from 0 to 40427
[   48.521225][ T1341] F2FS-fs (loop1): Found nat_bits in checkpoint
[   48.701257][ T1341] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   48.801357][  T369] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   48.851370][ T1377] loop0: detected capacity change from 0 to 512
[   48.940845][ T1377] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   48.954552][ T1377] EXT4-fs (loop0): 1 truncate cleaned up
[   48.966311][ T1377] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   48.982009][ T1391] device pim6reg1 entered promiscuous mode
[   49.365526][  T369] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   49.392186][  T369] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   49.452571][  T369] usb 3-1: config 0 descriptor??
[   50.018836][ T1439] device pim6reg1 entered promiscuous mode
[   50.057631][  T369] usb 3-1: Cannot read MAC address
[   50.062652][  T369] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71
[   50.084052][  T369] usb 3-1: USB disconnect, device number 4
[   50.406068][ T1435] loop1: detected capacity change from 0 to 40427
[   50.568881][ T1460] loop3: detected capacity change from 0 to 512
[   50.578604][ T1435] F2FS-fs (loop1): Found nat_bits in checkpoint
[   50.653179][ T1435] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   50.731531][ T1460] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   50.764548][ T1460] EXT4-fs (loop3): 1 truncate cleaned up
[   50.772300][ T1460] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   50.899111][ T1484] device pim6reg1 entered promiscuous mode
[   50.912808][ T1486] 9pnet: Insufficient options for proto=fd
[   51.846728][ T1512] 9pnet: Insufficient options for proto=fd
[   51.900936][ T1522] device pim6reg1 entered promiscuous mode
[   51.939893][ T1526] loop4: detected capacity change from 0 to 512
[   51.972079][ T1526] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   52.041982][ T1516] loop3: detected capacity change from 0 to 40427
[   52.049745][ T1526] EXT4-fs (loop4): 1 truncate cleaned up
[   52.055214][ T1526] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   52.064904][  T369] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   52.138552][ T1516] F2FS-fs (loop3): Found nat_bits in checkpoint
[   52.169655][ T1516] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   52.842464][  T385] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   53.088190][  T369] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   53.097062][  T369] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   53.117767][ T1419] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   53.134643][ T1560] device pim6reg1 entered promiscuous mode
[   53.141331][  T369] usb 2-1: config 0 descriptor??
[   53.166445][ T1562] 9pnet: Insufficient options for proto=fd
[   53.198353][ T1566] loop3: detected capacity change from 0 to 512
[   53.217656][  T385] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   53.228077][  T385] usb 3-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   53.239559][  T385] usb 3-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0
[   53.249557][  T385] usb 3-1: config 0 interface 0 has no altsetting 0
[   53.258013][  T385] usb 3-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00
[   53.266984][ T1566] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   53.276841][  T385] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   53.286056][  T385] usb 3-1: config 0 descriptor??
[   53.292864][ T1566] EXT4-fs (loop3): 1 truncate cleaned up
[   53.299429][ T1566] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   53.437090][ T1575] loop4: detected capacity change from 0 to 40427
[   53.571050][ T1419] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   53.587335][ T1419] usb 1-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   53.598318][ T1419] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   53.610071][ T1419] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   53.620824][ T1419] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   53.684172][ T1575] F2FS-fs (loop4): Found nat_bits in checkpoint
[   53.716015][ T1575] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   53.723498][  T369] usb 2-1: Cannot read MAC address
[   53.780000][  T369] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[   53.790731][  T369] usb 2-1: USB disconnect, device number 6
[   53.808595][  T385] zeroplus 0003:0C12:0005.0002: item fetching failed at offset 1/5
[   53.816736][  T385] zeroplus 0003:0C12:0005.0002: parse failed
[   53.822661][ T1419] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   53.831639][  T385] zeroplus: probe of 0003:0C12:0005.0002 failed with error -22
[   53.839341][ T1419] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   53.848923][ T1419] usb 1-1: Product: syz
[   53.853773][ T1419] usb 1-1: Manufacturer: syz
[   53.858469][ T1419] usb 1-1: SerialNumber: syz
[   54.010789][  T369] usb 3-1: USB disconnect, device number 5
[   54.124626][ T1591] loop3: detected capacity change from 0 to 512
[   54.146246][ T1591] =======================================================
[   54.146246][ T1591] WARNING: The mand mount option has been deprecated and
[   54.146246][ T1591]          and is ignored by this kernel. Remove the mand
[   54.146246][ T1591]          option from the mount to silence this warning.
[   54.146246][ T1591] =======================================================
[   54.195153][ T1591] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5
[   54.195153][ T1591] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[   54.195153][ T1591] 
[   54.231654][ T1595] device pim6reg1 entered promiscuous mode
[   54.246396][ T1591] EXT4-fs (loop3): 1 orphan inode deleted
[   54.252059][ T1591] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,noacl,usrquota,,errors=continue. Quota mode: writeback.
[   54.274601][ T1591] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038 (0x7fffffff)
[   54.372578][ T1608] loop4: detected capacity change from 0 to 512
[   54.388802][ T1608] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   54.402415][ T1608] EXT4-fs (loop4): 1 truncate cleaned up
[   54.408808][ T1608] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   54.433276][   T30] audit: type=1400 audit(1722924364.416:131): avc:  denied  { read } for  pid=1611 comm="syz.1.482" name="usbmon0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   54.456518][   T30] audit: type=1400 audit(1722924364.416:132): avc:  denied  { open } for  pid=1611 comm="syz.1.482" path="/dev/usbmon0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   54.857683][  T602] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   55.039868][ T1631] device pim6reg1 entered promiscuous mode
[   55.052984][ T1626] loop1: detected capacity change from 0 to 40427
[   55.104633][ T1626] F2FS-fs (loop1): Found nat_bits in checkpoint
[   55.174064][ T1644] loop3: detected capacity change from 0 to 256
[   55.197704][ T1419] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[   55.206072][ T1626] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   55.210615][ T1419] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[   55.214395][ T1644] exfat: Deprecated parameter 'utf8'
[   55.227053][ T1419] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   55.227830][  T602] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   55.302713][ T1644] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[   55.326058][ T1419] usb 1-1: 2:1 : invalid channels 0
[   55.331578][  T602] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   55.340358][  T602] usb 3-1: config 0 descriptor??
[   55.351563][ T1419] usb 1-1: USB disconnect, device number 4
[   55.357200][   T30] audit: type=1400 audit(1722924365.336:133): avc:  denied  { ioctl } for  pid=1650 comm="syz.0.496" path="socket:[19480]" dev="sockfs" ino=19480 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   55.409520][ T1106] udevd[1106]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   55.549889][ T1659] device pim6reg1 entered promiscuous mode
[   55.573288][   T30] audit: type=1400 audit(1722924365.336:134): avc:  denied  { write } for  pid=1650 comm="syz.0.496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   55.792179][ T1677] loop4: detected capacity change from 0 to 512
[   55.951658][ T1677] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   56.067714][  T602] usb 3-1: Cannot read MAC address
[   56.073081][  T602] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71
[   56.091024][ T1677] EXT4-fs (loop4): 1 truncate cleaned up
[   56.092058][  T602] usb 3-1: USB disconnect, device number 6
[   56.096493][ T1677] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   56.124936][   T30] audit: type=1400 audit(1722924366.106:135): avc:  denied  { name_bind } for  pid=1688 comm="syz.0.510" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   56.146725][ T1689] syz.0.510[1689] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.146803][ T1689] syz.0.510[1689] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.201516][ T1693] device pim6reg1 entered promiscuous mode
[   56.668557][ T1695] loop3: detected capacity change from 0 to 40427
[   56.737240][ T1695] F2FS-fs (loop3): Found nat_bits in checkpoint
[   56.743460][  T395] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   56.791322][ T1695] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   57.678125][  T602] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   57.967516][  T395] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   57.978446][  T395] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   57.988055][  T395] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   57.996865][  T395] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.005637][  T395] usb 2-1: config 0 descriptor??
[   58.009519][ T1734] device pim6reg1 entered promiscuous mode
[   58.057699][  T602] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   58.068522][  T602] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   58.084044][  T602] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   58.093037][  T602] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.103835][  T602] usb 1-1: config 0 descriptor??
[   58.137673][ T1742] loop3: detected capacity change from 0 to 512
[   58.147770][    T6] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[   58.198054][ T1742] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   58.209758][ T1742] EXT4-fs (loop3): 1 truncate cleaned up
[   58.215225][ T1742] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   59.008659][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.024829][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.035329][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.045717][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.053049][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.060506][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.119739][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.127001][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.134309][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.141670][  T602] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   59.187641][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   59.223515][   T30] audit: type=1400 audit(1722924369.206:136): avc:  denied  { read } for  pid=1690 comm="syz.1.511" name=".pending_reads" dev="incremental-fs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   59.246935][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   59.257146][   T30] audit: type=1400 audit(1722924369.206:137): avc:  denied  { open } for  pid=1690 comm="syz.1.511" path="/90/file0/.pending_reads" dev="incremental-fs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   59.282647][ T1759] netlink: 24 bytes leftover after parsing attributes in process `syz.3.533'.
[   59.302128][    T6] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   59.311366][    T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.319334][  T315] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   59.331981][    T6] usb 3-1: config 0 descriptor??
[   59.336964][   T30] audit: type=1400 audit(1722924369.206:138): avc:  denied  { ioctl } for  pid=1690 comm="syz.1.511" path="/90/file0/.pending_reads" dev="incremental-fs" ino=2 ioctlcmd=0x6726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   59.362525][  T602] plantronics 0003:047F:FFFF.0003: unbalanced collection at end of report description
[   59.372516][  T602] plantronics 0003:047F:FFFF.0003: parse failed
[   59.378695][  T602] plantronics: probe of 0003:047F:FFFF.0003 failed with error -22
[   59.391273][  T602] usb 1-1: USB disconnect, device number 5
[   59.413830][ T1759] syz.3.533 (1759) used greatest stack depth: 21376 bytes left
[   59.867130][ T1767] loop3: detected capacity change from 0 to 40427
[   59.868471][ T1769] device pim6reg1 entered promiscuous mode
[   59.886084][ T1767] F2FS-fs (loop3): Found nat_bits in checkpoint
[   59.924314][ T1767] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   59.937975][  T315] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   59.947086][    T6] hid (null): bogus close delimiter
[   59.956284][  T315] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.965646][  T315] usb 5-1: config 0 descriptor??
[   60.019271][ T1781] loop0: detected capacity change from 0 to 512
[   60.033369][ T1781] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5
[   60.033369][ T1781] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[   60.033369][ T1781] 
[   60.060180][ T1781] EXT4-fs (loop0): 1 orphan inode deleted
[   60.065722][ T1781] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,noacl,usrquota,,errors=continue. Quota mode: writeback.
[   60.087775][ T1781] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038 (0x7fffffff)
[   60.299988][   T30] audit: type=1400 audit(1722924370.286:139): avc:  denied  { create } for  pid=1780 comm="syz.0.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   60.301717][ T1788] Unsupported ieee802154 address type: 0
[   60.329847][   T30] audit: type=1400 audit(1722924370.286:140): avc:  denied  { bind } for  pid=1780 comm="syz.0.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   60.427662][  T395] usbhid 2-1:0.0: can't add hid device: -71
[   60.433423][  T395] usbhid: probe of 2-1:0.0 failed with error -71
[   60.439692][    T6] usb 3-1: string descriptor 0 read error: -71
[   60.454238][  T395] usb 2-1: USB disconnect, device number 7
[   60.467920][    T6] uclogic 0003:256C:006D.0004: failed retrieving string descriptor #200: -71
[   60.479422][    T6] uclogic 0003:256C:006D.0004: failed retrieving pen parameters: -71
[   60.487406][    T6] uclogic 0003:256C:006D.0004: failed probing pen v2 parameters: -71
[   60.495356][    T6] uclogic 0003:256C:006D.0004: failed probing parameters: -71
[   60.502781][    T6] uclogic: probe of 0003:256C:006D.0004 failed with error -71
[   60.515562][    T6] usb 3-1: USB disconnect, device number 7
[   60.597645][  T315] usb 5-1: Cannot read MAC address
[   60.602705][  T315] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[   61.081542][  T315] usb 5-1: USB disconnect, device number 6
[   61.167299][ T1799] loop0: detected capacity change from 0 to 512
[   61.248594][ T1799] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   61.260416][ T1799] EXT4-fs (loop0): 1 truncate cleaned up
[   61.265896][ T1799] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   61.886471][ T1809] device pim6reg1 entered promiscuous mode
[   62.407623][    T6] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   62.490076][ T1828] loop2: detected capacity change from 0 to 40427
[   62.497716][  T315] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   62.580538][ T1828] F2FS-fs (loop2): Found nat_bits in checkpoint
[   62.613854][ T1828] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   62.627596][  T395] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   62.777622][    T6] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   62.797583][    T6] usb 2-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.817603][    T6] usb 2-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0
[   62.832218][ T1836] loop2: detected capacity change from 0 to 512
[   62.838437][    T6] usb 2-1: config 0 interface 0 has no altsetting 0
[   62.844858][    T6] usb 2-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00
[   62.854238][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.862920][    T6] usb 2-1: config 0 descriptor??
[   62.868086][  T315] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   62.873969][ T1834] loop0: detected capacity change from 0 to 40427
[   62.878358][  T315] usb 4-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   62.893422][  T315] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   62.904143][  T315] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   62.913620][  T315] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   62.938430][ T1836] EXT4-fs (loop2): Mount option "noacl" will be removed by 3.5
[   62.938430][ T1836] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[   62.938430][ T1836] 
[   62.959249][ T1834] F2FS-fs (loop0): Found nat_bits in checkpoint
[   62.964996][ T1836] EXT4-fs (loop2): 1 orphan inode deleted
[   62.971042][ T1836] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,noacl,usrquota,,errors=continue. Quota mode: writeback.
[   62.992790][ T1836] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038 (0x7fffffff)
[   62.997798][  T395] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   63.017385][  T395] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   63.027353][  T395] usb 5-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[   63.036513][  T395] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   63.045247][  T395] usb 5-1: config 0 descriptor??
[   63.050617][ T1834] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   63.087748][  T315] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   63.099292][  T315] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   63.107289][  T315] usb 4-1: Product: syz
[   63.111754][  T315] usb 4-1: Manufacturer: syz
[   63.116189][  T315] usb 4-1: SerialNumber: syz
[   63.229822][ T1844] Unsupported ieee802154 address type: 0
[   63.367318][    T6] zeroplus 0003:0C12:0005.0005: item fetching failed at offset 1/5
[   63.375248][    T6] zeroplus 0003:0C12:0005.0005: parse failed
[   63.381219][    T6] zeroplus: probe of 0003:0C12:0005.0005 failed with error -22
[   63.644889][  T385] usb 2-1: USB disconnect, device number 8
[   63.660502][  T395] pantherlord 0003:0F30:0111.0006: item fetching failed at offset 6/7
[   63.668947][  T395] pantherlord 0003:0F30:0111.0006: parse failed
[   63.675071][  T395] pantherlord: probe of 0003:0F30:0111.0006 failed with error -22
[   63.820093][  T602] usb 5-1: USB disconnect, device number 7
[   63.939195][ T1853] netlink: 24 bytes leftover after parsing attributes in process `syz.2.558'.
[   64.188874][ T1855] device pim6reg1 entered promiscuous mode
[   64.259934][ T1861] loop0: detected capacity change from 0 to 2048
[   64.308747][ T1861] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   64.319342][ T1861] ext4 filesystem being mounted at /117/bus supports timestamps until 2038 (0x7fffffff)
[   64.452550][ T1874] loop1: detected capacity change from 0 to 512
[   64.458844][  T315] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[   64.468791][  T315] usb 4-1: 2:1 : format type 0 is detected, processed as PCM
[   64.485182][  T315] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   64.508455][ T1874] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   64.520413][  T315] usb 4-1: 2:1 : invalid channels 0
[   64.530210][ T1876] 9pnet: Insufficient options for proto=fd
[   64.531967][ T1874] EXT4-fs (loop1): 1 truncate cleaned up
[   64.541755][ T1874] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   64.573125][  T315] usb 4-1: USB disconnect, device number 3
[   64.612544][ T1853] syz.2.558 (1853) used greatest stack depth: 21208 bytes left
[   64.727473][ T1884] device pim6reg1 entered promiscuous mode
[   65.769333][   T30] audit: type=1404 audit(1722924375.756:141): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[   65.853108][ T1900] loop2: detected capacity change from 0 to 512
[   65.891280][ T1900] EXT4-fs (loop2): Mount option "noacl" will be removed by 3.5
[   65.891280][ T1900] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[   65.891280][ T1900] 
[   65.909615][ T1900] EXT4-fs (loop2): Ignoring removed bh option
[   66.272345][ T1900] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802602c, mo2=0002]
[   66.280317][ T1900] System zones: 1-12
[   66.286724][ T1900] EXT4-fs error (device loop2): __ext4_iget:4892: inode #11: block 393240: comm syz.2.575: invalid block
[   66.298684][ T1900] EXT4-fs (loop2): Remounting filesystem read-only
[   66.305177][ T1900] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.575: couldn't read orphan inode 11 (err -117)
[   66.318211][ T1900] EXT4-fs (loop2): mounted filesystem without journal. Opts: noacl,min_batch_time=0x0000000000000001,errors=remount-ro,sb=0x0000000000000008,bh. Quota mode: none.
[   66.433687][   T30] audit: type=1404 audit(1722924375.776:142): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[   66.468823][   T30] audit: type=1400 audit(1722924375.826:143): avc:  denied  { prog_load } for  pid=1892 comm="syz.2.575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   66.500742][ T1872] loop4: detected capacity change from 0 to 40427
[   66.533628][   T30] audit: type=1400 audit(1722924375.826:144): avc:  denied  { bpf } for  pid=1892 comm="syz.2.575" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   66.562967][   T30] audit: type=1400 audit(1722924375.826:145): avc:  denied  { perfmon } for  pid=1892 comm="syz.2.575" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   66.592987][ T1872] F2FS-fs (loop4): Found nat_bits in checkpoint
[   66.608366][   T30] audit: type=1400 audit(1722924375.826:146): avc:  denied  { prog_run } for  pid=1892 comm="syz.2.575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   66.627293][   T30] audit: type=1400 audit(1722924375.826:147): avc:  denied  { map_create } for  pid=1892 comm="syz.2.575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   66.670291][ T1916] 9pnet: Insufficient options for proto=fd
[   66.677092][   T30] audit: type=1400 audit(1722924375.836:148): avc:  denied  { read write } for  pid=1892 comm="syz.2.575" name="loop2" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   66.715631][   T30] audit: type=1400 audit(1722924375.836:149): avc:  denied  { open } for  pid=1892 comm="syz.2.575" path="/dev/loop2" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   66.739321][ T1872] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   66.746803][   T30] audit: type=1400 audit(1722924375.836:150): avc:  denied  { ioctl } for  pid=1892 comm="syz.2.575" path="/dev/loop2" dev="devtmpfs" ino=114 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   66.927600][  T299] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   66.937869][ T1927] netlink: 32 bytes leftover after parsing attributes in process `syz.3.582'.
[   66.946567][ T1927] netlink: 20 bytes leftover after parsing attributes in process `syz.3.582'.
[   67.003141][ T1927] netlink: 20 bytes leftover after parsing attributes in process `syz.3.582'.
[   67.225485][ T1940] device pim6reg1 entered promiscuous mode
[   67.584918][ T1904] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   67.617600][  T299] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   67.637563][  T299] usb 1-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   67.646445][  T299] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   67.657340][  T299] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   67.667024][  T299] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   67.837672][  T299] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   67.856747][  T299] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   67.867730][  T299] usb 1-1: Product: syz
[   67.871798][  T299] usb 1-1: Manufacturer: syz
[   67.886455][  T299] usb 1-1: SerialNumber: syz
[   67.929293][ T1931] loop2: detected capacity change from 0 to 131072
[   67.947627][ T1904] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   67.958394][ T1904] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   67.968672][ T1904] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   67.977729][ T1904] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.986277][ T1904] usb 4-1: config 0 descriptor??
[   68.017693][ T1931] F2FS-fs (loop2): QUOTA feature is enabled, so ignore qf_name
[   68.031659][ T1931] F2FS-fs (loop2): invalid crc value
[   68.055553][ T1931] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[   68.086184][ T1931] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b
[   68.147885][ T1931] incfs: ino conflict with backing FS 4
[   68.155037][ T1931] incfs: ino conflict with backing FS 5
[   68.162144][ T1931] incfs: ino conflict with backing FS 6
[   68.167660][ T1931] incfs: ino conflict with backing FS 7
[   68.173336][ T1931] incfs: ino conflict with backing FS 4
[   68.180730][ T1931] incfs: ino conflict with backing FS 5
[   68.467839][ T1904] hid (null): bogus close delimiter
[   68.714405][ T1962] loop1: detected capacity change from 0 to 40427
[   68.751211][ T1962] F2FS-fs (loop1): Found nat_bits in checkpoint
[   68.783817][ T1962] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   68.875018][ T1979] device pim6reg1 entered promiscuous mode
[   68.927720][ T1904] usb 4-1: string descriptor 0 read error: -71
[   68.957652][ T1904] uclogic 0003:256C:006D.0007: failed retrieving string descriptor #200: -71
[   68.969309][ T1904] uclogic 0003:256C:006D.0007: failed retrieving pen parameters: -71
[   68.977402][ T1904] uclogic 0003:256C:006D.0007: failed probing pen v2 parameters: -71
[   68.985555][ T1904] uclogic 0003:256C:006D.0007: failed probing parameters: -71
[   68.990128][   T60] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[   68.997411][ T1904] uclogic: probe of 0003:256C:006D.0007 failed with error -71
[   69.012998][ T1904] usb 4-1: USB disconnect, device number 4
[   69.257617][   T60] usb 3-1: Using ep0 maxpacket: 8
[   69.457627][  T299] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[   69.457633][   T60] usb 3-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[   69.457664][   T60] usb 3-1: New USB device found, idVendor=05a9, idProduct=2640, bcdDevice=55.12
[   69.467387][  T299] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[   69.474728][   T60] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.483033][  T299] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   69.503839][  T299] usb 1-1: 2:1 : invalid channels 0
[   69.511017][   T60] usb 3-1: config 0 descriptor??
[   69.530538][  T299] usb 1-1: USB disconnect, device number 6
[   69.737743][ T1986] loop1: detected capacity change from 0 to 131072
[   69.807663][   T60] usb 3-1: string descriptor 0 read error: -71
[   69.813688][   T60] usb 3-1: Found UVC 0.00 device <unnamed> (05a9:2640)
[   69.820903][   T60] usb 3-1: No valid video chain found.
[   69.827139][   T60] usb 3-1: USB disconnect, device number 8
[   69.834206][ T1986] F2FS-fs (loop1): QUOTA feature is enabled, so ignore qf_name
[   69.837574][ T1904] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   69.856692][ T1986] F2FS-fs (loop1): invalid crc value
[   69.870680][ T2002] loop4: detected capacity change from 0 to 512
[   69.883921][ T2002] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   69.884715][ T1986] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[   69.893673][  T299] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[   69.916367][ T2002] EXT4-fs (loop4): 1 truncate cleaned up
[   69.922376][ T2002] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   69.933395][ T1986] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
[   69.968030][ T1986] incfs: ino conflict with backing FS 4
[   69.984730][ T1986] incfs: ino conflict with backing FS 5
[   69.991081][ T1986] incfs: ino conflict with backing FS 6
[   69.996590][ T1986] incfs: ino conflict with backing FS 7
[   70.002570][ T1986] incfs: ino conflict with backing FS 4
[   70.008828][ T1986] incfs: ino conflict with backing FS 5
[   70.421118][ T2010] loop2: detected capacity change from 0 to 512
[   70.457660][  T299] usb 1-1: device descriptor read/64, error -71
[   70.478862][ T2010] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   70.497896][ T2010] EXT4-fs (loop2): 1 truncate cleaned up
[   70.503492][ T2010] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   70.525066][ T1904] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   70.536026][ T1904] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   70.548905][ T1904] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   70.565776][ T1904] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.661636][ T1904] usb 4-1: config 0 descriptor??
[   70.663793][ T2012] loop1: detected capacity change from 0 to 40427
[   71.693148][   T30] kauditd_printk_skb: 60 callbacks suppressed
[   71.693207][   T30] audit: type=1400 audit(1722924381.286:211): avc:  denied  { module_request } for  pid=2009 comm="syz.2.610" kmod=636C735F991A54FC28D627D801 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   71.724108][   T30] audit: type=1400 audit(1722924381.346:212): avc:  denied  { remount } for  pid=2009 comm="syz.2.610" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   71.750874][ T2012] F2FS-fs (loop1): Found nat_bits in checkpoint
[   71.757678][  T299] usb 1-1: device descriptor read/64, error -71
[   71.850826][ T2012] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   71.927649][   T30] audit: type=1400 audit(1722924381.906:213): avc:  denied  { read write } for  pid=2022 comm="syz.4.612" name="fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   71.970592][   T30] audit: type=1400 audit(1722924381.946:214): avc:  denied  { open } for  pid=2022 comm="syz.4.612" path="/dev/fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   71.999317][   T30] audit: type=1400 audit(1722924381.946:215): avc:  denied  { create } for  pid=2022 comm="syz.4.612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   72.022113][ T1904] usbhid 4-1:0.0: can't add hid device: -71
[   72.028155][  T299] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[   72.037512][ T1904] usbhid: probe of 4-1:0.0 failed with error -71
[   72.048069][ T1904] usb 4-1: USB disconnect, device number 5
[   72.478613][   T30] audit: type=1400 audit(1722924382.466:216): avc:  denied  { read } for  pid=1988 comm="syz.0.603" path="socket:[20537]" dev="sockfs" ino=20537 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   72.557584][  T299] usb 1-1: device descriptor read/64, error -71
[   72.567598][   T60] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[   72.625533][  T602] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[   72.997667][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.008714][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.018822][   T60] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   73.027951][   T60] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.040205][   T60] usb 2-1: config 0 descriptor??
[   73.047696][  T602] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.058743][  T602] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.068717][  T602] usb 3-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[   73.081356][  T602] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.093308][  T602] usb 3-1: config 0 descriptor??
[   73.100574][ T2059] loop4: detected capacity change from 0 to 40427
[   73.181102][ T2059] F2FS-fs (loop4): Found nat_bits in checkpoint
[   73.197580][  T299] usb 1-1: device descriptor read/64, error -71
[   73.217193][ T2059] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   73.317658][  T299] usb usb1-port1: attempt power cycle
[   73.329422][   T30] audit: type=1400 audit(1722924383.316:217): avc:  denied  { integrity } for  pid=2066 comm="syz.4.626" lockdown_reason="use of bpf to write user RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[   73.329462][ T2067] syz.4.626[2067] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.353053][ T2067] syz.4.626[2067] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.852257][  T602] pantherlord 0003:0F30:0111.0008: item fetching failed at offset 6/7
[   73.925156][  T602] pantherlord 0003:0F30:0111.0008: parse failed
[   73.936481][  T602] pantherlord: probe of 0003:0F30:0111.0008 failed with error -22
[   74.049599][  T602] usb 3-1: USB disconnect, device number 9
[   74.068927][ T2082] 9pnet: Insufficient options for proto=fd
[   74.070152][ T2041] loop1: detected capacity change from 0 to 40427
[   74.097657][  T299] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[   74.140368][ T2041] F2FS-fs (loop1): invalid crc value
[   74.151904][ T2041] F2FS-fs (loop1): Found nat_bits in checkpoint
[   74.196178][ T2041] F2FS-fs (loop1): Cannot turn on quotas: -2 on 2
[   74.203060][ T2041] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   74.247865][   T60] hid (null): bogus close delimiter
[   74.287633][  T299] usb 1-1: device descriptor read/8, error -71
[   74.353116][ T2096] loop4: detected capacity change from 0 to 40427
[   74.377609][ T1904] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[   74.411729][ T2096] F2FS-fs (loop4): Found nat_bits in checkpoint
[   74.443175][ T2096] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   74.557609][  T299] usb 1-1: device descriptor read/8, error -71
[   74.737594][   T60] usb 2-1: string descriptor 0 read error: -71
[   74.767602][   T60] uclogic 0003:256C:006D.0009: failed retrieving string descriptor #200: -71
[   74.777032][   T60] uclogic 0003:256C:006D.0009: failed retrieving pen parameters: -71
[   74.785414][   T60] uclogic 0003:256C:006D.0009: failed probing pen v2 parameters: -71
[   74.823848][   T60] uclogic 0003:256C:006D.0009: failed probing parameters: -71
[   74.867950][   T60] uclogic: probe of 0003:256C:006D.0009 failed with error -71
[   74.948984][   T60] usb 2-1: USB disconnect, device number 9
[   74.979789][ T1904] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   74.990625][ T1904] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   75.003392][ T1904] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   75.012214][ T1904] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.020839][ T1904] usb 4-1: config 0 descriptor??
[   75.058338][  T299] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[   75.237727][  T299] usb 1-1: device descriptor read/8, error -71
[   75.757623][  T299] usb 1-1: device descriptor read/8, error -71
[   75.766765][   T30] audit: type=1400 audit(1722924385.746:218): avc:  denied  { write } for  pid=2137 comm="syz.1.649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   75.786017][ T1904] usbhid 4-1:0.0: can't add hid device: -71
[   75.795526][ T1904] usbhid: probe of 4-1:0.0 failed with error -71
[   75.806472][ T1904] usb 4-1: USB disconnect, device number 6
[   75.826892][ T2146] loop2: detected capacity change from 0 to 512
[   75.901638][ T2146] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   75.917965][  T299] usb usb1-port1: unable to enumerate USB device
[   75.975270][ T2140] loop1: detected capacity change from 0 to 40427
[   76.013668][ T2146] EXT4-fs (loop2): 1 truncate cleaned up
[   76.019213][ T2146] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   76.056279][ T2140] F2FS-fs (loop1): Found nat_bits in checkpoint
[   76.474295][ T2140] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   77.497047][ T2174] syz.4.658[2174] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.497125][ T2174] syz.4.658[2174] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.512818][   T30] audit: type=1400 audit(1722924387.496:219): avc:  denied  { read } for  pid=2173 comm="syz.4.658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   77.643610][ T2186] device veth1_macvtap left promiscuous mode
[   77.807575][  T299] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[   78.017696][   T60] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[   78.385862][   T30] audit: type=1400 audit(1722924388.366:220): avc:  denied  { create } for  pid=2209 comm="syz.4.673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   78.406123][  T299] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   78.416834][  T299] usb 4-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   78.425726][  T299] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   78.426634][   T30] audit: type=1400 audit(1722924388.416:221): avc:  denied  { ioctl } for  pid=2209 comm="syz.4.673" path="socket:[20869]" dev="sockfs" ino=20869 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   78.436394][  T299] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   78.461039][   T60] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   78.470389][  T299] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   78.481609][   T60] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   78.504466][   T60] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   78.513633][   T60] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.525541][   T60] usb 3-1: config 0 descriptor??
[   78.633602][ T2214] loop4: detected capacity change from 0 to 40427
[   78.647682][  T299] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   78.656979][  T299] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   78.665045][  T299] usb 4-1: Product: syz
[   78.669166][  T299] usb 4-1: Manufacturer: syz
[   78.673576][  T299] usb 4-1: SerialNumber: syz
[   78.699496][   T30] audit: type=1400 audit(1722924388.686:222): avc:  denied  { read } for  pid=2215 comm="syz.1.675" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   78.727803][   T30] audit: type=1400 audit(1722924388.686:223): avc:  denied  { open } for  pid=2215 comm="syz.1.675" path="/dev/kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   78.781775][ T2214] F2FS-fs (loop4): Found nat_bits in checkpoint
[   78.814511][ T2214] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   78.892567][   T30] audit: type=1400 audit(1722924388.876:224): avc:  denied  { write } for  pid=2215 comm="syz.1.675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   78.913066][   T30] audit: type=1400 audit(1722924388.876:225): avc:  denied  { read } for  pid=2215 comm="syz.1.675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   79.028734][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.051112][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.062925][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.072413][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.080083][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.087731][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.095039][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.102698][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.110075][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.117723][   T60] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[   79.125101][   T60] plantronics 0003:047F:FFFF.000A: unbalanced collection at end of report description
[   79.138935][   T60] plantronics 0003:047F:FFFF.000A: parse failed
[   79.145289][   T60] plantronics: probe of 0003:047F:FFFF.000A failed with error -22
[   79.236269][ T1904] usb 3-1: USB disconnect, device number 10
[   79.641595][   T30] audit: type=1400 audit(1722924389.626:226): avc:  denied  { mounton } for  pid=2227 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   79.725453][   T30] audit: type=1400 audit(1722924389.666:227): avc:  denied  { mount } for  pid=2227 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   79.760126][  T290] syz-executor (290) used greatest stack depth: 20880 bytes left
[   79.783261][   T30] audit: type=1400 audit(1722924389.676:228): avc:  denied  { mounton } for  pid=2227 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   79.812519][ T2227] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.821239][ T2240] 9pnet: Insufficient options for proto=fd
[   79.848480][ T2227] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.859219][ T2227] device bridge_slave_0 entered promiscuous mode
[   79.918102][ T2227] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.935023][ T2227] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.964739][ T2227] device bridge_slave_1 entered promiscuous mode
[   80.027715][  T299] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[   80.035724][  T299] usb 4-1: 2:1 : format type 0 is detected, processed as PCM
[   80.043045][  T299] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   80.048933][  T299] usb 4-1: 2:1 : invalid channels 0
[   80.087651][  T299] usb 4-1: USB disconnect, device number 7
[   80.127974][ T2227] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.134848][ T2227] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.137564][   T60] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[   80.141974][ T2227] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.156100][ T2227] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.185259][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   80.193537][  T395] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.201117][  T395] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.220569][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   80.228734][  T315] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.235575][  T315] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.243091][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   80.251644][  T315] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.258514][  T315] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.265609][ T2261] loop3: detected capacity change from 0 to 40427
[   80.271892][ T1419] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   80.280307][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   80.289143][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   80.297247][  T395] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   80.298345][ T2261] F2FS-fs (loop3): Found nat_bits in checkpoint
[   80.318266][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   80.329821][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   80.337304][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   80.346439][ T2227] device veth0_vlan entered promiscuous mode
[   80.359400][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   80.362146][ T2261] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   80.370030][ T2227] device veth1_macvtap entered promiscuous mode
[   80.386816][ T1904] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   80.400470][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   80.597800][   T60] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.609345][   T60] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.619457][   T60] usb 3-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[   80.628543][   T60] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.641618][   T60] usb 3-1: config 0 descriptor??
[   80.697960][ T1419] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   80.707116][ T1419] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.888750][ T1419] usb 5-1: config 0 descriptor??
[   81.685923][ T2293] 9pnet: Insufficient options for proto=fd
[   81.827613][   T60] usbhid 3-1:0.0: can't add hid device: -71
[   81.833427][   T60] usbhid: probe of 3-1:0.0 failed with error -71
[   81.845366][   T60] usb 3-1: USB disconnect, device number 11
[   81.927597][  T299] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[   81.987738][ T1419] usb 5-1: Cannot read MAC address
[   81.992752][ T1419] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[   82.001629][ T1408] device bridge_slave_1 left promiscuous mode
[   82.004265][ T1419] usb 5-1: USB disconnect, device number 8
[   82.007992][ T1408] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.020770][ T1408] device bridge_slave_0 left promiscuous mode
[   82.069118][ T1408] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.124160][ T1408] device veth1_macvtap left promiscuous mode
[   82.130509][ T1408] device veth0_vlan left promiscuous mode
[   82.283940][ T2323] 9pnet: Insufficient options for proto=fd
[   82.306686][ T2327] device pim6reg1 entered promiscuous mode
[   82.487663][  T299] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   82.511339][  T299] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   82.527261][  T299] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   82.536862][  T299] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.549355][  T299] usb 1-1: config 0 descriptor??
[   82.562062][ T2351] loop2: detected capacity change from 0 to 512
[   82.638672][ T2351] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   82.666980][ T2351] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #17: comm syz.2.719: iget: bad i_size value: -6917529027641081756
[   82.684892][ T2351] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.719: couldn't read orphan inode 17 (err -117)
[   82.706505][ T2351] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   82.802489][ T2351] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.719: bg 0: block 65: padding at end of block bitmap is not set
[   82.842214][ T2351] __quota_error: 5 callbacks suppressed
[   82.842232][ T2351] Quota error (device loop2): write_blk: dquota write failed
[   82.877606][ T1904] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   82.898960][ T2351] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   82.964353][ T2370] device pim6reg1 entered promiscuous mode
[   82.988187][ T2351] syz.2.719 (2351) used greatest stack depth: 19824 bytes left
[   83.038594][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.057611][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.064824][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.113157][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.137463][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.147731][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.155954][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.171354][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.179653][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.186966][  T299] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[   83.195139][  T299] plantronics 0003:047F:FFFF.000B: unbalanced collection at end of report description
[   83.205490][  T299] plantronics 0003:047F:FFFF.000B: parse failed
[   83.212122][  T299] plantronics: probe of 0003:047F:FFFF.000B failed with error -22
[   83.244868][  T313] usb 1-1: USB disconnect, device number 11
[   83.257722][ T1904] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   83.269726][ T1904] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.279898][ T1904] usb 5-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[   83.289163][ T1904] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.298544][ T1904] usb 5-1: config 0 descriptor??
[   83.502327][ T2403] device pim6reg1 entered promiscuous mode
[   83.504446][ T2401] loop1: detected capacity change from 0 to 512
[   83.535419][ T2401] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   83.631371][ T2401] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #17: comm syz.1.740: iget: bad i_size value: -6917529027641081756
[   83.645312][ T2401] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.740: couldn't read orphan inode 17 (err -117)
[   83.670286][ T2401] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   83.725254][ T2401] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.740: bg 0: block 65: padding at end of block bitmap is not set
[   83.762848][ T2401] Quota error (device loop1): write_blk: dquota write failed
[   83.776554][ T2401] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   83.889811][ T1904] usbhid 5-1:0.0: can't add hid device: -71
[   83.897939][ T1904] usbhid: probe of 5-1:0.0 failed with error -71
[   83.935371][ T1904] usb 5-1: USB disconnect, device number 9
[   86.097580][ T1419] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[   86.112502][ T2448] loop2: detected capacity change from 0 to 512
[   86.144923][   T30] audit: type=1400 audit(1722924396.126:234): avc:  denied  { create } for  pid=2449 comm="syz.1.767" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   86.206572][   T30] audit: type=1400 audit(1722924396.156:235): avc:  denied  { write } for  pid=2449 comm="syz.1.767" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   86.207976][ T2448] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.758: casefold flag without casefold feature
[   86.229728][   T30] audit: type=1400 audit(1722924396.156:236): avc:  denied  { nlmsg_write } for  pid=2449 comm="syz.1.767" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   86.264842][ T2448] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #2: comm syz.2.758: missing EA_INODE flag
[   86.280366][   T30] audit: type=1400 audit(1722924396.266:237): avc:  denied  { create } for  pid=2458 comm="syz.4.761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   86.286420][ T2448] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.758: error while reading EA inode 2 err=-117
[   86.311570][ T2448] EXT4-fs (loop2): 1 orphan inode deleted
[   86.317166][ T2448] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   86.376396][ T2445] loop3: detected capacity change from 0 to 40427
[   86.438952][ T2445] F2FS-fs (loop3): Found nat_bits in checkpoint
[   86.480871][ T2445] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   87.096415][ T2483] device pim6reg1 entered promiscuous mode
[   87.130676][ T1419] usb 1-1: unable to read config index 0 descriptor/all
[   87.137831][ T1419] usb 1-1: can't read configurations, error -71
[   87.587655][   T60] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[   87.660720][   T30] audit: type=1400 audit(1722924397.646:238): avc:  denied  { name_bind } for  pid=2519 comm="syz.4.784" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   87.692598][ T2523] loop1: detected capacity change from 0 to 512
[   87.721410][   T30] audit: type=1400 audit(1722924397.666:239): avc:  denied  { node_bind } for  pid=2519 comm="syz.4.784" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   87.751355][ T2527] device pim6reg1 entered promiscuous mode
[   87.782124][ T2507] loop2: detected capacity change from 0 to 40427
[   87.786708][ T2523] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.783: casefold flag without casefold feature
[   87.800946][ T2523] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #2: comm syz.1.783: missing EA_INODE flag
[   87.812415][ T2523] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.783: error while reading EA inode 2 err=-117
[   87.825000][ T2523] EXT4-fs (loop1): 1 orphan inode deleted
[   87.830947][ T2523] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   87.857918][ T2507] F2FS-fs (loop2): Found nat_bits in checkpoint
[   87.921665][ T2507] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   88.147656][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   88.159634][   T60] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   88.172749][   T60] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   88.181999][   T60] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.206524][   T60] usb 4-1: config 0 descriptor??
[   88.698876][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.711258][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.726190][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.762543][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.813019][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.847011][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.860236][ T2573] device pim6reg1 entered promiscuous mode
[   88.862826][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.882164][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.895069][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.908510][   T60] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[   88.917469][   T60] plantronics 0003:047F:FFFF.000C: unbalanced collection at end of report description
[   88.931368][   T60] plantronics 0003:047F:FFFF.000C: parse failed
[   88.953781][   T60] plantronics: probe of 0003:047F:FFFF.000C failed with error -22
[   88.981862][   T60] usb 4-1: USB disconnect, device number 8
[   89.149438][   T30] audit: type=1400 audit(1722924399.136:240): avc:  denied  { create } for  pid=2601 comm="syz.0.809" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   89.351020][   T30] audit: type=1400 audit(1722924399.156:241): avc:  denied  { write } for  pid=2601 comm="syz.0.809" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   89.354514][ T2587] loop2: detected capacity change from 0 to 40427
[   89.444888][ T2587] F2FS-fs (loop2): Found nat_bits in checkpoint
[   89.516955][   T30] audit: type=1400 audit(1722924399.496:242): avc:  denied  { ioctl } for  pid=2616 comm="syz.0.814" path="socket:[21442]" dev="sockfs" ino=21442 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   89.522134][ T2587] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   89.569190][ T2620] device pim6reg1 entered promiscuous mode
[   89.707567][   T60] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[   89.949804][ T2653] device pim6reg1 entered promiscuous mode
[   90.029131][ T2658] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   90.077691][   T60] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   90.092222][   T60] usb 2-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   90.110772][   T60] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   90.121625][   T60] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   90.131365][   T60] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   90.167592][ T1904] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   90.198849][   T30] audit: type=1400 audit(1722924400.186:243): avc:  denied  { bind } for  pid=2670 comm="syz.2.833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   90.213318][ T2671] netlink: 48 bytes leftover after parsing attributes in process `syz.2.833'.
[   90.234245][   T30] audit: type=1400 audit(1722924400.186:244): avc:  denied  { setopt } for  pid=2670 comm="syz.2.833" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   90.347711][   T60] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   90.372954][   T60] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.395510][   T60] usb 2-1: Product: syz
[   90.399609][   T60] usb 2-1: Manufacturer: syz
[   90.405870][   T60] usb 2-1: SerialNumber: syz
[   90.418949][ T2686] device pim6reg1 entered promiscuous mode
[   90.568736][ T2688] loop2: detected capacity change from 0 to 40427
[   90.587679][ T1904] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   90.599934][ T1904] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   90.612767][ T1904] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   90.621554][ T1904] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.631043][ T1904] usb 5-1: config 0 descriptor??
[   90.641238][ T2688] F2FS-fs (loop2): Found nat_bits in checkpoint
[   90.675399][ T2688] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   91.110660][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.123187][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.145912][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.163403][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.171521][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.179149][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.195630][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.203114][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.211717][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.219284][ T1904] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[   91.226928][ T1904] plantronics 0003:047F:FFFF.000D: unbalanced collection at end of report description
[   91.236837][ T1904] plantronics 0003:047F:FFFF.000D: parse failed
[   91.243230][ T1904] plantronics: probe of 0003:047F:FFFF.000D failed with error -22
[   91.310590][  T315] usb 5-1: USB disconnect, device number 10
[   91.747573][ T2440] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[   92.147722][   T60] usb 2-1: 2:1 : no or invalid class specific endpoint descriptor
[   92.167634][   T60] usb 2-1: 2:1 : format type 0 is detected, processed as PCM
[   92.173543][ T2756] loop1: detected capacity change from 0 to 128
[   92.178590][   T60] usb 2-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   92.184789][ T2440] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   92.186928][   T60] usb 2-1: 2:1 : invalid channels 0
[   92.207607][ T2440] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   92.227366][ T2440] usb 3-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[   92.236600][ T2440] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.240532][   T60] usb 2-1: USB disconnect, device number 10
[   92.245436][ T2440] usb 3-1: config 0 descriptor??
[   92.263224][ T2749] loop3: detected capacity change from 0 to 40427
[   92.303504][ T1106] udevd[1106]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   92.303574][ T2756] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   92.338936][ T2756] ext4 filesystem being mounted at /161/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[   92.382664][ T2749] F2FS-fs (loop3): Found nat_bits in checkpoint
[   92.416044][ T2749] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   92.500111][ T2776] loop1: detected capacity change from 0 to 256
[   92.527872][ T2776] exfat: Deprecated parameter 'utf8'
[   92.719991][ T2776] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[   92.879787][   T30] audit: type=1400 audit(1722924402.866:245): avc:  denied  { setattr } for  pid=2773 comm="syz.1.873" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   92.889908][  T315] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[   92.909739][ T2440] pantherlord 0003:0F30:0111.000E: item fetching failed at offset 6/7
[   92.917957][ T2440] pantherlord 0003:0F30:0111.000E: parse failed
[   92.924143][ T2440] pantherlord: probe of 0003:0F30:0111.000E failed with error -22
[   92.933337][ T2440] usb 3-1: USB disconnect, device number 12
[   93.567649][  T315] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   93.579090][  T315] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   93.592245][  T315] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   93.601269][  T315] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.615947][  T315] usb 5-1: config 0 descriptor??
[   93.618124][   T39] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[   94.007631][   T39] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   94.017720][   T39] usb 1-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   94.026495][   T39] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   94.037158][   T39] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   94.046579][   T39] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   94.100697][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.107985][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.115370][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.122529][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.129743][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.136896][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.144341][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.151695][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.158921][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.166353][  T315] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[   94.173573][  T315] plantronics 0003:047F:FFFF.000F: unbalanced collection at end of report description
[   94.183056][  T315] plantronics 0003:047F:FFFF.000F: parse failed
[   94.189168][  T315] plantronics: probe of 0003:047F:FFFF.000F failed with error -22
[   94.233705][   T39] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   94.244991][   T39] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   94.253684][   T39] usb 1-1: Product: syz
[   94.264903][   T39] usb 1-1: Manufacturer: syz
[   94.269561][   T39] usb 1-1: SerialNumber: syz
[   94.304679][  T315] usb 5-1: USB disconnect, device number 11
[   94.513688][ T2823] loop3: detected capacity change from 0 to 40427
[   94.535804][ T2823] F2FS-fs (loop3): invalid crc value
[   94.558703][ T2823] F2FS-fs (loop3): Found nat_bits in checkpoint
[   94.636615][ T2823] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   94.661825][ T2839] device pim6reg1 entered promiscuous mode
[   94.987046][   T30] audit: type=1400 audit(1722924404.966:246): avc:  denied  { ioctl } for  pid=2867 comm="syz.4.906" path="/dev/kvm" dev="devtmpfs" ino=82 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   94.987359][ T2868] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   95.032137][   T30] audit: type=1400 audit(1722924405.016:247): avc:  denied  { execute } for  pid=2867 comm="syz.4.906" path="/178/cpu.stat" dev="tmpfs" ino=936 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   95.085690][ T2871] device pim6reg1 entered promiscuous mode
[   95.235594][   T30] audit: type=1400 audit(1722924405.216:248): avc:  denied  { read } for  pid=2884 comm="syz.4.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   95.286446][   T30] audit: type=1400 audit(1722924405.266:249): avc:  denied  { ioctl } for  pid=2884 comm="syz.4.914" path="socket:[22975]" dev="sockfs" ino=22975 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   95.311109][   T30] audit: type=1400 audit(1722924405.266:250): avc:  denied  { bind } for  pid=2884 comm="syz.4.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   95.330931][   T30] audit: type=1400 audit(1722924405.296:251): avc:  denied  { setopt } for  pid=2884 comm="syz.4.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   95.350855][ T2882] loop2: detected capacity change from 0 to 40427
[   95.353877][   T30] audit: type=1400 audit(1722924405.296:252): avc:  denied  { write } for  pid=2884 comm="syz.4.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   95.376559][   T30] audit: type=1400 audit(1722924405.316:253): avc:  denied  { accept } for  pid=2884 comm="syz.4.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   95.397871][ T2882] F2FS-fs (loop2): Found nat_bits in checkpoint
[   95.444797][ T2882] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   95.645284][ T2904] device pim6reg1 entered promiscuous mode
[   95.842092][ T2922] syz.3.926[2922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   95.842171][ T2922] syz.3.926[2922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.027638][   T39] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[   96.066040][   T39] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[   96.094925][   T39] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   96.107552][   T39] usb 1-1: 2:1 : invalid channels 0
[   96.152083][   T39] usb 1-1: USB disconnect, device number 14
[   96.251777][ T2947] device pim6reg1 entered promiscuous mode
[   96.284797][   T30] audit: type=1400 audit(1722924406.266:254): avc:  denied  { ioctl } for  pid=2950 comm="syz.0.937" path="/dev/fuse" dev="devtmpfs" ino=91 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   96.667831][ T2967] loop4: detected capacity change from 0 to 40427
[   96.737189][ T2967] F2FS-fs (loop4): Found nat_bits in checkpoint
[   96.740090][ T2993] device pim6reg1 entered promiscuous mode
[   96.789425][ T2967] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   96.857686][  T313] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[   97.163321][   T30] audit: type=1400 audit(1722924407.146:255): avc:  denied  { read } for  pid=3007 comm="syz.3.959" name="binder1" dev="binder" ino=17 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   97.227649][  T313] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.238597][  T313] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   97.248697][  T313] usb 3-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[   97.258039][  T313] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.270014][  T313] usb 3-1: config 0 descriptor??
[   97.558699][ T3024] syz.0.963[3024] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.558777][ T3024] syz.0.963[3024] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.695606][ T3032] device pim6reg1 entered promiscuous mode
[   97.748493][  T313] pantherlord 0003:0F30:0111.0010: item fetching failed at offset 6/7
[   97.756643][  T313] pantherlord 0003:0F30:0111.0010: parse failed
[   97.762918][  T313] pantherlord: probe of 0003:0F30:0111.0010 failed with error -22
[   97.949473][  T315] usb 3-1: USB disconnect, device number 13
[   97.971633][ T3056] device pim6reg1 entered promiscuous mode
[   98.180579][ T3069] kvm: emulating exchange as write
[   98.496407][ T3096] device pim6reg1 entered promiscuous mode
[   98.513473][ T3105] loop0: detected capacity change from 0 to 512
[   98.558488][ T3105] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   98.604699][ T3105] EXT4-fs (loop0): 1 truncate cleaned up
[   98.634082][ T3105] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   98.906095][ T3128] syz.1.1003[3128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.906449][ T3128] syz.1.1003[3128] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.407684][ T1419] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[   99.448581][ T3146] loop0: detected capacity change from 0 to 40427
[   99.532754][ T3146] F2FS-fs (loop0): Found nat_bits in checkpoint
[   99.573720][ T3146] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   99.637566][  T315] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[   99.743687][ T3164] device pim6reg1 entered promiscuous mode
[   99.773876][ T3169] loop1: detected capacity change from 0 to 512
[   99.810815][ T3169] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   99.824742][ T3169] EXT4-fs (loop1): 1 truncate cleaned up
[   99.830541][ T3169] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[   99.857883][ T1419] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   99.940285][ T1419] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.951446][ T1419] usb 3-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[   99.963543][ T1419] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.004777][ T1419] usb 3-1: config 0 descriptor??
[  100.293243][  T315] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  100.304080][  T315] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  100.318677][  T315] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  100.328267][  T315] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.336823][  T315] usb 4-1: config 0 descriptor??
[  100.673015][ T1419] pantherlord 0003:0F30:0111.0011: item fetching failed at offset 6/7
[  100.686008][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  100.686022][   T30] audit: type=1400 audit(1722924410.666:265): avc:  denied  { ioctl } for  pid=3206 comm="syz.4.1033" path="socket:[24415]" dev="sockfs" ino=24415 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  100.688042][ T1419] pantherlord 0003:0F30:0111.0011: parse failed
[  100.722878][ T3209] device veth1_macvtap left promiscuous mode
[  100.736562][ T1419] pantherlord: probe of 0003:0F30:0111.0011 failed with error -22
[  100.782528][ T1904] usb 3-1: USB disconnect, device number 14
[  100.926813][ T3212] loop4: detected capacity change from 0 to 40427
[  100.937627][  T315] usbhid 4-1:0.0: can't add hid device: -71
[  100.943412][  T315] usbhid: probe of 4-1:0.0 failed with error -71
[  100.950525][  T315] usb 4-1: USB disconnect, device number 9
[  100.955586][ T3212] F2FS-fs (loop4): Found nat_bits in checkpoint
[  100.988033][ T3212] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  101.302677][ T3234] syz.0.1049[3234] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.302752][ T3234] syz.0.1049[3234] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.385409][ T3245] loop2: detected capacity change from 0 to 512
[  101.448576][ T3245] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  101.482740][ T3245] EXT4-fs (loop2): 1 truncate cleaned up
[  101.488603][ T3245] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  102.667592][  T315] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  102.782500][ T3290] loop2: detected capacity change from 0 to 40427
[  102.828430][ T3298] syz.1.1064[3298] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.828505][ T3298] syz.1.1064[3298] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.853734][ T3290] F2FS-fs (loop2): Found nat_bits in checkpoint
[  102.943236][ T3290] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  103.047681][  T315] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  103.061738][  T315] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  103.078311][ T3314] loop4: detected capacity change from 0 to 512
[  103.098609][ T3314] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  103.116617][ T3314] EXT4-fs (loop4): 1 truncate cleaned up
[  103.122472][ T3314] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  103.237617][  T315] usb 1-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  103.256640][  T315] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.264698][  T315] usb 1-1: Product: syz
[  103.268890][  T315] usb 1-1: Manufacturer: syz
[  103.273295][  T315] usb 1-1: SerialNumber: syz
[  103.281296][  T315] usb 1-1: config 0 descriptor??
[  103.607632][ T3287] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  103.614555][ T3287] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  103.769877][ T3329] netlink: 55 bytes leftover after parsing attributes in process `syz.2.1069'.
[  103.804832][ T3330] device veth1_macvtap left promiscuous mode
[  103.828651][ T3287] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  103.846891][ T3287] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  104.032439][ T3348] syz.4.1081[3348] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.032514][ T3348] syz.4.1081[3348] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.231347][ T3345] loop2: detected capacity change from 0 to 40427
[  104.307610][  T315] dm9601: No valid MAC address in EEPROM, using a2:41:68:66:89:54
[  104.379076][ T3345] F2FS-fs (loop2): Found nat_bits in checkpoint
[  104.420093][ T3345] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  104.527645][  T315] dm9601 1-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  104.539830][  T315] usb 1-1: USB disconnect, device number 15
[  104.698509][ T3371] loop3: detected capacity change from 0 to 1024
[  104.746790][ T3371] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  104.754017][ T3371] EXT4-fs (loop3): Ignoring removed oldalloc option
[  104.773365][ T3376] loop1: detected capacity change from 0 to 1024
[  104.780197][ T3371] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nomblk_io_submit,jqfmt=vfsold,data_err=ignore,dioread_lock,delalloc,resuid=0x0000000000000000,oldalloc,init_itable=0x000000000000097e,,errors=continue. Quota mode: none.
[  104.806181][ T3376] EXT4-fs (loop1): barriers disabled
[  104.812034][ T3376] JBD2: no valid journal superblock found
[  104.817735][ T3376] EXT4-fs (loop1): error loading journal
[  104.860617][ T3382] loop3: detected capacity change from 0 to 512
[  104.879961][ T3382] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  104.919838][ T3382] EXT4-fs (loop3): 1 truncate cleaned up
[  104.949432][ T3382] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  105.007487][ T3391] device pim6reg1 entered promiscuous mode
[  105.623236][ T3414] syz.1.1105[3414] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.623307][ T3414] syz.1.1105[3414] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.836600][ T3430] loop0: detected capacity change from 0 to 128
[  105.885708][   T30] audit: type=1400 audit(1722924415.866:266): avc:  denied  { mount } for  pid=3429 comm="syz.0.1113" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  105.938288][   T30] audit: type=1400 audit(1722924415.896:267): avc:  denied  { unmount } for  pid=2227 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  205.997524][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  206.004012][    C1] rcu: 	1-...!: (1 GPs behind) idle=4e3/1/0x4000000000000000 softirq=14909/14937 fqs=0 last_accelerate: b388/dafb dyntick_enabled: 1
[  206.017458][    C1] 	(t=10001 jiffies g=13697 q=208)
[  206.022387][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10001 jiffies! g13697 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  206.034544][    C1] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=3855
[  206.042177][    C1] rcu: rcu_preempt kthread starved for 10004 jiffies! g13697 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[  206.053374][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  206.063179][    C1] rcu: RCU grace-period kthread stack dump:
[  206.068924][    C1] task:rcu_preempt     state:I stack:28288 pid:   14 ppid:     2 flags:0x00004000
[  206.077947][    C1] Call Trace:
[  206.081068][    C1]  <TASK>
[  206.083853][    C1]  __schedule+0xccc/0x1590
[  206.088097][    C1]  ? __sched_text_start+0x8/0x8
[  206.092779][    C1]  ? __kasan_check_write+0x14/0x20
[  206.097726][    C1]  schedule+0x11f/0x1e0
[  206.101719][    C1]  schedule_timeout+0x18c/0x370
[  206.106405][    C1]  ? _raw_spin_unlock_irq+0x4e/0x70
[  206.111451][    C1]  ? console_conditional_schedule+0x30/0x30
[  206.117168][    C1]  ? update_process_times+0x200/0x200
[  206.122374][    C1]  ? prepare_to_swait_event+0x308/0x320
[  206.127764][    C1]  rcu_gp_fqs_loop+0x2af/0xf80
[  206.132356][    C1]  ? debug_smp_processor_id+0x17/0x20
[  206.137567][    C1]  ? __note_gp_changes+0x4ab/0x920
[  206.142511][    C1]  ? rcu_gp_init+0xc30/0xc30
[  206.146942][    C1]  ? _raw_spin_unlock_irq+0x4e/0x70
[  206.151975][    C1]  ? rcu_gp_init+0x9cf/0xc30
[  206.156398][    C1]  rcu_gp_kthread+0xa4/0x350
[  206.160824][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  206.165511][    C1]  ? wake_nocb_gp+0x1e0/0x1e0
[  206.170024][    C1]  ? __kasan_check_read+0x11/0x20
[  206.174884][    C1]  ? __kthread_parkme+0xb2/0x200
[  206.179660][    C1]  kthread+0x421/0x510
[  206.183563][    C1]  ? wake_nocb_gp+0x1e0/0x1e0
[  206.188082][    C1]  ? kthread_blkcg+0xd0/0xd0
[  206.192506][    C1]  ret_from_fork+0x1f/0x30
[  206.196761][    C1]  </TASK>
[  206.199628][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  206.205791][    C1] Sending NMI from CPU 1 to CPUs 0:
[  206.210841][    C0] NMI backtrace for cpu 0
[  206.210861][    C0] CPU: 0 PID: 3446 Comm: syz.3.1120 Not tainted 5.15.152-syzkaller-00143-g70e1a731d986 #0
[  206.210879][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  206.210892][    C0] RIP: 0010:kvm_wait+0x147/0x180
[  206.210916][    C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 2b 02 13 04 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  206.210931][    C0] RSP: 0018:ffffc90000ee7960 EFLAGS: 00000246
[  206.210947][    C0] RAX: 0000000000000003 RBX: 1ffff920001dcf30 RCX: ffffffff8155068f
[  206.210959][    C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff888125512c90
[  206.210972][    C0] RBP: ffffc90000ee7a10 R08: dffffc0000000000 R09: ffffed1024aa2593
[  206.210985][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  206.210997][    C0] R13: ffff888125512c90 R14: 0000000000000003 R15: 1ffff920001dcf34
[  206.211009][    C0] FS:  000055555581e500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  206.211025][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  206.211037][    C0] CR2: 000000110c269fc0 CR3: 0000000118495000 CR4: 00000000003506b0
[  206.211054][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  206.211064][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  206.211075][    C0] Call Trace:
[  206.211080][    C0]  <NMI>
[  206.211086][    C0]  ? show_regs+0x58/0x60
[  206.211102][    C0]  ? nmi_cpu_backtrace+0x29f/0x300
[  206.211123][    C0]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  206.211143][    C0]  ? kvm_wait+0x147/0x180
[  206.211158][    C0]  ? kvm_wait+0x147/0x180
[  206.211173][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  206.211191][    C0]  ? nmi_handle+0xa8/0x280
[  206.211207][    C0]  ? kvm_wait+0x147/0x180
[  206.211222][    C0]  ? default_do_nmi+0x69/0x160
[  206.211238][    C0]  ? exc_nmi+0xaf/0x120
[  206.211251][    C0]  ? end_repeat_nmi+0x16/0x31
[  206.211267][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  206.211289][    C0]  ? kvm_wait+0x147/0x180
[  206.211303][    C0]  ? kvm_wait+0x147/0x180
[  206.211319][    C0]  ? kvm_wait+0x147/0x180
[  206.211334][    C0]  </NMI>
[  206.211339][    C0]  <TASK>
[  206.211344][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  206.211364][    C0]  ? kvm_arch_para_hints+0x30/0x30
[  206.211381][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  206.211401][    C0]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  206.211419][    C0]  ? do_syscall_64+0x49/0xb0
[  206.211438][    C0]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  206.211458][    C0]  ? __kasan_check_write+0x14/0x20
[  206.211481][    C0]  _raw_spin_lock_bh+0x139/0x1b0
[  206.211498][    C0]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  206.211516][    C0]  ? __local_bh_enable_ip+0x58/0x80
[  206.211533][    C0]  ? lock_sock_nested+0x266/0x300
[  206.211550][    C0]  ? unix_peer_get+0xe0/0xe0
[  206.211567][    C0]  sk_psock_link_pop+0x2e/0x170
[  206.211586][    C0]  ? unix_peer_get+0xe0/0xe0
[  206.211602][    C0]  sock_map_remove_links+0x25/0x570
[  206.211620][    C0]  ? __kasan_check_read+0x11/0x20
[  206.211637][    C0]  ? unix_peer_get+0xe0/0xe0
[  206.211653][    C0]  sock_map_close+0x2ac/0x4c0
[  206.211671][    C0]  ? sock_map_remove_links+0x570/0x570
[  206.211690][    C0]  ? rwsem_mark_wake+0x770/0x770
[  206.211706][    C0]  ? security_file_free+0xc6/0xe0
[  206.211727][    C0]  unix_release+0x82/0xc0
[  206.211744][    C0]  sock_close+0xdf/0x270
[  206.211761][    C0]  ? sock_mmap+0xa0/0xa0
[  206.211778][    C0]  __fput+0x3fe/0x910
[  206.211796][    C0]  ____fput+0x15/0x20
[  206.211812][    C0]  task_work_run+0x129/0x190
[  206.211828][    C0]  exit_to_user_mode_loop+0xc4/0xe0
[  206.211845][    C0]  exit_to_user_mode_prepare+0x5a/0xa0
[  206.211862][    C0]  syscall_exit_to_user_mode+0x26/0x160
[  206.211879][    C0]  do_syscall_64+0x49/0xb0
[  206.211896][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  206.211915][    C0] RIP: 0033:0x7f0e780bc9f9
[  206.211945][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.211959][    C0] RSP: 002b:00007ffcdf224968 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  206.211975][    C0] RAX: 0000000000000000 RBX: 0000000000019e03 RCX: 00007f0e780bc9f9
[  206.211986][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  206.211996][    C0] RBP: 00007ffcdf224a40 R08: 0000000000000001 R09: 00007ffcdf224c4f
[  206.212007][    C0] R10: 00007f0e77f45000 R11: 0000000000000246 R12: 0000000000000032
[  206.212018][    C0] R13: 00007ffcdf224a60 R14: 00007ffcdf224a80 R15: ffffffffffffffff
[  206.212035][    C0]  </TASK>
[  206.212870][    C1] NMI backtrace for cpu 1
[  206.659171][    C1] CPU: 1 PID: 3416 Comm: syz.2.1106 Not tainted 5.15.152-syzkaller-00143-g70e1a731d986 #0
[  206.669143][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  206.679213][    C1] Call Trace:
[  206.682336][    C1]  <IRQ>
[  206.685464][    C1]  dump_stack_lvl+0x151/0x1b7
[  206.690063][    C1]  ? io_uring_drop_tctx_refs+0x190/0x190
[  206.695528][    C1]  ? ttwu_do_wakeup+0x187/0x430
[  206.700217][    C1]  dump_stack+0x15/0x17
[  206.704211][    C1]  nmi_cpu_backtrace+0x2f7/0x300
[  206.708993][    C1]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  206.714968][    C1]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  206.720263][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  206.724954][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  206.730853][    C1]  nmi_trigger_cpumask_backtrace+0x15d/0x270
[  206.736682][    C1]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  206.742572][    C1]  arch_trigger_cpumask_backtrace+0x10/0x20
[  206.748299][    C1]  rcu_dump_cpu_stacks+0x1d8/0x330
[  206.753245][    C1]  print_cpu_stall+0x315/0x5f0
[  206.757846][    C1]  rcu_sched_clock_irq+0x989/0x12f0
[  206.762881][    C1]  ? rcu_boost_kthread_setaffinity+0x340/0x340
[  206.768871][    C1]  ? hrtimer_run_queues+0x15f/0x440
[  206.773907][    C1]  update_process_times+0x198/0x200
[  206.778938][    C1]  tick_sched_timer+0x188/0x240
[  206.783623][    C1]  ? tick_setup_sched_timer+0x480/0x480
[  206.789008][    C1]  __hrtimer_run_queues+0x41a/0xad0
[  206.794041][    C1]  ? hrtimer_interrupt+0xaa0/0xaa0
[  206.798987][    C1]  ? clockevents_program_event+0x22f/0x300
[  206.804635][    C1]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[  206.810532][    C1]  hrtimer_interrupt+0x40c/0xaa0
[  206.815313][    C1]  __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  206.821031][    C1]  sysvec_apic_timer_interrupt+0x95/0xc0
[  206.826501][    C1]  </IRQ>
[  206.829278][    C1]  <TASK>
[  206.832054][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  206.837870][    C1] RIP: 0010:kvm_wait+0x147/0x180
[  206.842646][    C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 2b 02 13 04 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  206.862085][    C1] RSP: 0018:ffffc90000b761c0 EFLAGS: 00000246
[  206.867987][    C1] RAX: 0000000000000003 RBX: 1ffff9200016ec3c RCX: ffffffff8155068f
[  206.875811][    C1] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810bd5dfd8
[  206.883723][    C1] RBP: ffffc90000b76270 R08: dffffc0000000000 R09: ffffed10217abbfc
[  206.891536][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  206.899348][    C1] R13: ffff88810bd5dfd8 R14: 0000000000000003 R15: 1ffff9200016ec40
[  206.907163][    C1]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  206.913245][    C1]  ? asm_common_interrupt+0x27/0x40
[  206.918277][    C1]  ? kvm_arch_para_hints+0x30/0x30
[  206.923303][    C1]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  206.929564][    C1]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  206.935454][    C1]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  206.941704][    C1]  _raw_spin_lock_bh+0x139/0x1b0
[  206.946480][    C1]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  206.951510][    C1]  ? sock_hash_bucket_hash+0x31c/0x7e0
[  206.956804][    C1]  sock_hash_delete_elem+0xb1/0x2f0
[  206.961841][    C1]  ? bpf_trace_run4+0x13f/0x270
[  206.966614][    C1]  ? bpf_trace_run3+0x250/0x250
[  206.971303][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  206.976769][    C1]  ? __alloc_pages+0x3cb/0x8f0
[  206.981367][    C1]  ? prep_new_page+0x110/0x110
[  206.985967][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  206.991444][    C1]  ? stack_trace_save+0x113/0x1c0
[  206.996297][    C1]  ? __stack_depot_save+0x38d/0x470
[  207.001334][    C1]  ? stack_depot_save+0xe/0x10
[  207.005931][    C1]  ? save_stack+0x104/0x1e0
[  207.010270][    C1]  ? __reset_page_owner+0x190/0x190
[  207.015392][    C1]  ? post_alloc_hook+0x1a3/0x1b0
[  207.020167][    C1]  ? prep_new_page+0x1b/0x110
[  207.024678][    C1]  ? get_page_from_freelist+0x3550/0x35d0
[  207.030233][    C1]  ? __alloc_pages+0x27e/0x8f0
[  207.034832][    C1]  ? __stack_depot_save+0x38d/0x470
[  207.039866][    C1]  ? kasan_set_track+0x5d/0x70
[  207.044468][    C1]  ? kasan_set_free_info+0x23/0x40
[  207.049415][    C1]  ? ____kasan_slab_free+0x126/0x160
[  207.054535][    C1]  ? __kasan_slab_free+0x11/0x20
[  207.059311][    C1]  ? slab_free_freelist_hook+0xbd/0x190
[  207.064690][    C1]  ? kfree+0xc8/0x220
[  207.068511][    C1]  ? sock_map_unref+0x352/0x4d0
[  207.073194][    C1]  ? sock_hash_delete_elem+0x274/0x2f0
[  207.078492][    C1]  ? bpf_trace_run4+0x13f/0x270
[  207.083178][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  207.088653][    C1]  ? __this_cpu_preempt_check+0x13/0x20
[  207.094033][    C1]  ? __mod_node_page_state+0xac/0xf0
[  207.099150][    C1]  ? __set_page_owner+0x28/0x2e0
[  207.103920][    C1]  ? kernel_init_free_pages+0xda/0xf0
[  207.109128][    C1]  ? post_alloc_hook+0x1a3/0x1b0
[  207.113901][    C1]  ? prep_new_page+0x1b/0x110
[  207.118418][    C1]  ? get_page_from_freelist+0x3550/0x35d0
[  207.123968][    C1]  ? free_thread_stack+0x372/0x470
[  207.128921][    C1]  ? __schedule+0xcd4/0x1590
[  207.133528][    C1]  ? __alloc_pages+0x8f0/0x8f0
[  207.138127][    C1]  ? __alloc_pages_bulk+0xe40/0xe40
[  207.143160][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  207.148029][    C1]  ? __alloc_pages+0x27e/0x8f0
[  207.152618][    C1]  ? prep_new_page+0x110/0x110
[  207.157230][    C1]  ? stack_trace_save+0x113/0x1c0
[  207.162078][    C1]  ? stack_trace_snprint+0xf0/0xf0
[  207.167025][    C1]  ? __stack_depot_save+0x38d/0x470
[  207.172059][    C1]  ? kfree+0xc8/0x220
[  207.175877][    C1]  ? kasan_set_track+0x5d/0x70
[  207.180478][    C1]  ? kasan_set_track+0x4b/0x70
[  207.185079][    C1]  ? kasan_set_free_info+0x23/0x40
[  207.190026][    C1]  ? ____kasan_slab_free+0x126/0x160
[  207.195145][    C1]  ? __kasan_slab_free+0x11/0x20
[  207.199923][    C1]  ? slab_free_freelist_hook+0xbd/0x190
[  207.205560][    C1]  ? kfree+0xc8/0x220
[  207.209383][    C1]  ? sock_map_unref+0x352/0x4d0
[  207.214066][    C1]  ? sock_hash_delete_elem+0x274/0x2f0
[  207.219375][    C1]  ? bpf_trace_run4+0x13f/0x270
[  207.224048][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  207.229516][    C1]  ? __alloc_pages+0x3cb/0x8f0
[  207.234117][    C1]  ? shmem_alloc_and_acct_page+0x4bd/0xa80
[  207.239759][    C1]  ? shmem_getpage_gfp+0x1388/0x23c0
[  207.244879][    C1]  ? shmem_write_begin+0xca/0x1b0
[  207.249739][    C1]  ? generic_perform_write+0x2bc/0x5a0
[  207.255035][    C1]  ? __generic_file_write_iter+0x25b/0x4b0
[  207.260683][    C1]  ? generic_file_write_iter+0xaf/0x1c0
[  207.266070][    C1]  ? vfs_write+0xd5d/0x1110
[  207.270573][    C1]  ? ksys_write+0x199/0x2c0
[  207.274909][    C1]  ? __x64_sys_write+0x7b/0x90
[  207.279513][    C1]  ? do_syscall_64+0x3d/0xb0
[  207.283936][    C1]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  207.289846][    C1]  ? post_alloc_hook+0x1a3/0x1b0
[  207.294614][    C1]  ? kasan_set_free_info+0x23/0x40
[  207.299561][    C1]  ? ____kasan_slab_free+0x126/0x160
[  207.304684][    C1]  ? __kasan_slab_free+0x11/0x20
[  207.309458][    C1]  ? slab_free_freelist_hook+0xbd/0x190
[  207.314837][    C1]  ? sock_map_unref+0x352/0x4d0
[  207.319526][    C1]  ? kfree+0xc8/0x220
[  207.323346][    C1]  ? sock_map_unref+0x352/0x4d0
[  207.328030][    C1]  ? sock_hash_delete_elem+0x274/0x2f0
[  207.333324][    C1]  ? bpf_trace_run4+0x13f/0x270
[  207.338013][    C1]  ? irqentry_exit+0x30/0x40
[  207.342436][    C1]  ? bpf_trace_run3+0x250/0x250
[  207.347125][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  207.352593][    C1]  ? __alloc_pages+0x3cb/0x8f0
[  207.357191][    C1]  ? prep_new_page+0x110/0x110
[  207.361792][    C1]  ? __kasan_check_read+0x11/0x20
[  207.366653][    C1]  ? __vm_enough_memory+0x119/0x2f0
[  207.371686][    C1]  ? shmem_alloc_and_acct_page+0x4bd/0xa80
[  207.377327][    C1]  ? shmem_swapin_page+0x1520/0x1520
[  207.382452][    C1]  ? xas_start+0x32c/0x3f0
[  207.386702][    C1]  ? xas_load+0x2b7/0x2d0
[  207.390871][    C1]  ? pagecache_get_page+0xdc2/0xeb0
[  207.395902][    C1]  ? page_cache_prev_miss+0x410/0x410
[  207.401107][    C1]  ? _raw_spin_lock_irqsave+0x210/0x210
[  207.406493][    C1]  ? lru_cache_add+0x279/0x540
[  207.411091][    C1]  ? shmem_getpage_gfp+0x1388/0x23c0
[  207.416218][    C1]  ? shmem_getpage+0xa0/0xa0
[  207.420724][    C1]  ? fault_in_safe_writeable+0x240/0x240
[  207.426197][    C1]  ? shmem_write_begin+0xca/0x1b0
[  207.431053][    C1]  ? generic_perform_write+0x2bc/0x5a0
[  207.436352][    C1]  ? grab_cache_page_write_begin+0xa0/0xa0
[  207.441987][    C1]  ? file_remove_privs+0x610/0x610
[  207.446935][    C1]  ? rwsem_write_trylock+0x153/0x340
[  207.452057][    C1]  ? rwsem_mark_wake+0x770/0x770
[  207.456832][    C1]  ? __generic_file_write_iter+0x25b/0x4b0
[  207.462473][    C1]  ? generic_file_write_iter+0xaf/0x1c0
[  207.467859][    C1]  ? vfs_write+0xd5d/0x1110
[  207.472196][    C1]  ? file_end_write+0x1c0/0x1c0
[  207.476886][    C1]  ? __fdget_pos+0x209/0x3a0
[  207.481306][    C1]  ? ksys_write+0x77/0x2c0
[  207.485561][    C1]  ? ksys_write+0x199/0x2c0
[  207.489935][    C1]  ? __ia32_sys_read+0x90/0x90
[  207.494514][    C1]  ? __x64_sys_write+0x7b/0x90
[  207.499101][    C1]  ? do_syscall_64+0x3d/0xb0
[  207.503526][    C1]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  207.509432][    C1]  </TASK>
[  353.032078][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 246s! [syz.3.1120:3446]
[  353.040141][    C0] Modules linked in:
[  353.043876][    C0] CPU: 0 PID: 3446 Comm: syz.3.1120 Not tainted 5.15.152-syzkaller-00143-g70e1a731d986 #0
[  353.053691][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  353.063575][    C0] RIP: 0010:kvm_wait+0x147/0x180
[  353.068360][    C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 2b 02 13 04 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  353.088314][    C0] RSP: 0018:ffffc90000ee7960 EFLAGS: 00000246
[  353.094216][    C0] RAX: 0000000000000003 RBX: 1ffff920001dcf30 RCX: ffffffff8155068f
[  353.102025][    C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff888125512c90
[  353.109834][    C0] RBP: ffffc90000ee7a10 R08: dffffc0000000000 R09: ffffed1024aa2593
[  353.117649][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  353.125552][    C0] R13: ffff888125512c90 R14: 0000000000000003 R15: 1ffff920001dcf34
[  353.133367][    C0] FS:  000055555581e500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  353.142137][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  353.148555][    C0] CR2: 000000110c269fc0 CR3: 0000000118495000 CR4: 00000000003506b0
[  353.156374][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  353.164177][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  353.172080][    C0] Call Trace:
[  353.175207][    C0]  <IRQ>
[  353.177971][    C0]  ? show_regs+0x58/0x60
[  353.182071][    C0]  ? watchdog_timer_fn+0x4b1/0x5f0
[  353.187012][    C0]  ? proc_watchdog_cpumask+0xd0/0xd0
[  353.192131][    C0]  ? __hrtimer_run_queues+0x41a/0xad0
[  353.197340][    C0]  ? hrtimer_interrupt+0xaa0/0xaa0
[  353.202286][    C0]  ? clockevents_program_event+0x22f/0x300
[  353.207928][    C0]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[  353.213831][    C0]  ? hrtimer_interrupt+0x40c/0xaa0
[  353.218784][    C0]  ? __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  353.224679][    C0]  ? sysvec_apic_timer_interrupt+0x95/0xc0
[  353.230319][    C0]  </IRQ>
[  353.233095][    C0]  <TASK>
[  353.235892][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  353.241865][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  353.247942][    C0]  ? kvm_wait+0x147/0x180
[  353.252105][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  353.258183][    C0]  ? kvm_arch_para_hints+0x30/0x30
[  353.263127][    C0]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  353.269206][    C0]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  353.275197][    C0]  ? do_syscall_64+0x49/0xb0
[  353.279623][    C0]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  353.285868][    C0]  ? __kasan_check_write+0x14/0x20
[  353.290816][    C0]  _raw_spin_lock_bh+0x139/0x1b0
[  353.295589][    C0]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  353.300623][    C0]  ? __local_bh_enable_ip+0x58/0x80
[  353.305658][    C0]  ? lock_sock_nested+0x266/0x300
[  353.310518][    C0]  ? unix_peer_get+0xe0/0xe0
[  353.314943][    C0]  sk_psock_link_pop+0x2e/0x170
[  353.319632][    C0]  ? unix_peer_get+0xe0/0xe0
[  353.324060][    C0]  sock_map_remove_links+0x25/0x570
[  353.329093][    C0]  ? __kasan_check_read+0x11/0x20
[  353.333952][    C0]  ? unix_peer_get+0xe0/0xe0
[  353.338379][    C0]  sock_map_close+0x2ac/0x4c0
[  353.342898][    C0]  ? sock_map_remove_links+0x570/0x570
[  353.348274][    C0]  ? rwsem_mark_wake+0x770/0x770
[  353.353047][    C0]  ? security_file_free+0xc6/0xe0
[  353.357909][    C0]  unix_release+0x82/0xc0
[  353.362074][    C0]  sock_close+0xdf/0x270
[  353.366166][    C0]  ? sock_mmap+0xa0/0xa0
[  353.370320][    C0]  __fput+0x3fe/0x910
[  353.374140][    C0]  ____fput+0x15/0x20
[  353.377957][    C0]  task_work_run+0x129/0x190
[  353.382384][    C0]  exit_to_user_mode_loop+0xc4/0xe0
[  353.387419][    C0]  exit_to_user_mode_prepare+0x5a/0xa0
[  353.392715][    C0]  syscall_exit_to_user_mode+0x26/0x160
[  353.398113][    C0]  do_syscall_64+0x49/0xb0
[  353.402348][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  353.408079][    C0] RIP: 0033:0x7f0e780bc9f9
[  353.412331][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.431771][    C0] RSP: 002b:00007ffcdf224968 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  353.440020][    C0] RAX: 0000000000000000 RBX: 0000000000019e03 RCX: 00007f0e780bc9f9
[  353.447837][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  353.455636][    C0] RBP: 00007ffcdf224a40 R08: 0000000000000001 R09: 00007ffcdf224c4f
[  353.463446][    C0] R10: 00007f0e77f45000 R11: 0000000000000246 R12: 0000000000000032
[  353.471273][    C0] R13: 00007ffcdf224a60 R14: 00007ffcdf224a80 R15: ffffffffffffffff
[  353.479080][    C0]  </TASK>
[  353.481940][    C0] Sending NMI from CPU 0 to CPUs 1:
[  353.487018][    C1] NMI backtrace for cpu 1
[  353.487032][    C1] CPU: 1 PID: 3416 Comm: syz.2.1106 Not tainted 5.15.152-syzkaller-00143-g70e1a731d986 #0
[  353.487053][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  353.487063][    C1] RIP: 0010:kvm_wait+0x147/0x180
[  353.487087][    C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 2b 02 13 04 fb f4 <e9> 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c
[  353.487103][    C1] RSP: 0018:ffffc90000b761c0 EFLAGS: 00000246
[  353.487119][    C1] RAX: 0000000000000003 RBX: 1ffff9200016ec3c RCX: ffffffff8155068f
[  353.487133][    C1] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810bd5dfd8
[  353.487145][    C1] RBP: ffffc90000b76270 R08: dffffc0000000000 R09: ffffed10217abbfc
[  353.487159][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  353.487171][    C1] R13: ffff88810bd5dfd8 R14: 0000000000000003 R15: 1ffff9200016ec40
[  353.487184][    C1] FS:  00007fdc7367f6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  353.487200][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  353.487213][    C1] CR2: 00007f0e7824ca8c CR3: 00000001067b1000 CR4: 00000000003506a0
[  353.487229][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  353.487240][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  353.487251][    C1] Call Trace:
[  353.487257][    C1]  <NMI>
[  353.487264][    C1]  ? show_regs+0x58/0x60
[  353.487282][    C1]  ? nmi_cpu_backtrace+0x29f/0x300
[  353.487303][    C1]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  353.487325][    C1]  ? kvm_wait+0x147/0x180
[  353.487340][    C1]  ? kvm_wait+0x147/0x180
[  353.487355][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  353.487375][    C1]  ? nmi_handle+0xa8/0x280
[  353.487392][    C1]  ? kvm_wait+0x147/0x180
[  353.487411][    C1]  ? default_do_nmi+0x69/0x160
[  353.487427][    C1]  ? exc_nmi+0xaf/0x120
[  353.487441][    C1]  ? end_repeat_nmi+0x16/0x31
[  353.487457][    C1]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  353.487479][    C1]  ? kvm_wait+0x147/0x180
[  353.487495][    C1]  ? kvm_wait+0x147/0x180
[  353.487510][    C1]  ? kvm_wait+0x147/0x180
[  353.487526][    C1]  </NMI>
[  353.487531][    C1]  <TASK>
[  353.487536][    C1]  ? asm_common_interrupt+0x27/0x40
[  353.487556][    C1]  ? kvm_arch_para_hints+0x30/0x30
[  353.487573][    C1]  ? __pv_queued_spin_lock_slowpath+0x65f/0xc40
[  353.487593][    C1]  __pv_queued_spin_lock_slowpath+0x6bc/0xc40
[  353.487615][    C1]  ? __pv_queued_spin_unlock_slowpath+0x310/0x310
[  353.487636][    C1]  _raw_spin_lock_bh+0x139/0x1b0
[  353.487655][    C1]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  353.487673][    C1]  ? sock_hash_bucket_hash+0x31c/0x7e0
[  353.487696][    C1]  sock_hash_delete_elem+0xb1/0x2f0
[  353.487716][    C1]  ? bpf_trace_run4+0x13f/0x270
[  353.487737][    C1]  ? bpf_trace_run3+0x250/0x250
[  353.487758][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  353.487777][    C1]  ? __alloc_pages+0x3cb/0x8f0
[  353.487797][    C1]  ? prep_new_page+0x110/0x110
[  353.487815][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  353.487833][    C1]  ? stack_trace_save+0x113/0x1c0
[  353.487853][    C1]  ? __stack_depot_save+0x38d/0x470
[  353.487870][    C1]  ? stack_depot_save+0xe/0x10
[  353.487885][    C1]  ? save_stack+0x104/0x1e0
[  353.487902][    C1]  ? __reset_page_owner+0x190/0x190
[  353.487918][    C1]  ? post_alloc_hook+0x1a3/0x1b0
[  353.487941][    C1]  ? prep_new_page+0x1b/0x110
[  353.487958][    C1]  ? get_page_from_freelist+0x3550/0x35d0
[  353.487977][    C1]  ? __alloc_pages+0x27e/0x8f0
[  353.487993][    C1]  ? __stack_depot_save+0x38d/0x470
[  353.488009][    C1]  ? kasan_set_track+0x5d/0x70
[  353.488024][    C1]  ? kasan_set_free_info+0x23/0x40
[  353.488041][    C1]  ? ____kasan_slab_free+0x126/0x160
[  353.488057][    C1]  ? __kasan_slab_free+0x11/0x20
[  353.488073][    C1]  ? slab_free_freelist_hook+0xbd/0x190
[  353.488093][    C1]  ? kfree+0xc8/0x220
[  353.488109][    C1]  ? sock_map_unref+0x352/0x4d0
[  353.488127][    C1]  ? sock_hash_delete_elem+0x274/0x2f0
[  353.488145][    C1]  ? bpf_trace_run4+0x13f/0x270
[  353.488163][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  353.488181][    C1]  ? __this_cpu_preempt_check+0x13/0x20
[  353.488198][    C1]  ? __mod_node_page_state+0xac/0xf0
[  353.488218][    C1]  ? __set_page_owner+0x28/0x2e0
[  353.488234][    C1]  ? kernel_init_free_pages+0xda/0xf0
[  353.488252][    C1]  ? post_alloc_hook+0x1a3/0x1b0
[  353.488271][    C1]  ? prep_new_page+0x1b/0x110
[  353.488288][    C1]  ? get_page_from_freelist+0x3550/0x35d0
[  353.488307][    C1]  ? free_thread_stack+0x372/0x470
[  353.488331][    C1]  ? __schedule+0xcd4/0x1590
[  353.488353][    C1]  ? __alloc_pages+0x8f0/0x8f0
[  353.488372][    C1]  ? __alloc_pages_bulk+0xe40/0xe40
[  353.488389][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  353.488409][    C1]  ? __alloc_pages+0x27e/0x8f0
[  353.488426][    C1]  ? prep_new_page+0x110/0x110
[  353.488445][    C1]  ? stack_trace_save+0x113/0x1c0
[  353.488463][    C1]  ? stack_trace_snprint+0xf0/0xf0
[  353.488481][    C1]  ? __stack_depot_save+0x38d/0x470
[  353.488497][    C1]  ? kfree+0xc8/0x220
[  353.488514][    C1]  ? kasan_set_track+0x5d/0x70
[  353.488529][    C1]  ? kasan_set_track+0x4b/0x70
[  353.488544][    C1]  ? kasan_set_free_info+0x23/0x40
[  353.488561][    C1]  ? ____kasan_slab_free+0x126/0x160
[  353.488577][    C1]  ? __kasan_slab_free+0x11/0x20
[  353.488592][    C1]  ? slab_free_freelist_hook+0xbd/0x190
[  353.488611][    C1]  ? kfree+0xc8/0x220
[  353.488627][    C1]  ? sock_map_unref+0x352/0x4d0
[  353.488645][    C1]  ? sock_hash_delete_elem+0x274/0x2f0
[  353.488664][    C1]  ? bpf_trace_run4+0x13f/0x270
[  353.488682][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  353.488699][    C1]  ? __alloc_pages+0x3cb/0x8f0
[  353.488716][    C1]  ? shmem_alloc_and_acct_page+0x4bd/0xa80
[  353.488733][    C1]  ? shmem_getpage_gfp+0x1388/0x23c0
[  353.488748][    C1]  ? shmem_write_begin+0xca/0x1b0
[  353.488763][    C1]  ? generic_perform_write+0x2bc/0x5a0
[  353.488781][    C1]  ? __generic_file_write_iter+0x25b/0x4b0
[  353.488799][    C1]  ? generic_file_write_iter+0xaf/0x1c0
[  353.488817][    C1]  ? vfs_write+0xd5d/0x1110
[  353.488832][    C1]  ? ksys_write+0x199/0x2c0
[  353.488847][    C1]  ? __x64_sys_write+0x7b/0x90
[  353.488862][    C1]  ? do_syscall_64+0x3d/0xb0
[  353.488880][    C1]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  353.488907][    C1]  ? post_alloc_hook+0x1a3/0x1b0
[  353.488930][    C1]  ? kasan_set_free_info+0x23/0x40
[  353.488948][    C1]  ? ____kasan_slab_free+0x126/0x160
[  353.488965][    C1]  ? __kasan_slab_free+0x11/0x20
[  353.488981][    C1]  ? slab_free_freelist_hook+0xbd/0x190
[  353.489001][    C1]  ? sock_map_unref+0x352/0x4d0
[  353.489019][    C1]  ? kfree+0xc8/0x220
[  353.489037][    C1]  ? sock_map_unref+0x352/0x4d0
[  353.489057][    C1]  ? sock_hash_delete_elem+0x274/0x2f0
[  353.489078][    C1]  ? bpf_trace_run4+0x13f/0x270
[  353.489096][    C1]  ? irqentry_exit+0x30/0x40
[  353.489111][    C1]  ? bpf_trace_run3+0x250/0x250
[  353.489132][    C1]  ? __bpf_trace_mm_page_alloc+0xbf/0xf0
[  353.489151][    C1]  ? __alloc_pages+0x3cb/0x8f0
[  353.489168][    C1]  ? prep_new_page+0x110/0x110
[  353.489188][    C1]  ? __kasan_check_read+0x11/0x20
[  353.489205][    C1]  ? __vm_enough_memory+0x119/0x2f0
[  353.489224][    C1]  ? shmem_alloc_and_acct_page+0x4bd/0xa80
[  353.489243][    C1]  ? shmem_swapin_page+0x1520/0x1520
[  353.489263][    C1]  ? xas_start+0x32c/0x3f0
[  353.489281][    C1]  ? xas_load+0x2b7/0x2d0
[  353.489299][    C1]  ? pagecache_get_page+0xdc2/0xeb0
[  353.489318][    C1]  ? page_cache_prev_miss+0x410/0x410
[  353.489336][    C1]  ? _raw_spin_lock_irqsave+0x210/0x210
[  353.489355][    C1]  ? lru_cache_add+0x279/0x540
[  353.489372][    C1]  ? shmem_getpage_gfp+0x1388/0x23c0
[  353.489393][    C1]  ? shmem_getpage+0xa0/0xa0
[  353.489408][    C1]  ? fault_in_safe_writeable+0x240/0x240
[  353.489429][    C1]  ? shmem_write_begin+0xca/0x1b0
[  353.489446][    C1]  ? generic_perform_write+0x2bc/0x5a0
[  353.489466][    C1]  ? grab_cache_page_write_begin+0xa0/0xa0
[  353.489485][    C1]  ? file_remove_privs+0x610/0x610
[  353.489502][    C1]  ? rwsem_write_trylock+0x153/0x340
[  353.489521][    C1]  ? rwsem_mark_wake+0x770/0x770
[  353.489539][    C1]  ? __generic_file_write_iter+0x25b/0x4b0
[  353.489558][    C1]  ? generic_file_write_iter+0xaf/0x1c0
[  353.489577][    C1]  ? vfs_write+0xd5d/0x1110
[  353.489595][    C1]  ? file_end_write+0x1c0/0x1c0
[  353.489614][    C1]  ? __fdget_pos+0x209/0x3a0
[  353.489629][    C1]  ? ksys_write+0x77/0x2c0
[  353.489644][    C1]  ? ksys_write+0x199/0x2c0
[  353.489661][    C1]  ? __ia32_sys_read+0x90/0x90
[  353.489678][    C1]  ? __x64_sys_write+0x7b/0x90
[  353.489696][    C1]  ? do_syscall_64+0x3d/0xb0
[  353.489714][    C1]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  353.489737][    C1]  </TASK>