last executing test programs:

12.957886063s ago: executing program 0 (id=270):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x18)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000001600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2200050, &(0x7f00000000c0)=ANY=[], 0x1, 0x1516, &(0x7f0000003140)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0100000006000000000024000800000045"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, 0x0)
syz_open_pts(r4, 0x121500)

12.919643067s ago: executing program 3 (id=271):
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth0\x00', <r4=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000004c0)={r4, 0x3, 0x6, @remote}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

11.441941402s ago: executing program 0 (id=273):
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000540)={[{@errors_remount}, {@mblk_io_submit}, {@inlinecrypt}, {@test_dummy_encryption_v1}, {@barrier}, {@mblk_io_submit}, {@nogrpid}], [{@measure}, {@euid_gt}, {@measure}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@smackfshat}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@pcr={'pcr', 0x3d, 0x3}}, {@uid_lt}]}, 0x3, 0x449, &(0x7f0000000c80)="$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")
creat(0x0, 0x182)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='oom_adj\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$selinux_avc_cache_stats(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = socket(0xa, 0x3, 0xff)
setsockopt$inet6_int(r4, 0x29, 0x3a, 0x0, 0x0)
sched_getparam(0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
writev(r0, &(0x7f0000000500)=[{&(0x7f0000000280)='2', 0x1}], 0x1)

9.6378603s ago: executing program 0 (id=279):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xf)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fdatasync(r6)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x5)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000180)=0x2)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000400)=0x7)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000200)=0xa)
gettid()

8.564224316s ago: executing program 3 (id=282):
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
epoll_create1(0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="66baf80cb8044fdc87efed660f388059e0b805000000b91e4200000f01c10f20c035000000200f22c0f20fa20f01cb36263e660f381efc660f7c150c000000b805000000b9210000000f01c1c4e17929d8", 0x51}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0xd, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d04700847610000000109"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

8.12270111s ago: executing program 2 (id=283):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2d50, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x33, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xc, 0x0, 0x7}}}}}]}}]}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)={0x0, 0x4, 0x8, {0x8, 0x7, "a7ea3163fd3b"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

7.698133411s ago: executing program 1 (id=286):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xf)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fdatasync(r6)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000140)=0x3)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000400)=0x7)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000200)=0xa)

5.829366956s ago: executing program 0 (id=291):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000003b40)={0x11, 0xb, &(0x7f0000000280)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000040)='./file1\x00', 0x800, &(0x7f0000003c40)=ANY=[@ANYBLOB='pcr=00000000000000000056,pcr=00000000000000004154,subj_user=veth0_vlan\x00,uid>', @ANYRESDEC=0x0, @ANYBLOB="7419a2875f747970653d252f272c00"], 0x1, 0x153a, &(0x7f00000005c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
getitimer(0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r5 = socket$inet(0x2, 0x800, 0xffffff00)
setsockopt$IP_VS_SO_SET_DELDEST(r5, 0x0, 0x488, &(0x7f0000000040)={{0x3b, @multicast1, 0x4e20, 0x3, 'lblc\x00', 0x22, 0x6, 0x13}, {@loopback, 0x4e24, 0x1, 0x2, 0x0, 0x80000000}}, 0x44)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000003f64ecb21ed7d74b542e43ae9f57f61af1c5b6016901992307df92d7c26b05a7da0582d208fd1f57c41cee38c7023e71dc864ab49f7894dd5ee29721d0625ee50c8aeca9b5090d85ff1c5df40229f0981507171aec7dc97abd981893d51a27e8a1033fa344fa3c6c27705648a66a47e0a1bc8fcede095704453c77f6c5370191ab55c423aae05729e69c987cf5f9aa2fd88c9e2114f53b9f82157c197397e43647b083db79f1f2"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x20c9}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000440)={0x0, r6}, 0x10)

4.06486101s ago: executing program 1 (id=292):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000012c0)=ANY=[@ANYBLOB="b0"], 0xb0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
getresuid(&(0x7f0000000440), &(0x7f0000000400), &(0x7f00000004c0)=<r4=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r4])

4.06064758s ago: executing program 2 (id=293):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f00000001c0))

4.06012799s ago: executing program 4 (id=294):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x19f, &(0x7f0000000100)={[{@sysvgroups}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x514}}, {@grpquota}, {@stripe={'stripe', 0x3d, 0x7}}, {@debug}, {@grpid}]}, 0x80, 0x54f, &(0x7f0000000480)="$eJzs3c9vHFcdAPDvbLxufji1SzlAJUqBoqSC7MY1bS0OJUgITpUQ5R6MvbGsrL2Rd93GViScvwAJIUBwggsXJP4AJBSJC0eEFAnOIBWBEDhwQAIy1cyOHdeZ3WzSza5/fD7SZN68+fF9bzYznjfzNBPAifVSRFyJiPtpmr4SEdNFfqUYYrs7ZMvd27m1mA1JpOnb/0giKfJ2t5UU43PFaqcj4htfi/h28nDc9ubW9YVms7FeTNc7qzfq7c2tSyurC8uN5cba3Nzs6/NvzL82f3ko9TwfEW9+5S8/+O7Pv/rmrz//7p+v/u1iVu2YKubvr8djyHbRRL8FulWv5vtiV7bC+hMEO6wm8hoWzpQtkaZpej+d3pdzeyQlAwDgoOwC9iMR8emIeCWm41T/y1kAAADgCEq/NBX/S7pPaEpM9sgHAAAAjpBK3gc2qdSKvgBTUanUat0+vB+Ns5Vmq9353LXWxtrS3R9PRcRMVCvXVpqNy0Vf4ZmoJtn0bJ5+MP3qgem5iHguIr4/fSafri22mkvjvvkBAAAAJ8S5A+3/f0932/8AAADAMTPzcFZlHOUAAAAAnp6S9j8AAABwzGj/AwAAwLH29bfeyoZ09/vXS+9sblxvvXNpqdG+XlvdWKwtttZv1JZbreX8nX2r+9c9VbK9Zqt14wuxtnGz3mm0O/X25tbV1dbGWufqygc+gQ0AAACM0HOfvPPHJCK2v3gmHzKT4y4UMBITe6mkGJcc/X96tjt+b0SFAkai7B7+Qe89M4KCACM38URrpYOcNoBDrjruAgBjlzxifs/OO78rxp8abnkAAIDhu/Dx3s//+38DYNsnAuCIcxDDyXXgQV46Pa6CACOXP/8ftMOviwU4VqoD9QAEjrMP/fz/kdL0sQoEAAAM3VQ+JJVacXtvKiqVWi3ifP5ZgGpybaXZuBwRz0bEH6arz2TTs/maySPbDAAAAAAAAAAAAAAAAAAAAAAAAABAV5omkfZzpe9cAAAA4AiIqPw1+U33Xf4Xpl+eOnh/YDL5T/5J4MmIePcnb//w5kKnsz6b5f9zL7/zoyL/1XHcwQAAAAAO2m2n77bjAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCY7u3cWry3cyv9786txVHG/fuXI2JmL34+dOdMxOl8fDqqEXH2X0lM7FsviYhTQ4i/fTsiPlYWP8mKtReyLP6Zpx8/Zoq9UBb/3BDiw0l2Jzv/XCk7/irxUj4uP/4mIj4w/aR6n/9i7/x3qsfxf37AGC/c/WW9Z/zbES9MlJ9/duMnD8VPinFloPjf+ubWVq956U8jLkR5/P3R6p3VG/X25talldWF5cZyY21ubvb1+TfmX5u/XL+20mwU/5bG+N4nfnW/X/3P9og/07P+3TK9PFDtI/5/9+bO8z3+XmXxL36mJP5vf1Ys8XD8SrGtzxbpbP6F3fR2N73fi7/4/Yv96r/0oP7VwX7/bsyL/av94AccxoECAAxNe3Pr+kKz2Vg/Conqk6yVtdLLZj1f7IEPX7DJw7J/JB4z8Z2hbjBN07TH/6g7ETHIdpI4DLslT4z3vAQAAAzfg4v+cZcEAAAAAAAAAAAAAAAAAAAATq4hvjNssvQ1eyVvFtjeSyXeDAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHBrvBwAA//9pfNv4")
r0 = openat(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, r0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r0, &(0x7f00000001c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8015}, 0x8800)
fsopen(&(0x7f0000000140)='erofs\x00', 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r1, &(0x7f0000000200)={0x18, 0x2, {0xfeff, @local}}, 0x1e)
connect$pptp(r1, &(0x7f0000000700)={0x18, 0x2, {0x0, @multicast1}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d}, 0x94)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
writev(r2, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

4.038118922s ago: executing program 1 (id=295):
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, 0x0, &(0x7f0000000040)="9311460000", 0x7}, 0x38)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x3a, 0x0, [{0xc0000101, 0x0, 0x4}]})

3.501793915s ago: executing program 4 (id=296):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
rmdir(0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12)

3.501114525s ago: executing program 3 (id=297):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x18)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000001600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2200050, &(0x7f00000000c0)=ANY=[], 0x1, 0x1516, &(0x7f0000003140)="$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")
ioctl$KVM_GET_PIT2(0xffffffffffffffff, 0x8070ae9f, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0100000006000000000024000800000045"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, 0x0)
syz_open_pts(r4, 0x121500)

3.493447236s ago: executing program 1 (id=298):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x4)
mount$incfs(&(0x7f0000000580)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f00000005c0), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x8c)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x41, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)

3.44840471s ago: executing program 0 (id=299):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x40, @local}}}, 0x32)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001000)={0xf, {"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", 0x1000}}, 0x1006)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/igmp6\x00')
lseek(r3, 0xfffd, 0x0)

3.422393623s ago: executing program 4 (id=300):
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
io_setup(0x9, &(0x7f00000001c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x18, 0x1, 0x5, 0xffffffffffffffff, 0x0, 0xb, 0x1000000}])

2.934741131s ago: executing program 4 (id=301):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xf)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fdatasync(r6)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x5)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000180)=0x2)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000400)=0x7)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000200)=0xa)
gettid()

2.507679763s ago: executing program 3 (id=302):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001600)=[{{&(0x7f00000003c0)={0xa, 0x4e24, 0x9, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c, 0x0, 0x0, &(0x7f00000009c0)=[@hopopts={{0x18, 0x29, 0x36, {0x6c}}}, @tclass={{0x14, 0x29, 0x43, 0x8001}}], 0x30}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x9, @mcast2, 0x8}, 0x1c, 0x0, 0x0, &(0x7f00000005c0)=[@hoplimit={{0x14, 0x29, 0x34, 0x9}}, @dstopts_2292={{0x38, 0x29, 0x4, {0x2, 0x3, '\x00', [@calipso={0x7, 0x8, {0x2, 0x0, 0x10}}, @jumbo={0xc2, 0x4, 0x1}, @ra={0x5, 0x2, 0x9}, @padn, @enc_lim={0x4, 0x1, 0x6}]}}}], 0x50}}], 0x2, 0x4000)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000bc0)=ANY=[@ANYBLOB='iocharset=cp850,fmask=00000000000000000000240,errors=remount-ro,iocharset=cp936,iocharset=iso8859-14,allow_utime=00000000000000000000007,gid=', @ANYRESHEX=0x0, @ANYBLOB=',utf8,errors=continue,iocharset=iso8859-2,uid=', @ANYRESDEC=0x0, @ANYBLOB=',fsmagic=0x0000000000010001,euid<', @ANYRESDEC=0x0, @ANYBLOB=',subj_type=sched_switch\x00,fowner=', @ANYRESDEC=0x0, @ANYBLOB=',appraise_type\x00\x00\x00\x00sig,\x00'], 0x1, 0x152f, &(0x7f00000037c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000b8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ioprio_get$uid(0x3, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000500)=0x401, 0x4)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
fcntl$dupfd(r0, 0x406, r0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000006c0))
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000400)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='fscontext='])

2.501616954s ago: executing program 1 (id=303):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0xf)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$TCFLSH(r4, 0x400455c8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x5)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000140)=0x3)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000400)=0x7)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000200)=0xa)

1.634627459s ago: executing program 0 (id=304):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2d50, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x33, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xc, 0x0, 0x7}}}}}]}}]}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)={0x0, 0x4, 0x8, {0x8, 0x7, "a7ea3163fd3b"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

1.601257113s ago: executing program 3 (id=305):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @remote}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r4, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f00000011c0)=ANY=[@ANYBLOB="140000000102010300000000000000000200000920dd57e94b6ca976379990f54520d0965dcc2e1fef50187d596ddb70a523150183325cf69bd3303758bb879d6a6f27b6b5e43695dceb5c7f23226a7b0c4dc904dec91c54aea8bc04c49be27f933378b9d914938c19a3631d3f126136c0e2ff461fad9a428e54766a9d6784424decee448867d1b9a4eb0642680ab85e592b815f8e7abf39ac2db367925e97c5d1b0dec04b6dddd677a8a8f38915c79d256b844c076a2b1bc61f7b8df529fa19dc368e41f89506417c67bf54662ec1468b9ad8a45134366db2ec6f2bfe1ca13b827d4f7a48077874af9d7db6195b0b3d"], 0x14}, 0x1, 0x0, 0x0, 0x4001000}, 0x804)

946.578477ms ago: executing program 2 (id=306):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x19f, &(0x7f0000000100)={[{@sysvgroups}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x514}}, {@grpquota}, {@stripe={'stripe', 0x3d, 0x7}}, {@debug}, {@grpid}]}, 0x80, 0x54f, &(0x7f0000000480)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, r0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r0, &(0x7f00000001c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8015}, 0x8800)
fsopen(&(0x7f0000000140)='erofs\x00', 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r1, &(0x7f0000000200)={0x18, 0x2, {0xfeff, @local}}, 0x1e)
connect$pptp(r1, &(0x7f0000000700)={0x18, 0x2, {0x0, @multicast1}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d}, 0x94)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
writev(r2, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

610.02068ms ago: executing program 4 (id=307):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000012c0)=ANY=[@ANYBLOB="b0"], 0xb0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
getresuid(&(0x7f0000000440), &(0x7f0000000400), &(0x7f00000004c0)=<r4=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r4])

574.282503ms ago: executing program 4 (id=308):
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
epoll_create1(0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="66baf80cb8044fdc87efed660f388059e0b805000000b91e4200000f01c10f20c035000000200f22c0f20fa20f01cb36263e660f381efc660f7c150c000000b805000000b9210000000f01c1c4e17929d8", 0x51}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0xd, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

508.7875ms ago: executing program 3 (id=309):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000003b40)={0x11, 0xb, &(0x7f0000000280)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000040)='./file1\x00', 0x800, &(0x7f0000003c40)=ANY=[@ANYBLOB='pcr=00000000000000000056,pcr=00000000000000004154,subj_user=veth0_vlan\x00,uid>', @ANYRESDEC=0x0, @ANYBLOB="7419a2875f747970653d252f272c00"], 0x1, 0x153a, &(0x7f00000005c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
getitimer(0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r5 = socket$inet(0x2, 0x800, 0xffffff00)
setsockopt$IP_VS_SO_SET_DELDEST(r5, 0x0, 0x488, &(0x7f0000000040)={{0x3b, @multicast1, 0x4e20, 0x3, 'lblc\x00', 0x22, 0x6, 0x13}, {@loopback, 0x4e24, 0x1, 0x2, 0x0, 0x80000000}}, 0x44)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000003f64ecb21ed7d74b542e43ae9f57f61af1c5b6016901992307df92d7c26b05a7da0582d208fd1f57c41cee38c7023e71dc864ab49f7894dd5ee29721d0625ee50c8aeca9b5090d85ff1c5df40229f0981507171aec7dc97abd981893d51a27e8a1033fa344fa3c6c27705648a66a47e0a1bc8fcede095704453c77f6c5370191ab55c423aae05729e69c987cf5f9aa2fd88c9e2114f53b9f82157c197397e43647b083db79f1f2"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x20c9}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000440)={0x0, r6}, 0x10)

422.283639ms ago: executing program 2 (id=310):
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, 0x0, &(0x7f0000000040)="9311460000", 0x7}, 0x38)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x3a, 0x0, [{0xc0000101, 0x0, 0x4}]})

328.332198ms ago: executing program 2 (id=311):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')
r1 = openat$cgroup_ro(r0, 0x0, 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12)

216.441709ms ago: executing program 2 (id=312):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x18)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000001600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2200050, &(0x7f00000000c0)=ANY=[], 0x1, 0x1516, &(0x7f0000003140)="$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")
ioctl$KVM_GET_PIT2(0xffffffffffffffff, 0x8070ae9f, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0100000006000000000024000800000045"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000440)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, 0x0)
syz_open_pts(r4, 0x121500)

0s ago: executing program 1 (id=313):
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x50)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
io_setup(0x9, &(0x7f00000001c0)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x18, 0x1, 0x5, 0xffffffffffffffff, 0x0, 0xb, 0x1000000}])

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.117' (ED25519) to the list of known hosts.
[   22.282463][   T28] audit: type=1400 audit(1760982371.314:64): avc:  denied  { mounton } for  pid=275 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   22.283861][  T275] cgroup: Unknown subsys name 'net'
[   22.305240][   T28] audit: type=1400 audit(1760982371.314:65): avc:  denied  { mount } for  pid=275 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   22.332544][   T28] audit: type=1400 audit(1760982371.344:66): avc:  denied  { unmount } for  pid=275 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   22.332785][  T275] cgroup: Unknown subsys name 'devices'
[   22.450665][  T275] cgroup: Unknown subsys name 'hugetlb'
[   22.456307][  T275] cgroup: Unknown subsys name 'rlimit'
[   22.561761][   T28] audit: type=1400 audit(1760982371.594:67): avc:  denied  { setattr } for  pid=275 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   22.585360][   T28] audit: type=1400 audit(1760982371.594:68): avc:  denied  { mounton } for  pid=275 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   22.602389][  T277] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   22.610733][   T28] audit: type=1400 audit(1760982371.594:69): avc:  denied  { mount } for  pid=275 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   22.642155][   T28] audit: type=1400 audit(1760982371.654:70): avc:  denied  { relabelto } for  pid=277 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.667610][   T28] audit: type=1400 audit(1760982371.654:71): avc:  denied  { write } for  pid=277 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.672365][  T275] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   22.693412][   T28] audit: type=1400 audit(1760982371.704:72): avc:  denied  { read } for  pid=275 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.727618][   T28] audit: type=1400 audit(1760982371.704:73): avc:  denied  { open } for  pid=275 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   24.571852][  T284] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.578972][  T284] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.586524][  T284] device bridge_slave_0 entered promiscuous mode
[   24.593647][  T284] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.600839][  T284] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.608566][  T284] device bridge_slave_1 entered promiscuous mode
[   24.668478][  T283] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.675548][  T283] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.683064][  T283] device bridge_slave_0 entered promiscuous mode
[   24.691586][  T283] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.698656][  T283] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.706102][  T283] device bridge_slave_1 entered promiscuous mode
[   24.742737][  T285] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.749940][  T285] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.757420][  T285] device bridge_slave_0 entered promiscuous mode
[   24.767151][  T285] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.774497][  T285] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.782096][  T285] device bridge_slave_1 entered promiscuous mode
[   24.871874][  T287] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.878954][  T287] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.886422][  T287] device bridge_slave_0 entered promiscuous mode
[   24.893275][  T286] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.900372][  T286] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.907771][  T286] device bridge_slave_0 entered promiscuous mode
[   24.925087][  T287] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.932200][  T287] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.939807][  T287] device bridge_slave_1 entered promiscuous mode
[   24.946404][  T286] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.953518][  T286] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.960994][  T286] device bridge_slave_1 entered promiscuous mode
[   25.078190][  T284] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.085304][  T284] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.093254][  T284] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.100324][  T284] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.114406][  T283] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.121503][  T283] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.128806][  T283] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.135833][  T283] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.170610][  T285] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.177693][  T285] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.185021][  T285] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.192093][  T285] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.226518][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.234212][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.241768][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   25.249441][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.256870][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.264339][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.271738][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.301919][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   25.310298][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.317343][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.328991][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   25.336494][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   25.348507][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   25.356822][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.363890][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.393007][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   25.400720][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   25.409192][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.416248][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.423938][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   25.432717][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.439795][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.447136][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   25.455388][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.462446][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.470779][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   25.478998][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.486023][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.512722][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   25.520885][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   25.529699][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   25.537632][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   25.557759][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   25.573283][  T284] device veth0_vlan entered promiscuous mode
[   25.588980][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   25.597396][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   25.606012][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   25.614068][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   25.622694][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   25.630310][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   25.637704][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   25.646271][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   25.654588][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.661642][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.669229][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   25.677516][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   25.685924][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.692968][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.700380][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   25.708508][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   25.716435][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   25.724659][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   25.732728][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   25.740296][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   25.747708][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   25.765635][  T283] device veth0_vlan entered promiscuous mode
[   25.771964][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   25.780900][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   25.789548][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   25.797451][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   25.806011][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   25.813529][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   25.821947][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   25.830487][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   25.838710][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.845731][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.866246][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   25.874246][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   25.882701][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   25.890930][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   25.899434][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   25.911014][  T284] device veth1_macvtap entered promiscuous mode
[   25.929174][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   25.937780][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   25.946232][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   25.953965][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   25.961726][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   25.970113][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   25.978302][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   25.985959][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   25.994223][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   26.002527][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   26.011222][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   26.019835][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   26.026876][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   26.034484][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   26.043070][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   26.051473][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   26.059606][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   26.067676][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   26.076617][  T286] device veth0_vlan entered promiscuous mode
[   26.088408][  T283] device veth1_macvtap entered promiscuous mode
[   26.099021][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   26.107052][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   26.115707][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   26.124301][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   26.133230][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   26.155159][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   26.163790][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   26.172286][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   26.180892][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   26.191377][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   26.200272][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   26.209901][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   26.224240][  T285] device veth0_vlan entered promiscuous mode
[   26.232326][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   26.240628][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   26.248860][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   26.256876][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   26.265291][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   26.272915][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   26.280687][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   26.288135][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   26.296128][  T287] device veth0_vlan entered promiscuous mode
[   26.309524][  T286] device veth1_macvtap entered promiscuous mode
[   26.320879][  T285] device veth1_macvtap entered promiscuous mode
[   26.327673][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   26.336464][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   26.344981][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   26.353628][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   26.362131][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   26.378155][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   26.387223][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   26.396264][  T283] request_module fs-gadgetfs succeeded, but still no fs?
[   26.415953][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   26.424446][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   26.433097][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   26.441674][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   26.450395][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   26.459182][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   26.486762][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   26.499128][  T287] device veth1_macvtap entered promiscuous mode
[   26.513712][  T336] bridge: RTM_NEWNEIGH with invalid ether address
[   26.537842][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   26.550933][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   26.557348][  T338] loop1: detected capacity change from 0 to 512
[   26.579834][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   26.599409][  T338] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   26.622923][  T338] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   26.637250][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   26.656586][  T338] EXT4-fs (loop1): 1 truncate cleaned up
[   26.676881][  T338] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   26.798992][  T361] loop0: detected capacity change from 0 to 512
[   26.906965][  T338] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2195: inode #15: comm syz.1.2: corrupted in-inode xattr
[   26.982336][  T361] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   26.991695][  T361] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   27.192460][  T338] EXT4-fs warning (device loop1): ext4_xattr_set_entry:1732: inode #15: comm syz.1.2: unable to update i_inline_off
[   27.546092][  T338] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   27.596404][  T338] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2195: inode #15: comm syz.1.2: corrupted in-inode xattr
[   27.640425][  T284] EXT4-fs (loop1): unmounting filesystem.
[   27.736196][  T283] EXT4-fs (loop0): unmounting filesystem.
[   27.797717][   T28] kauditd_printk_skb: 44 callbacks suppressed
[   27.797733][   T28] audit: type=1400 audit(1760982376.824:118): avc:  denied  { create } for  pid=370 comm="syz.0.11" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   27.885377][  T374] loop0: detected capacity change from 0 to 256
[   27.900024][   T28] audit: type=1400 audit(1760982376.864:119): avc:  denied  { setopt } for  pid=370 comm="syz.0.11" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   27.928330][  T291] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   27.942584][  T374] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[   28.020498][   T28] audit: type=1400 audit(1760982376.864:120): avc:  denied  { connect } for  pid=370 comm="syz.0.11" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   28.056083][  T379] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   28.058104][   T28] audit: type=1400 audit(1760982376.864:121): avc:  denied  { write } for  pid=370 comm="syz.0.11" path="socket:[15728]" dev="sockfs" ino=15728 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   28.374959][  T384] loop0: detected capacity change from 0 to 128
[   28.397469][   T28] audit: type=1400 audit(1760982376.994:122): avc:  denied  { create } for  pid=375 comm="syz.2.13" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   28.417855][  T384] FAT-fs (loop0): Unrecognized mount option "®�C—‘‘‚9ê:*µÒ&Š°œ" or missing value
[   28.418937][   T28] audit: type=1400 audit(1760982377.084:123): avc:  denied  { write } for  pid=373 comm="syz.0.12" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   28.448828][  T291] usb 5-1: Using ep0 maxpacket: 16
[   28.454141][   T28] audit: type=1400 audit(1760982377.084:124): avc:  denied  { add_name } for  pid=373 comm="syz.0.12" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   28.475366][   T28] audit: type=1400 audit(1760982377.084:125): avc:  denied  { associate } for  pid=373 comm="syz.0.12" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   28.497043][   T28] audit: type=1400 audit(1760982377.084:126): avc:  denied  { read } for  pid=378 comm="syz.3.14" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   28.519603][   T28] audit: type=1400 audit(1760982377.084:127): avc:  denied  { open } for  pid=378 comm="syz.3.14" path="/dev/kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   28.544832][  T291] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[   28.555458][  T291] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   28.563710][  T291] usb 5-1: Product: syz
[   28.568063][  T291] usb 5-1: Manufacturer: syz
[   28.572986][  T291] usb 5-1: SerialNumber: syz
[   28.578809][  T291] r8152-cfgselector 5-1: config 0 descriptor??
[   28.713332][  T389] loop0: detected capacity change from 0 to 256
[   28.785488][  T389] FAT-fs (loop0): Directory bread(block 64) failed
[   28.792175][  T389] FAT-fs (loop0): Directory bread(block 65) failed
[   28.798860][  T389] FAT-fs (loop0): Directory bread(block 66) failed
[   28.805494][  T389] FAT-fs (loop0): Directory bread(block 67) failed
[   28.812143][  T382] syz.2.13 (382) used greatest stack depth: 22088 bytes left
[   28.846927][  T389] FAT-fs (loop0): Directory bread(block 68) failed
[   28.853730][  T389] FAT-fs (loop0): Directory bread(block 69) failed
[   28.860547][  T389] FAT-fs (loop0): Directory bread(block 70) failed
[   28.867137][  T389] FAT-fs (loop0): Directory bread(block 71) failed
[   28.873981][  T389] FAT-fs (loop0): Directory bread(block 72) failed
[   28.880614][  T389] FAT-fs (loop0): Directory bread(block 73) failed
[   29.154705][  T394] bridge: RTM_NEWNEIGH with invalid ether address
[   29.332758][  T398] loop2: detected capacity change from 0 to 512
[   29.368935][  T398] EXT4-fs: Ignoring removed orlov option
[   29.406222][  T398] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2195: inode #15: comm syz.2.19: corrupted in-inode xattr
[   29.438588][  T398] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.19: couldn't read orphan inode 15 (err -117)
[   29.478490][  T398] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   29.632395][  T291] r8152-cfgselector 5-1: Unknown version 0x0000
[   29.642491][  T291] r8152-cfgselector 5-1: Unknown version 0x0000
[   29.868216][    C0] sched: RT throttling activated
[   30.421716][  T407] loop0: detected capacity change from 0 to 1024
[   30.428559][  T407] EXT4-fs: Ignoring removed orlov option
[   30.665773][  T287] EXT4-fs (loop2): unmounting filesystem.
[   30.828344][  T291] r8152-cfgselector 5-1: bad CDC descriptors
[   30.839293][  T291] r8152-cfgselector 5-1: Unknown version 0x0000
[   30.848661][  T291] r8152-cfgselector 5-1: USB disconnect, device number 2
[   30.854405][  T407] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   30.859161][  T410] loop4: detected capacity change from 0 to 512
[   31.199678][  T410] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[   31.220513][  T410] EXT4-fs (loop4): orphan cleanup on readonly fs
[   31.438500][  T418] loop2: detected capacity change from 0 to 256
[   31.488705][  T418] FAT-fs (loop2): Directory bread(block 64) failed
[   31.495463][  T418] FAT-fs (loop2): Directory bread(block 65) failed
[   31.502750][  T418] FAT-fs (loop2): Directory bread(block 66) failed
[   31.509499][  T418] FAT-fs (loop2): Directory bread(block 67) failed
[   31.516383][  T418] FAT-fs (loop2): Directory bread(block 68) failed
[   31.523029][  T418] FAT-fs (loop2): Directory bread(block 69) failed
[   31.529939][  T418] FAT-fs (loop2): Directory bread(block 70) failed
[   31.536543][  T418] FAT-fs (loop2): Directory bread(block 71) failed
[   31.543503][  T418] FAT-fs (loop2): Directory bread(block 72) failed
[   31.550217][  T418] FAT-fs (loop2): Directory bread(block 73) failed
[   31.815645][  T283] EXT4-fs (loop0): unmounting filesystem.
[   31.862517][  T410] EXT4-fs warning (device loop4): ext4_enable_quotas:7055: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   32.119106][  T423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.23'.
[   33.069378][  T410] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   33.076440][   T28] kauditd_printk_skb: 11 callbacks suppressed
[   33.076454][   T28] audit: type=1400 audit(1760982381.114:139): avc:  denied  { write } for  pid=420 comm="syz.0.23" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.104993][  T423] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[   33.114959][  T423] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[   33.157870][  T423] syz.0.23 (423) used greatest stack depth: 20656 bytes left
[   33.167331][  T424] loop1: detected capacity change from 0 to 256
[   33.197727][  T410] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz.4.21: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   33.246808][  T424] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[   33.263224][   T28] audit: type=1400 audit(1760982381.124:140): avc:  denied  { read } for  pid=420 comm="syz.0.23" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.289039][  T410] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.21: couldn't read orphan inode 13 (err -117)
[   33.303770][  T410] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   33.323660][   T28] audit: type=1400 audit(1760982382.354:141): avc:  denied  { create } for  pid=409 comm="syz.4.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   33.377599][   T28] audit: type=1400 audit(1760982382.374:142): avc:  denied  { bind } for  pid=409 comm="syz.4.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   33.388723][  T432] loop2: detected capacity change from 0 to 256
[   33.415692][  T437] loop1: detected capacity change from 0 to 1024
[   33.504207][  T439] loop3: detected capacity change from 0 to 256
[   33.514008][  T439] exfat: Unknown parameter 'pcr'
[   33.528264][  T437] =======================================================
[   33.528264][  T437] WARNING: The mand mount option has been deprecated and
[   33.528264][  T437]          and is ignored by this kernel. Remove the mand
[   33.528264][  T437]          option from the mount to silence this warning.
[   33.528264][  T437] =======================================================
[   33.772159][  T432] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[   33.831470][   T28] audit: type=1400 audit(1760982382.374:143): avc:  denied  { connect } for  pid=409 comm="syz.4.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   34.034459][  T285] EXT4-fs (loop4): unmounting filesystem.
[   34.135568][   T28] audit: type=1400 audit(1760982382.384:144): avc:  denied  { write open } for  pid=419 comm="syz.1.24" path="/4/file0/file1" dev="loop1" ino=1048603 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   34.408688][  T437] EXT4-fs: Ignoring removed oldalloc option
[   34.414654][  T437] EXT4-fs: Ignoring removed bh option
[   34.429368][  T437] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   35.415363][  T446] loop4: detected capacity change from 0 to 512
[   35.451139][   T28] audit: type=1400 audit(1760982384.484:145): avc:  denied  { read } for  pid=441 comm="syz.3.31" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   35.708266][  T446] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   35.716258][  T446] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   35.724367][  T446] System zones: 0-1, 15-15, 18-18, 34-34
[   35.730719][  T446] EXT4-fs (loop4): orphan cleanup on readonly fs
[   35.737121][  T446] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[   35.746479][  T446] EXT4-fs warning (device loop4): ext4_enable_quotas:7055: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   35.761042][  T446] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   35.802313][  T446] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.30: bg 0: block 40: padding at end of block bitmap is not set
[   35.819674][  T446] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   35.830081][  T446] EXT4-fs (loop4): 1 truncate cleaned up
[   35.835811][  T446] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   35.897093][  T446] EXT4-fs error (device loop4): ext4_encrypted_get_link:46: inode #16: comm syz.4.30: bad symlink.
[   35.958152][   T28] audit: type=1400 audit(1760982384.504:146): avc:  denied  { open } for  pid=441 comm="syz.3.31" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   36.081464][   T28] audit: type=1400 audit(1760982384.814:147): avc:  denied  { ioctl } for  pid=441 comm="syz.3.31" path="/dev/binderfs/binder0" dev="binder" ino=10 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   36.254248][  T285] EXT4-fs (loop4): unmounting filesystem.
[   36.261758][  T437] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   36.561541][  T461] netlink: 20 bytes leftover after parsing attributes in process `syz.2.32'.
[   37.209144][  T284] EXT4-fs (loop1): unmounting filesystem.
[   37.469435][  T466] loop2: detected capacity change from 0 to 256
[   37.907902][  T472] fuse: Unknown parameter '0x0000000000000004'
[   37.952350][  T475] loop0: detected capacity change from 0 to 256
[   37.961601][  T475] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[   37.987428][  T479] overlayfs: filesystem on './bus' not supported as upperdir
[   38.027320][  T481] overlayfs: failed to resolve './file1': -2
[   39.158612][   T28] kauditd_printk_skb: 6 callbacks suppressed
[   39.158629][   T28] audit: type=1400 audit(1760982387.664:154): avc:  denied  { read } for  pid=485 comm="syz.1.42" name=".log" dev="incremental-fs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   39.334345][   T28] audit: type=1400 audit(1760982388.364:155): avc:  denied  { read } for  pid=494 comm="syz.1.44" name="rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   39.379832][  T504] loop4: detected capacity change from 0 to 256
[   39.390524][   T28] audit: type=1400 audit(1760982388.364:156): avc:  denied  { open } for  pid=494 comm="syz.1.44" path="/dev/rtc0" dev="devtmpfs" ino=263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   39.401698][  T504] FAT-fs (loop4): Directory bread(block 64) failed
[   39.417641][   T28] audit: type=1400 audit(1760982388.364:157): avc:  denied  { ioctl } for  pid=494 comm="syz.1.44" path="/dev/rtc0" dev="devtmpfs" ino=263 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   39.421184][  T504] FAT-fs (loop4): Directory bread(block 65) failed
[   39.518502][  T508] fuse: Unknown parameter '0x0000000000000004'
[   39.529315][  T504] FAT-fs (loop4): Directory bread(block 66) failed
[   39.529346][  T504] FAT-fs (loop4): Directory bread(block 67) failed
[   39.529383][  T504] FAT-fs (loop4): Directory bread(block 68) failed
[   39.529404][  T504] FAT-fs (loop4): Directory bread(block 69) failed
[   39.529439][  T504] FAT-fs (loop4): Directory bread(block 70) failed
[   39.529460][  T504] FAT-fs (loop4): Directory bread(block 71) failed
[   39.529495][  T504] FAT-fs (loop4): Directory bread(block 72) failed
[   39.529515][  T504] FAT-fs (loop4): Directory bread(block 73) failed
[   40.381516][  T514] loop1: detected capacity change from 0 to 256
[   40.413968][  T516] overlayfs: failed to resolve './file1': -2
[   40.440926][  T514] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[   40.467243][   T28] audit: type=1400 audit(1760982388.394:158): avc:  denied  { setopt } for  pid=499 comm="syz.0.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   40.490658][  T504] syz.4.49: attempt to access beyond end of device
[   40.490658][  T504] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256
[   40.560838][   T28] audit: type=1400 audit(1760982388.534:159): avc:  denied  { getopt } for  pid=499 comm="syz.0.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   40.587417][   T28] audit: type=1400 audit(1760982388.684:160): avc:  denied  { write } for  pid=499 comm="syz.0.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   40.607353][   T28] audit: type=1400 audit(1760982388.694:161): avc:  denied  { nlmsg_write } for  pid=499 comm="syz.0.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   40.627977][   T28] audit: type=1400 audit(1760982389.534:162): avc:  denied  { unlink } for  pid=283 comm="syz-executor" name="file1" dev="tmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   40.650469][    T6] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   41.305158][  T530] loop1: detected capacity change from 0 to 256
[   41.326967][  T530] exfat: Unknown parameter 'pcr'
[   41.928992][  T532] loop3: detected capacity change from 0 to 1024
[   41.948061][  T532] EXT4-fs: Ignoring removed orlov option
[   44.011774][  T532] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   44.040507][   T28] audit: type=1400 audit(1760982393.054:163): avc:  denied  { mount } for  pid=522 comm="syz.3.56" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   44.340246][   T28] audit: type=1400 audit(1760982393.374:164): avc:  denied  { unmount } for  pid=286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   44.362264][  T286] EXT4-fs (loop3): unmounting filesystem.
[   44.369836][  T546] Bluetooth: hci0: Frame reassembly failed (-90)
[   44.388828][  T408] Bluetooth: hci0: Frame reassembly failed (-84)
[   44.491299][  T556] overlayfs: failed to resolve './file1': -2
[   44.547296][   T28] audit: type=1400 audit(1760982393.574:165): avc:  denied  { create } for  pid=555 comm="syz.0.64" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   45.134302][  T565] loop1: detected capacity change from 0 to 256
[   45.140958][  T565] exfat: Unknown parameter 'pcr'
[   45.147062][    T6] usb 3-1: device not accepting address 2, error -71
[   46.556626][  T547] Bluetooth: hci0: command 0x1003 tx timeout
[   46.556657][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   46.862364][  T575] netlink: 20 bytes leftover after parsing attributes in process `syz.2.68'.
[   46.959488][  T578] loop4: detected capacity change from 0 to 512
[   46.993898][  T578] EXT4-fs: Ignoring removed mblk_io_submit option
[   47.296775][  T581] loop2: detected capacity change from 0 to 128
[   47.303722][  T578] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   47.344367][  T578] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e028, mo2=0002]
[   47.372507][  T578] EXT4-fs (loop4): orphan cleanup on readonly fs
[   47.388540][  T578] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.70: bg 0: block 361: padding at end of block bitmap is not set
[   47.407212][  T578] EXT4-fs (loop4): Remounting filesystem read-only
[   47.414203][  T578] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   47.428856][  T578] EXT4-fs (loop4): Remounting filesystem read-only
[   47.432269][  T588] loop2: detected capacity change from 0 to 256
[   47.440703][  T578] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #11: comm syz.4.70: attempt to clear invalid blocks 33619980 len 1
[   47.448283][   T24] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   47.464600][  T590] loop1: detected capacity change from 0 to 256
[   47.471216][  T578] EXT4-fs (loop4): Remounting filesystem read-only
[   47.473182][  T588] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[   47.491231][  T590] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[   47.502725][  T578] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.70: invalid indirect mapped block 1811939328 (level 0)
[   47.517539][  T578] EXT4-fs (loop4): Remounting filesystem read-only
[   47.526020][  T578] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.70: invalid indirect mapped block 2185560079 (level 1)
[   47.540253][  T578] EXT4-fs (loop4): Remounting filesystem read-only
[   47.546934][  T578] EXT4-fs (loop4): 1 truncate cleaned up
[   47.559714][  T578] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   47.586840][  T592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.76'.
[   47.596834][  T592] netlink: 12 bytes leftover after parsing attributes in process `syz.2.76'.
[   47.773944][   T24] usb 1-1: Using ep0 maxpacket: 16
[   48.270023][   T24] usb 1-1: config index 0 descriptor too short (expected 16456, got 72)
[   48.379750][   T24] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[   48.387969][   T24] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[   48.488498][  T602] Bluetooth: hci0: Frame reassembly failed (-90)
[   48.507017][  T602] loop3: detected capacity change from 0 to 256
[   48.675627][   T24] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[   48.684172][   T24] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[   48.693075][   T24] usb 1-1: config 0 has no interface number 0
[   48.699220][   T24] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[   48.710329][   T24] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[   48.720844][   T28] audit: type=1400 audit(1760982397.484:166): avc:  denied  { read } for  pid=599 comm="syz.3.78" dev="nsfs" ino=4026532569 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   48.770627][   T24] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[   48.789737][   T24] usb 1-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   48.873594][   T24] usb 1-1: config 0 interface 125 has no altsetting 0
[   48.886544][   T24] usb 1-1: config 0 interface 125 has no altsetting 2
[   48.889720][   T28] audit: type=1400 audit(1760982397.484:167): avc:  denied  { open } for  pid=599 comm="syz.3.78" path="net:[4026532569]" dev="nsfs" ino=4026532569 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   48.917500][  T569] Bluetooth: hci0: Frame reassembly failed (-84)
[   49.369163][  T609] Bluetooth: hci1: Frame reassembly failed (-90)
[   49.422516][  T609] loop1: detected capacity change from 0 to 256
[   49.453307][   T28] audit: type=1400 audit(1760982397.494:168): avc:  denied  { create } for  pid=599 comm="syz.3.78" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   49.507733][   T10] Bluetooth: hci1: Frame reassembly failed (-84)
[   49.514684][   T10] Bluetooth: hci1: Frame reassembly failed (-84)
[   49.522693][   T28] audit: type=1400 audit(1760982398.554:169): avc:  denied  { create } for  pid=591 comm="syz.2.76" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   49.542141][   T24] usb 1-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[   49.554053][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   49.562513][   T24] usb 1-1: Product: syz
[   49.566899][   T28] audit: type=1400 audit(1760982398.584:170): avc:  denied  { write } for  pid=591 comm="syz.2.76" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   49.586411][   T24] usb 1-1: Manufacturer: syz
[   49.592229][   T24] usb 1-1: SerialNumber: syz
[   49.601344][   T24] usb 1-1: config 0 descriptor??
[   49.651037][  T285] EXT4-fs (loop4): unmounting filesystem.
[   50.717580][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   50.871648][  T493] usb 1-1: USB disconnect, device number 2
[   50.886332][  T623] loop2: detected capacity change from 0 to 128
[   51.602535][  T610] Bluetooth: hci1: command 0x1003 tx timeout
[   51.608727][  T547] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   51.784910][  T636] loop0: detected capacity change from 0 to 256
[   51.791839][  T636] exfat: Unknown parameter 'pcr'
[   52.767146][  T639] loop4: detected capacity change from 0 to 256
[   52.773820][  T639] exfat: Unknown parameter 'pcr'
[   52.807569][  T637] loop2: detected capacity change from 0 to 256
[   52.844253][  T637] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[   53.403376][  T335] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   53.466579][  T648] loop0: detected capacity change from 0 to 512
[   53.508849][  T648] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.546904][  T648] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   53.589426][  T648] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e028, mo2=0002]
[   53.608818][  T648] EXT4-fs (loop0): orphan cleanup on readonly fs
[   53.635596][  T648] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.90: bg 0: block 361: padding at end of block bitmap is not set
[   53.666024][  T648] EXT4-fs (loop0): Remounting filesystem read-only
[   53.685482][  T648] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   53.766490][  T648] EXT4-fs (loop0): Remounting filesystem read-only
[   53.773113][  T648] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #11: comm syz.0.90: attempt to clear invalid blocks 33619980 len 1
[   53.794928][  T648] EXT4-fs (loop0): Remounting filesystem read-only
[   53.802703][  T648] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.90: invalid indirect mapped block 1811939328 (level 0)
[   53.896098][  T664] Bluetooth: hci0: Frame reassembly failed (-90)
[   53.911767][  T664] loop4: detected capacity change from 0 to 256
[   53.981019][   T43] Bluetooth: hci0: Frame reassembly failed (-84)
[   53.990442][  T648] EXT4-fs (loop0): Remounting filesystem read-only
[   53.998497][  T648] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.90: invalid indirect mapped block 2185560079 (level 1)
[   54.087286][   T43] Bluetooth: hci0: Frame reassembly failed (-84)
[   54.113170][  T648] EXT4-fs (loop0): Remounting filesystem read-only
[   54.122209][  T648] EXT4-fs (loop0): 1 truncate cleaned up
[   54.128022][  T648] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   54.328339][  T415] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   54.500243][   T28] audit: type=1400 audit(1760982403.534:171): avc:  denied  { unmount } for  pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   54.840383][  T283] EXT4-fs (loop0): unmounting filesystem.
[   54.922415][  T415] usb 4-1: Using ep0 maxpacket: 16
[   54.930066][  T415] usb 4-1: config index 0 descriptor too short (expected 16456, got 72)
[   54.938782][  T415] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[   54.946989][  T415] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[   54.955265][  T415] usb 4-1: config 0 has an invalid interface number: 125 but max is 1
[   54.963511][  T415] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[   54.972450][  T415] usb 4-1: config 0 has no interface number 0
[   54.978582][  T415] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[   54.990653][  T415] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[   55.114762][  T684] loop1: detected capacity change from 0 to 256
[   55.678273][  T683] loop2: detected capacity change from 0 to 256
[   55.721067][  T683] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   55.734903][  T683] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   55.852950][  T684] FAT-fs (loop1): Directory bread(block 64) failed
[   55.859649][  T684] FAT-fs (loop1): Directory bread(block 65) failed
[   55.866543][  T684] FAT-fs (loop1): Directory bread(block 66) failed
[   55.873206][  T684] FAT-fs (loop1): Directory bread(block 67) failed
[   55.880073][  T684] FAT-fs (loop1): Directory bread(block 68) failed
[   55.886874][  T684] FAT-fs (loop1): Directory bread(block 69) failed
[   55.893723][  T684] FAT-fs (loop1): Directory bread(block 70) failed
[   55.900429][  T684] FAT-fs (loop1): Directory bread(block 71) failed
[   55.907219][  T684] FAT-fs (loop1): Directory bread(block 72) failed
[   55.913864][  T684] FAT-fs (loop1): Directory bread(block 73) failed
[   56.008586][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   56.131792][  T547] Bluetooth: hci0: command 0x1003 tx timeout
[   56.482091][  T415] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[   56.703573][  T690] loop4: detected capacity change from 0 to 512
[   57.431388][  T415] usb 4-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   57.449080][  T415] usb 4-1: config 0 interface 125 has no altsetting 0
[   57.456247][  T415] usb 4-1: config 0 interface 125 has no altsetting 2
[   57.616339][  T690] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   57.616768][  T415] usb 4-1: string descriptor 0 read error: -71
[   57.631859][  T690] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   57.640402][  T690] System zones: 0-1, 15-15, 18-18, 34-34
[   57.648660][  T690] EXT4-fs (loop4): orphan cleanup on readonly fs
[   57.655514][  T690] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[   57.665062][  T690] EXT4-fs warning (device loop4): ext4_enable_quotas:7055: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   57.679939][  T690] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   57.691802][  T690] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.103: bg 0: block 40: padding at end of block bitmap is not set
[   57.709678][  T690] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   57.722465][  T415] usb 4-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[   57.722832][  T690] EXT4-fs (loop4): 1 truncate cleaned up
[   57.737886][  T690] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   57.775900][  T415] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   57.804260][   T28] audit: type=1400 audit(1760982406.794:172): avc:  denied  { create } for  pid=696 comm="syz.1.104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   57.830306][  T690] EXT4-fs error (device loop4): ext4_encrypted_get_link:46: inode #16: comm syz.4.103: bad symlink.
[   57.906834][  T415] usb 4-1: config 0 descriptor??
[   58.016696][  T285] EXT4-fs (loop4): unmounting filesystem.
[   58.021416][  T415] usb 4-1: can't set config #0, error -71
[   58.039324][  T415] usb 4-1: USB disconnect, device number 2
[   58.068469][   T28] audit: type=1400 audit(1760982406.794:173): avc:  denied  { connect } for  pid=696 comm="syz.1.104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   58.116599][   T28] audit: type=1400 audit(1760982407.144:174): avc:  denied  { map } for  pid=712 comm="syz.3.112" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   58.124952][  T717] loop4: detected capacity change from 0 to 1024
[   58.174612][  T717] EXT4-fs: Ignoring removed i_version option
[   58.180988][  T717] EXT4-fs: Ignoring removed orlov option
[   58.186748][  T717] ext4: Unknown parameter 'noacl'
[   58.200571][  T717] overlayfs: failed to resolve './file0': -2
[   58.217665][  T725] binder: 712:725 ioctl c0306201 200000000180 returned -14
[   58.220499][   T28] audit: type=1400 audit(1760982407.244:175): avc:  denied  { call } for  pid=712 comm="syz.3.112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   58.334750][   T28] audit: type=1400 audit(1760982407.244:176): avc:  denied  { transfer } for  pid=712 comm="syz.3.112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   58.355862][   T28] audit: type=1400 audit(1760982407.344:177): avc:  denied  { write } for  pid=709 comm="syz.2.110" name="event2" dev="devtmpfs" ino=275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   59.744347][   T28] audit: type=1400 audit(1760982407.344:178): avc:  denied  { open } for  pid=709 comm="syz.2.110" path="/dev/input/event2" dev="devtmpfs" ino=275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   61.397841][  T744] loop0: detected capacity change from 0 to 512
[   62.240628][  T745] loop2: detected capacity change from 0 to 256
[   62.871460][  T744] EXT4-fs warning (device loop0): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop0.
[   62.898348][  T745] FAT-fs (loop2): Directory bread(block 64) failed
[   62.905174][  T745] FAT-fs (loop2): Directory bread(block 65) failed
[   62.912335][  T745] FAT-fs (loop2): Directory bread(block 66) failed
[   62.919263][  T745] FAT-fs (loop2): Directory bread(block 67) failed
[   62.926579][  T745] FAT-fs (loop2): Directory bread(block 68) failed
[   62.933350][  T745] FAT-fs (loop2): Directory bread(block 69) failed
[   62.940616][  T745] FAT-fs (loop2): Directory bread(block 70) failed
[   62.947333][  T745] FAT-fs (loop2): Directory bread(block 71) failed
[   62.954740][  T745] FAT-fs (loop2): Directory bread(block 72) failed
[   62.961797][  T745] FAT-fs (loop2): Directory bread(block 73) failed
[   63.651463][  T764] loop4: detected capacity change from 0 to 256
[   63.682464][  T764] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   63.695737][  T764] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   63.965343][  T772] binder: 767:772 ioctl c0306201 200000000180 returned -14
[   64.750100][   T28] audit: type=1400 audit(1760982413.784:179): avc:  denied  { write } for  pid=765 comm="syz.0.127" name="protocols" dev="proc" ino=4026532297 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   65.259256][  T805] binder: 799:805 ioctl c0306201 200000000180 returned -14
[   65.353464][  T807] loop1: detected capacity change from 0 to 256
[   65.363098][  T807] exfat: Unknown parameter 'pcr'
[   66.598693][  T473] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   66.762637][  T821] loop0: detected capacity change from 0 to 256
[   67.120924][  T821] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   67.134061][  T821] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   67.290963][  T473] usb 4-1: device descriptor read/all, error -71
[   67.522885][  T833] loop4: detected capacity change from 0 to 256
[   67.529572][  T833] exfat: Unknown parameter 'pcr'
[   68.473205][   T28] audit: type=1326 audit(1760982417.504:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   68.718210][  T850] loop1: detected capacity change from 0 to 256
[   68.725162][  T850] exfat: Unknown parameter 'pcr'
[   69.829932][   T28] audit: type=1326 audit(1760982417.504:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   69.861055][   T28] audit: type=1326 audit(1760982417.604:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   69.883457][  T857] loop0: detected capacity change from 0 to 512
[   69.936888][   T28] audit: type=1326 audit(1760982417.604:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   69.960395][   T28] audit: type=1326 audit(1760982417.604:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   70.507078][   T28] audit: type=1326 audit(1760982417.604:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   70.573438][   T28] audit: type=1326 audit(1760982417.604:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   70.597267][  T857] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   70.598688][  T867] loop2: detected capacity change from 0 to 256
[   70.613163][   T28] audit: type=1326 audit(1760982417.604:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   70.636889][   T28] audit: type=1326 audit(1760982417.604:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   70.660223][  T857] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.672050][  T867] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   70.684338][  T867] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   70.703685][   T28] audit: type=1326 audit(1760982417.604:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   70.753389][  T283] EXT4-fs (loop0): unmounting filesystem.
[   70.759961][   T28] audit: type=1326 audit(1760982417.604:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=841 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dbd38efc9 code=0x7ffc0000
[   73.044158][  T897] loop4: detected capacity change from 0 to 256
[   73.050918][  T897] exfat: Unknown parameter 'pcr'
[   73.556484][  T881] syz.3.166 (881): /proc/879/oom_adj is deprecated, please use /proc/879/oom_score_adj instead.
[   74.036525][  T907] loop1: detected capacity change from 0 to 256
[   74.049969][  T907] exfat: Unknown parameter 'pcr'
[   74.820941][  T910] loop4: detected capacity change from 0 to 256
[   74.827669][  T910] exfat: Deprecated parameter 'utf8'
[   74.855585][  T910] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[   75.059872][   T28] kauditd_printk_skb: 45 callbacks suppressed
[   75.059887][   T28] audit: type=1326 audit(1760982424.094:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   75.425536][  T923] loop0: detected capacity change from 0 to 256
[   75.442543][  T923] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   75.455760][  T923] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   75.661734][   T28] audit: type=1326 audit(1760982424.094:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   76.009230][  T925] SELinux: security_context_str_to_sid () failed with errno=-22
[   76.043626][   T28] audit: type=1326 audit(1760982424.124:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   76.082431][   T28] audit: type=1326 audit(1760982424.124:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   76.186235][   T28] audit: type=1326 audit(1760982424.124:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   77.029290][  T938] bridge: RTM_NEWNEIGH with invalid ether address
[   77.122251][   T28] audit: type=1326 audit(1760982424.554:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   77.157295][   T28] audit: type=1326 audit(1760982424.554:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   77.430062][  T956] overlayfs: missing 'lowerdir'
[   77.553781][   T28] audit: type=1326 audit(1760982424.554:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   77.974015][  T964] device wireguard0 entered promiscuous mode
[   78.174477][   T28] audit: type=1326 audit(1760982424.554:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   78.210895][   T28] audit: type=1326 audit(1760982424.554:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=908 comm="syz.4.172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   78.331945][  T974] loop0: detected capacity change from 0 to 256
[   78.667987][  T974] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   78.681529][  T974] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   79.016588][  T978] loop2: detected capacity change from 0 to 40427
[   79.028310][  T978] F2FS-fs (loop2): invalid crc value
[   79.088445][  T978] F2FS-fs (loop2): Found nat_bits in checkpoint
[   79.302482][  T995] netlink: 20 bytes leftover after parsing attributes in process `syz.1.195'.
[   79.539764][  T978] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   79.630096][  T999] bridge: RTM_NEWNEIGH with invalid ether address
[   79.858115][  T287] syz-executor: attempt to access beyond end of device
[   79.858115][  T287] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   79.871335][ T1002] loop0: detected capacity change from 0 to 512
[   79.881121][ T1002] EXT4-fs: Ignoring removed mblk_io_submit option
[   79.894702][ T1002] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   79.905695][ T1002] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e028, mo2=0002]
[   79.914272][ T1002] EXT4-fs (loop0): orphan cleanup on readonly fs
[   79.921408][ T1002] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.202: bg 0: block 361: padding at end of block bitmap is not set
[   79.936534][ T1002] EXT4-fs (loop0): Remounting filesystem read-only
[   79.943138][ T1002] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   79.978809][ T1002] EXT4-fs (loop0): Remounting filesystem read-only
[   79.987079][ T1002] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #11: comm syz.0.202: attempt to clear invalid blocks 33619980 len 1
[   80.008670][ T1002] EXT4-fs (loop0): Remounting filesystem read-only
[   80.025513][ T1002] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.202: invalid indirect mapped block 1811939328 (level 0)
[   80.079449][ T1002] EXT4-fs (loop0): Remounting filesystem read-only
[   80.131904][ T1013] loop1: detected capacity change from 0 to 256
[   80.150572][ T1013] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   80.163855][ T1013] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   80.240238][ T1002] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.202: invalid indirect mapped block 2185560079 (level 1)
[   80.345003][ T1002] EXT4-fs (loop0): Remounting filesystem read-only
[   80.351771][ T1002] EXT4-fs (loop0): 1 truncate cleaned up
[   80.357523][ T1002] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   81.785965][ T1024] loop1: detected capacity change from 0 to 256
[   81.847311][ T1024] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   81.861045][ T1024] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   82.017125][   T28] kauditd_printk_skb: 68 callbacks suppressed
[   82.017141][   T28] audit: type=1326 audit(1760982431.044:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.409186][   T28] audit: type=1326 audit(1760982431.084:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.448233][   T28] audit: type=1326 audit(1760982431.084:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.478752][  T283] EXT4-fs (loop0): unmounting filesystem.
[   82.524755][   T28] audit: type=1326 audit(1760982431.084:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.567972][   T28] audit: type=1326 audit(1760982431.084:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.597393][   T28] audit: type=1326 audit(1760982431.084:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.637065][ T1041] loop4: detected capacity change from 0 to 4096
[   82.643767][   T28] audit: type=1326 audit(1760982431.084:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.763881][ T1041] EXT4-fs: Ignoring removed mblk_io_submit option
[   82.773502][   T28] audit: type=1326 audit(1760982431.084:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.849222][   T28] audit: type=1326 audit(1760982431.084:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   82.874358][ T1041] EXT4-fs (loop4): Test dummy encryption mode enabled
[   82.891422][ T1041] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   82.911913][ T1041] EXT4-fs warning (device loop4): ext4_resize_fs:2028: can't read last block, resize aborted
[   82.957536][  T285] EXT4-fs (loop4): unmounting filesystem.
[   82.970140][   T28] audit: type=1326 audit(1760982431.094:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1027 comm="syz.4.208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[   83.324587][ T1061] loop1: detected capacity change from 0 to 256
[   83.518413][ T1061] FAT-fs (loop1): Directory bread(block 64) failed
[   83.525129][ T1061] FAT-fs (loop1): Directory bread(block 65) failed
[   83.531983][ T1061] FAT-fs (loop1): Directory bread(block 66) failed
[   83.538596][ T1061] FAT-fs (loop1): Directory bread(block 67) failed
[   83.545373][ T1061] FAT-fs (loop1): Directory bread(block 68) failed
[   83.551987][ T1061] FAT-fs (loop1): Directory bread(block 69) failed
[   83.558780][ T1061] FAT-fs (loop1): Directory bread(block 70) failed
[   83.565386][ T1061] FAT-fs (loop1): Directory bread(block 71) failed
[   83.572182][ T1061] FAT-fs (loop1): Directory bread(block 72) failed
[   83.578837][ T1061] FAT-fs (loop1): Directory bread(block 73) failed
[   85.212247][ T1071] loop4: detected capacity change from 0 to 256
[   85.236787][ T1071] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[   85.250080][ T1071] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   85.594963][ T1081] loop3: detected capacity change from 0 to 512
[   85.757131][ T1081] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   85.765381][ T1081] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   85.773633][ T1081] System zones: 0-1, 15-15, 18-18, 34-34
[   85.780361][ T1081] EXT4-fs (loop3): orphan cleanup on readonly fs
[   85.786811][ T1081] EXT4-fs warning (device loop3): ext4_enable_quotas:7055: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   85.801376][ T1081] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   86.520216][ T1089] loop2: detected capacity change from 0 to 256
[   86.526925][ T1089] exfat: Unknown parameter 'pcr'
[   94.187627][ T1081] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.223: bg 0: block 40: padding at end of block bitmap is not set
[   94.209866][ T1081] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem
[   94.219463][ T1081] EXT4-fs (loop3): 1 truncate cleaned up
[   94.225221][ T1081] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   94.241399][  T286] EXT4-fs (loop3): unmounting filesystem.
[   95.127035][ T1104] loop3: detected capacity change from 0 to 256
[   95.551726][ T1106] loop2: detected capacity change from 0 to 256
[   98.018449][ T1104] FAT-fs (loop3): Directory bread(block 64) failed
[   98.025135][ T1104] FAT-fs (loop3): Directory bread(block 65) failed
[   98.031973][ T1104] FAT-fs (loop3): Directory bread(block 66) failed
[   98.038628][ T1104] FAT-fs (loop3): Directory bread(block 67) failed
[   98.045574][ T1104] FAT-fs (loop3): Directory bread(block 68) failed
[   98.052286][ T1104] FAT-fs (loop3): Directory bread(block 69) failed
[   98.059108][ T1104] FAT-fs (loop3): Directory bread(block 70) failed
[   98.065800][ T1104] FAT-fs (loop3): Directory bread(block 71) failed
[   98.072614][ T1104] FAT-fs (loop3): Directory bread(block 72) failed
[   98.079232][ T1104] FAT-fs (loop3): Directory bread(block 73) failed
[   98.160120][ T1106] FAT-fs (loop2): Directory bread(block 64) failed
[   98.166801][ T1106] FAT-fs (loop2): Directory bread(block 65) failed
[   98.173697][ T1106] FAT-fs (loop2): Directory bread(block 66) failed
[   98.180340][ T1106] FAT-fs (loop2): Directory bread(block 67) failed
[   98.187128][ T1106] FAT-fs (loop2): Directory bread(block 68) failed
[   98.193772][ T1106] FAT-fs (loop2): Directory bread(block 69) failed
[   98.200611][ T1106] FAT-fs (loop2): Directory bread(block 70) failed
[   98.207320][ T1106] FAT-fs (loop2): Directory bread(block 71) failed
[   98.214167][ T1106] FAT-fs (loop2): Directory bread(block 72) failed
[   98.220906][ T1106] FAT-fs (loop2): Directory bread(block 73) failed
[   99.456466][ T1121] loop0: detected capacity change from 0 to 256
[   99.474052][ T1121] exfat: Unknown parameter 'pcr'
[  101.359370][ T1126] loop3: detected capacity change from 0 to 256
[  101.369964][ T1126] exfat: Unknown parameter 'pcr'
[  102.377435][  T344] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  102.399289][  T335] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  102.413618][   T28] kauditd_printk_skb: 17 callbacks suppressed
[  102.413635][   T28] audit: type=1326 audit(1760982451.444:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  102.460455][ T1132] loop1: detected capacity change from 0 to 512
[  102.485607][   T28] audit: type=1326 audit(1760982451.454:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  102.509601][ T1132] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  102.528648][   T28] audit: type=1326 audit(1760982451.484:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  102.565662][   T28] audit: type=1326 audit(1760982451.484:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  102.601238][   T28] audit: type=1326 audit(1760982451.484:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  102.635041][  T496] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  102.654845][   T28] audit: type=1326 audit(1760982451.484:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  103.378024][ T1143] loop2: detected capacity change from 0 to 256
[  103.390424][ T1143] exfat: Unknown parameter 'pcr'
[  104.564201][   T28] audit: type=1326 audit(1760982451.484:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  104.650835][   T28] audit: type=1326 audit(1760982451.484:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  104.676612][   T28] audit: type=1326 audit(1760982451.484:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  104.701857][   T28] audit: type=1326 audit(1760982451.484:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1127 comm="syz.4.239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  104.831962][ T1152] loop2: detected capacity change from 0 to 256
[  104.994560][ T1157] loop3: detected capacity change from 0 to 256
[  105.055666][ T1157] FAT-fs (loop3): Directory bread(block 64) failed
[  105.062438][ T1157] FAT-fs (loop3): Directory bread(block 65) failed
[  105.069404][ T1157] FAT-fs (loop3): Directory bread(block 66) failed
[  105.076081][ T1157] FAT-fs (loop3): Directory bread(block 67) failed
[  105.083065][ T1157] FAT-fs (loop3): Directory bread(block 68) failed
[  105.089818][ T1157] FAT-fs (loop3): Directory bread(block 69) failed
[  105.096702][ T1157] FAT-fs (loop3): Directory bread(block 70) failed
[  105.103435][ T1157] FAT-fs (loop3): Directory bread(block 71) failed
[  105.110312][ T1157] FAT-fs (loop3): Directory bread(block 72) failed
[  105.116994][ T1157] FAT-fs (loop3): Directory bread(block 73) failed
[  105.256156][ T1152] FAT-fs (loop2): Directory bread(block 64) failed
[  105.384215][ T1152] FAT-fs (loop2): Directory bread(block 65) failed
[  105.609033][ T1152] FAT-fs (loop2): Directory bread(block 66) failed
[  105.644855][ T1152] FAT-fs (loop2): Directory bread(block 67) failed
[  105.738512][ T1152] FAT-fs (loop2): Directory bread(block 68) failed
[  105.765660][ T1152] FAT-fs (loop2): Directory bread(block 69) failed
[  105.913133][ T1152] FAT-fs (loop2): Directory bread(block 70) failed
[  105.983170][ T1152] FAT-fs (loop2): Directory bread(block 71) failed
[  106.056979][ T1152] FAT-fs (loop2): Directory bread(block 72) failed
[  106.828543][ T1152] FAT-fs (loop2): Directory bread(block 73) failed
[  107.307095][ T1169] loop4: detected capacity change from 0 to 256
[  107.328338][ T1169] exfat: Deprecated parameter 'utf8'
[  107.350220][ T1169] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  107.441709][   T28] kauditd_printk_skb: 196 callbacks suppressed
[  107.441729][   T28] audit: type=1400 audit(1760982456.464:546): avc:  denied  { create } for  pid=1174 comm="syz.1.247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  107.518383][   T28] audit: type=1326 audit(1760982456.514:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  107.612083][ T1178] loop3: detected capacity change from 0 to 256
[  107.629914][ T1178] exfat: Unknown parameter 'pcr'
[  108.107115][   T28] audit: type=1326 audit(1760982456.514:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  108.135756][   T28] audit: type=1326 audit(1760982456.514:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  108.272227][   T28] audit: type=1326 audit(1760982456.514:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  108.323561][ T1182] device veth0 entered promiscuous mode
[  108.338115][   T28] audit: type=1326 audit(1760982456.514:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  108.702508][   T28] audit: type=1326 audit(1760982456.514:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  108.729670][   T28] audit: type=1326 audit(1760982456.514:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  108.757826][ T1174] device veth0 left promiscuous mode
[  108.779112][ T1186] loop4: detected capacity change from 0 to 512
[  109.680189][ T1190] loop2: detected capacity change from 0 to 256
[  109.686868][ T1190] exfat: Unknown parameter 'pcr'
[  115.678117][ T1186] EXT4-fs warning (device loop4): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop4.
[  115.700215][   T28] audit: type=1326 audit(1760982456.514:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  115.717380][ T1194] loop3: detected capacity change from 0 to 512
[  115.724774][   T28] audit: type=1326 audit(1760982456.514:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  115.754212][ T1194] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  115.773444][  T344] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  115.809118][   T28] audit: type=1326 audit(1760982456.514:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  115.839091][ T1200] bridge: RTM_NEWNEIGH with invalid ether address
[  115.840898][   T28] audit: type=1326 audit(1760982456.514:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  115.868932][  T335] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  115.886672][   T28] audit: type=1326 audit(1760982456.514:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  115.923926][   T28] audit: type=1326 audit(1760982456.514:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  116.347382][ T1208] loop1: detected capacity change from 0 to 256
[  119.422470][   T28] audit: type=1326 audit(1760982456.514:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  119.468819][   T28] audit: type=1326 audit(1760982456.514:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  119.500824][   T28] audit: type=1326 audit(1760982456.514:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  119.542612][   T28] audit: type=1326 audit(1760982456.514:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1168 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72fe78efc9 code=0x7ffc0000
[  119.575699][ T1208] FAT-fs (loop1): Directory bread(block 64) failed
[  119.582331][ T1208] FAT-fs (loop1): Directory bread(block 65) failed
[  119.589061][ T1208] FAT-fs (loop1): Directory bread(block 66) failed
[  119.595674][ T1208] FAT-fs (loop1): Directory bread(block 67) failed
[  119.602474][ T1208] FAT-fs (loop1): Directory bread(block 68) failed
[  119.609101][ T1208] FAT-fs (loop1): Directory bread(block 69) failed
[  119.615732][ T1208] FAT-fs (loop1): Directory bread(block 70) failed
[  119.622369][ T1208] FAT-fs (loop1): Directory bread(block 71) failed
[  119.629044][ T1208] FAT-fs (loop1): Directory bread(block 72) failed
[  119.635627][ T1208] FAT-fs (loop1): Directory bread(block 73) failed
[  121.799217][  T547] Bluetooth: hci0: sending frame failed (-49)
[  121.805447][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  122.326435][ T1242] loop1: detected capacity change from 0 to 256
[  122.333381][ T1242] exfat: Unknown parameter 'pcr'
[  122.537774][ T1244] loop0: detected capacity change from 0 to 256
[  123.245236][ T1244] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  123.258456][ T1244] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  123.479991][ T1248] loop0: detected capacity change from 0 to 512
[  123.609950][ T1248] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  123.768630][  T496] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  124.179795][ T1256] loop1: detected capacity change from 0 to 256
[  124.375917][ T1256] FAT-fs (loop1): Directory bread(block 64) failed
[  124.382629][ T1256] FAT-fs (loop1): Directory bread(block 65) failed
[  124.389491][ T1256] FAT-fs (loop1): Directory bread(block 66) failed
[  124.396160][ T1256] FAT-fs (loop1): Directory bread(block 67) failed
[  124.403038][ T1256] FAT-fs (loop1): Directory bread(block 68) failed
[  124.409683][ T1256] FAT-fs (loop1): Directory bread(block 69) failed
[  124.416500][ T1256] FAT-fs (loop1): Directory bread(block 70) failed
[  124.423151][ T1256] FAT-fs (loop1): Directory bread(block 71) failed
[  124.430009][ T1256] FAT-fs (loop1): Directory bread(block 72) failed
[  124.436611][ T1256] FAT-fs (loop1): Directory bread(block 73) failed
[  124.462143][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  125.277190][ T1261] loop4: detected capacity change from 0 to 512
[  125.417030][ T1261] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  125.707770][ T1270] loop2: detected capacity change from 0 to 256
[  125.733488][ T1270] FAT-fs (loop2): Directory bread(block 64) failed
[  125.740171][ T1270] FAT-fs (loop2): Directory bread(block 65) failed
[  125.746929][ T1270] FAT-fs (loop2): Directory bread(block 66) failed
[  125.753570][ T1270] FAT-fs (loop2): Directory bread(block 67) failed
[  125.760369][ T1270] FAT-fs (loop2): Directory bread(block 68) failed
[  125.766949][ T1270] FAT-fs (loop2): Directory bread(block 69) failed
[  125.773759][ T1270] FAT-fs (loop2): Directory bread(block 70) failed
[  125.780370][ T1270] FAT-fs (loop2): Directory bread(block 71) failed
[  125.787133][ T1270] FAT-fs (loop2): Directory bread(block 72) failed
[  125.793787][ T1270] FAT-fs (loop2): Directory bread(block 73) failed
[  126.004549][ T1261] EXT4-fs (loop4): orphan cleanup on readonly fs
[  126.101977][ T1261] EXT4-fs warning (device loop4): ext4_enable_quotas:7055: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  126.342737][ T1261] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  126.353888][ T1261] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz.4.276: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  126.372358][ T1261] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.276: couldn't read orphan inode 13 (err -117)
[  126.384682][ T1261] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  126.814452][   T28] kauditd_printk_skb: 15 callbacks suppressed
[  126.814468][   T28] audit: type=1400 audit(1760982475.844:579): avc:  denied  { write } for  pid=1258 comm="syz.4.276" name="ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  126.843497][   T28] audit: type=1400 audit(1760982475.844:580): avc:  denied  { open } for  pid=1258 comm="syz.4.276" path="/dev/ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  126.866777][   T28] audit: type=1400 audit(1760982475.844:581): avc:  denied  { ioctl } for  pid=1258 comm="syz.4.276" path="/dev/ppp" dev="devtmpfs" ino=158 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  126.949408][  T569] Bluetooth: hci0: Frame reassembly failed (-90)
[  126.960668][  T569] Bluetooth: hci0: Frame reassembly failed (-84)
[  127.068651][  T493] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  127.082967][  T285] EXT4-fs (loop4): unmounting filesystem.
[  127.234103][ T1294] loop4: detected capacity change from 0 to 256
[  127.266914][ T1294] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  127.284835][ T1294] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  127.554398][  T291] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  127.571236][  T493] usb 4-1: unable to read config index 0 descriptor/start: -61
[  127.585405][  T493] usb 4-1: can't read configurations, error -61
[  127.768233][  T493] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  127.909367][  T291] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.919211][  T291] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  127.932176][  T291] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  127.941295][  T291] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.950085][  T291] usb 3-1: config 0 descriptor??
[  127.974506][  T493] usb 4-1: unable to read config index 0 descriptor/start: -61
[  127.982235][  T493] usb 4-1: can't read configurations, error -61
[  128.045734][  T493] usb usb4-port1: attempt power cycle
[  128.167882][ T1299] netlink: 8 bytes leftover after parsing attributes in process `syz.4.287'.
[  128.468309][  T493] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  128.500203][  T493] usb 4-1: unable to read config index 0 descriptor/start: -61
[  128.507914][  T493] usb 4-1: can't read configurations, error -61
[  128.524566][  T291] kovaplus 0003:1E7D:2D50.0001: item fetching failed at offset 1/5
[  128.532822][  T291] kovaplus 0003:1E7D:2D50.0001: parse failed
[  128.538861][  T291] kovaplus: probe of 0003:1E7D:2D50.0001 failed with error -22
[  128.658242][  T493] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  128.690171][  T493] usb 4-1: unable to read config index 0 descriptor/start: -61
[  128.697850][  T493] usb 4-1: can't read configurations, error -61
[  128.704258][  T493] usb usb4-port1: unable to enumerate USB device
[  128.725555][  T291] usb 3-1: USB disconnect, device number 4
[  128.834468][ T1299] syz.4.287 (1299) used greatest stack depth: 20464 bytes left
[  128.999611][ T1303] bridge: RTM_NEWNEIGH with invalid ether address
[  129.028295][  T547] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  130.290588][ T1311] loop0: detected capacity change from 0 to 256
[  130.300408][ T1311] exfat: Unknown parameter 'pcr'
[  130.784739][   T45] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  130.852999][ T1315] loop4: detected capacity change from 0 to 512
[  130.867913][ T1315] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  130.940059][ T1315] EXT4-fs (loop4): orphan cleanup on readonly fs
[  130.993360][ T1315] EXT4-fs warning (device loop4): ext4_enable_quotas:7055: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  131.237525][  T335] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  131.242339][ T1315] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  131.261129][ T1315] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz.4.294: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  131.305214][ T1315] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.294: couldn't read orphan inode 13 (err -117)
[  131.317850][ T1315] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  131.346737][  T285] EXT4-fs (loop4): unmounting filesystem.
[  131.361515][ T1195] Bluetooth: hci0: Frame reassembly failed (-84)
[  131.375139][   T28] audit: type=1400 audit(1760982480.404:582): avc:  denied  { ioctl } for  pid=1316 comm="syz.2.293" path="socket:[18702]" dev="sockfs" ino=18702 ioctlcmd=0x48e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  131.713492][ T1336] loop3: detected capacity change from 0 to 256
[  131.782405][ T1336] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  131.796051][ T1336] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  132.397653][  T569] Bluetooth: hci1: Frame reassembly failed (-90)
[  132.444788][ T1347] loop3: detected capacity change from 0 to 256
[  132.466592][ T1347] exfat: Deprecated parameter 'utf8'
[  132.490954][ T1347] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  132.506797][   T28] audit: type=1326 audit(1760982481.534:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  132.884233][ T1352] SELinux: security_context_str_to_sid () failed with errno=-22
[  132.917584][    T8] Bluetooth: hci2: Frame reassembly failed (-90)
[  132.926579][    T8] Bluetooth: hci2: Frame reassembly failed (-84)
[  132.947408][   T28] audit: type=1326 audit(1760982481.534:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.065207][   T28] audit: type=1326 audit(1760982481.544:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.099704][   T28] audit: type=1326 audit(1760982481.544:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.123066][   T28] audit: type=1326 audit(1760982481.544:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.146700][   T28] audit: type=1326 audit(1760982481.544:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.169997][   T28] audit: type=1326 audit(1760982481.564:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.193263][   T28] audit: type=1326 audit(1760982481.564:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.216599][   T28] audit: type=1326 audit(1760982481.574:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.239893][   T28] audit: type=1326 audit(1760982481.574:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1346 comm="syz.3.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d5b38efc9 code=0x7ffc0000
[  133.418245][ T1350] Bluetooth: hci0: command 0x1003 tx timeout
[  133.528333][  T610] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  133.558280][   T60] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  133.678573][ T1317] Bluetooth: hci0: Opcode 0x080f failed: -22
[  133.740446][   T60] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.765391][   T60] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  133.829277][   T60] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  133.874692][   T60] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.000567][   T60] usb 1-1: config 0 descriptor??
[  134.096210][ T1360] loop2: detected capacity change from 0 to 512
[  134.251077][   T45] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  134.314172][ T1360] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  134.331526][ T1360] EXT4-fs (loop2): orphan cleanup on readonly fs
[  134.357347][ T1360] EXT4-fs warning (device loop2): ext4_enable_quotas:7055: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  134.386866][ T1360] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  134.395823][ T1360] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #13: comm syz.2.306: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  134.414039][ T1360] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.306: couldn't read orphan inode 13 (err -117)
[  134.426260][ T1360] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  134.457744][  T287] EXT4-fs (loop2): unmounting filesystem.
[  134.499770][   T60] kovaplus 0003:1E7D:2D50.0002: item fetching failed at offset 1/5
[  134.507905][   T60] kovaplus 0003:1E7D:2D50.0002: parse failed
[  134.514197][   T60] kovaplus: probe of 0003:1E7D:2D50.0002 failed with error -22
[  134.613944][ T1376] loop3: detected capacity change from 0 to 256
[  134.623363][ T1376] exfat: Unknown parameter 'pcr'
[  134.802039][   T60] usb 1-1: USB disconnect, device number 3
[  134.858366][  T547] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  135.579754][ T1382] loop2: detected capacity change from 0 to 256
[  135.612679][ T1382] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  135.626571][ T1382] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  135.738199][    C1] ==================================================================
[  135.746322][    C1] BUG: KASAN: use-after-free in __run_timers+0x32b/0x9a0
[  135.753402][    C1] Write of size 8 at addr ffff88810e3b8a00 by task syz.1.313/1380
[  135.761486][    C1] 
[  135.763822][    C1] CPU: 1 PID: 1380 Comm: syz.1.313 Not tainted syzkaller #0
[  135.771122][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  135.781209][    C1] Call Trace:
[  135.784513][    C1]  <IRQ>
[  135.787374][    C1]  __dump_stack+0x21/0x24
[  135.791728][    C1]  dump_stack_lvl+0xee/0x150
[  135.796338][    C1]  ? __cfi_dump_stack_lvl+0x8/0x8
[  135.801392][    C1]  ? update_rq_clock+0x536/0x5c0
[  135.806354][    C1]  ? __run_timers+0x32b/0x9a0
[  135.811036][    C1]  print_address_description+0x71/0x200
[  135.816586][    C1]  print_report+0x4a/0x60
[  135.820915][    C1]  kasan_report+0x122/0x150
[  135.825413][    C1]  ? __run_timers+0x32b/0x9a0
[  135.830131][    C1]  __asan_report_store8_noabort+0x17/0x20
[  135.835843][    C1]  __run_timers+0x32b/0x9a0
[  135.840350][    C1]  ? sched_clock+0x9/0x10
[  135.844676][    C1]  ? calc_index+0x200/0x200
[  135.849176][    C1]  ? __kasan_check_read+0x11/0x20
[  135.854190][    C1]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  135.859824][    C1]  run_timer_softirq+0x6a/0xf0
[  135.864674][    C1]  handle_softirqs+0x1d7/0x600
[  135.869445][    C1]  ? irqtime_account_irq+0xc4/0x240
[  135.874750][    C1]  __irq_exit_rcu+0x52/0xf0
[  135.879435][    C1]  irq_exit_rcu+0x9/0x10
[  135.883688][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  135.889347][    C1]  </IRQ>
[  135.892296][    C1]  <TASK>
[  135.895298][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  135.901332][    C1] RIP: 0010:finish_task_switch+0x173/0x7b0
[  135.907147][    C1] Code: 80 3c 2b 00 74 08 4c 89 f7 e8 79 0c 68 00 4d 8b 2e 4d 85 ed 0f 85 cd 00 00 00 4c 89 e7 e8 e5 9b a7 03 fb 49 8d 9f 48 0b 00 00 <48> 89 d8 48 c1 e8 03 49 bd 00 00 00 00 00 fc ff df 42 0f b6 04 28
[  135.926865][    C1] RSP: 0018:ffffc90000dd7200 EFLAGS: 00000282
[  135.932951][    C1] RAX: 0000000080000001 RBX: ffff888111b24808 RCX: 0000000000000000
[  135.940926][    C1] RDX: 0000000000000001 RSI: ffffffff85aa1140 RDI: 00000000ffffffff
[  135.948984][    C1] RBP: ffffc90000dd7250 R08: dffffc0000000000 R09: ffffed1027177001
[  135.956953][    C1] R10: ffffed1027177001 R11: 1ffff11027177000 R12: ffff8881f7137d80
[  135.964921][    C1] R13: 0000000000000000 R14: ffff8881f71388e0 R15: ffff888111b23cc0
[  135.972895][    C1]  ? __switch_to_asm+0x3a/0x60
[  135.977756][    C1]  __schedule+0xb8f/0x14e0
[  135.982168][    C1]  ? __cfi_preempt_schedule_irq+0x10/0x10
[  135.987886][    C1]  ? release_firmware_map_entry+0x194/0x194
[  135.993770][    C1]  ? sysvec_reschedule_ipi+0x78/0x80
[  135.999056][    C1]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  136.004694][    C1]  preempt_schedule_irq+0x9b/0x110
[  136.009892][    C1]  ? __cfi_preempt_schedule_irq+0x10/0x10
[  136.015635][    C1]  ? update_stack_state+0xed/0x480
[  136.020847][    C1]  raw_irqentry_exit_cond_resched+0x29/0x30
[  136.026735][    C1]  irqentry_exit+0x37/0x40
[  136.031151][    C1]  sysvec_reschedule_ipi+0x78/0x80
[  136.036261][    C1]  asm_sysvec_reschedule_ipi+0x1b/0x20
[  136.041803][    C1] RIP: 0010:is_bpf_text_address+0xf7/0x190
[  136.047621][    C1] Code: 4d 8b 3f 4c 89 ff 48 89 de e8 05 96 f1 ff 49 39 df 73 53 e8 ab 93 f1 ff b8 08 00 00 00 49 bc 00 00 00 00 00 fc ff df 49 01 c6 <4c> 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 d3 02 36 00
[  136.067232][    C1] RSP: 0000:ffffc90000dd7500 EFLAGS: 00000282
[  136.073304][    C1] RAX: 0000000000000010 RBX: 0000000000000000 RCX: 0000000000080000
[  136.081272][    C1] RDX: ffffc90001289000 RSI: 00000000000024c8 RDI: 00000000000024c9
[  136.089238][    C1] RBP: ffffc90000dd7530 R08: ffffc90000dd7670 R09: ffffc90000dd7668
[  136.097205][    C1] R10: 000000000000000b R11: 1ffff920001baeb5 R12: dffffc0000000000
[  136.105176][    C1] R13: 0000000000000000 R14: ffff8881306c8310 R15: ffffffffa000097c
[  136.113234][    C1]  ? 0xffffffffa000097c
[  136.117397][    C1]  kernel_text_address+0xa0/0xd0
[  136.122333][    C1]  __kernel_text_address+0xd/0x30
[  136.127449][    C1]  unwind_get_return_address+0x4d/0x90
[  136.133054][    C1]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[  136.139207][    C1]  arch_stack_walk+0xfc/0x150
[  136.143890][    C1]  stack_trace_save+0x98/0xe0
[  136.148562][    C1]  ? __cfi_stack_trace_save+0x10/0x10
[  136.153936][    C1]  ? memset+0x35/0x40
[  136.157912][    C1]  save_stack+0xf3/0x1e0
[  136.162158][    C1]  ? sched_clock+0x9/0x10
[  136.166499][    C1]  ? __reset_page_owner+0x190/0x190
[  136.171694][    C1]  ? post_alloc_hook+0x1f5/0x210
[  136.176628][    C1]  ? prep_new_page+0x1c/0x110
[  136.181302][    C1]  ? get_page_from_freelist+0x2c7b/0x2cf0
[  136.187023][    C1]  ? __alloc_pages+0x1c3/0x450
[  136.191786][    C1]  ? bpf_ringbuf_alloc+0x1b5/0x4c0
[  136.196902][    C1]  ? ringbuf_map_alloc+0x1cb/0x2f0
[  136.202016][    C1]  ? map_create+0x49c/0xd80
[  136.206537][    C1]  ? __sys_bpf+0x30b/0x780
[  136.210947][    C1]  ? __x64_sys_bpf+0x7c/0x90
[  136.215540][    C1]  ? x64_sys_call+0x488/0x9a0
[  136.220218][    C1]  ? do_syscall_64+0x4c/0xa0
[  136.224801][    C1]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  136.230874][    C1]  ? __set_page_owner_handle+0x3c7/0x410
[  136.236506][    C1]  __set_page_owner+0x1f/0x60
[  136.241204][    C1]  post_alloc_hook+0x1f5/0x210
[  136.245966][    C1]  prep_new_page+0x1c/0x110
[  136.250470][    C1]  get_page_from_freelist+0x2c7b/0x2cf0
[  136.256012][    C1]  ? release_firmware_map_entry+0x194/0x194
[  136.261902][    C1]  ? __kasan_check_read+0x11/0x20
[  136.266925][    C1]  ? __alloc_pages+0x450/0x450
[  136.271712][    C1]  ? __cfi_gfp_zone+0x10/0x10
[  136.276384][    C1]  __alloc_pages+0x1c3/0x450
[  136.280971][    C1]  ? __cfi___alloc_pages+0x10/0x10
[  136.286097][    C1]  bpf_ringbuf_alloc+0x1b5/0x4c0
[  136.291133][    C1]  ringbuf_map_alloc+0x1cb/0x2f0
[  136.296077][    C1]  map_create+0x49c/0xd80
[  136.300402][    C1]  __sys_bpf+0x30b/0x780
[  136.304638][    C1]  ? bpf_link_show_fdinfo+0x320/0x320
[  136.310006][    C1]  ? __kasan_check_write+0x14/0x20
[  136.315139][    C1]  ? fpregs_restore_userregs+0x128/0x260
[  136.320765][    C1]  __x64_sys_bpf+0x7c/0x90
[  136.325178][    C1]  x64_sys_call+0x488/0x9a0
[  136.329675][    C1]  do_syscall_64+0x4c/0xa0
[  136.334085][    C1]  ? clear_bhb_loop+0x30/0x80
[  136.338767][    C1]  ? clear_bhb_loop+0x30/0x80
[  136.343451][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  136.349340][    C1] RIP: 0033:0x7f91d1f8efc9
[  136.353749][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.373361][    C1] RSP: 002b:00007f91d2ec2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  136.381783][    C1] RAX: ffffffffffffffda RBX: 00007f91d21e5fa0 RCX: 00007f91d1f8efc9
[  136.389761][    C1] RDX: 0000000000000050 RSI: 00002000000009c0 RDI: 0000000000000000
[  136.397726][    C1] RBP: 00007f91d2011f91 R08: 0000000000000000 R09: 0000000000000000
[  136.405691][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.413657][    C1] R13: 00007f91d21e6038 R14: 00007f91d21e5fa0 R15: 00007ffd1d95b9b8
[  136.421636][    C1]  </TASK>
[  136.424660][    C1] 
[  136.427013][    C1] Allocated by task 1322:
[  136.431347][    C1]  kasan_set_track+0x4b/0x70
[  136.435955][    C1]  kasan_save_alloc_info+0x25/0x30
[  136.441080][    C1]  __kasan_kmalloc+0x95/0xb0
[  136.445677][    C1]  __kmalloc+0xb1/0x1e0
[  136.449837][    C1]  hci_alloc_dev_priv+0x27/0x1bd0
[  136.454863][    C1]  hci_uart_tty_ioctl+0x3d6/0xa20
[  136.459892][    C1]  tty_ioctl+0x8ef/0xc60
[  136.464142][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  136.468812][    C1]  __x64_sys_ioctl+0x7b/0x90
[  136.473406][    C1]  x64_sys_call+0x58b/0x9a0
[  136.477914][    C1]  do_syscall_64+0x4c/0xa0
[  136.482334][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  136.488282][    C1] 
[  136.490600][    C1] Freed by task 1317:
[  136.494575][    C1]  kasan_set_track+0x4b/0x70
[  136.499162][    C1]  kasan_save_free_info+0x31/0x50
[  136.504185][    C1]  ____kasan_slab_free+0x132/0x180
[  136.509298][    C1]  __kasan_slab_free+0x11/0x20
[  136.514093][    C1]  slab_free_freelist_hook+0xc2/0x190
[  136.519463][    C1]  __kmem_cache_free+0xb7/0x1b0
[  136.524308][    C1]  kfree+0x6f/0xf0
[  136.528027][    C1]  hci_release_dev+0x12a3/0x13b0
[  136.532962][    C1]  bt_host_release+0x82/0x90
[  136.537553][    C1]  device_release+0xa4/0x1d0
[  136.542140][    C1]  kobject_put+0x19d/0x280
[  136.546547][    C1]  put_device+0x1f/0x30
[  136.550717][    C1]  hci_dev_cmd+0x265/0x720
[  136.555134][    C1]  hci_sock_ioctl+0x41e/0x7f0
[  136.559811][    C1]  sock_do_ioctl+0x101/0x310
[  136.564404][    C1]  sock_ioctl+0x4d8/0x6e0
[  136.568729][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  136.573398][    C1]  __x64_sys_ioctl+0x7b/0x90
[  136.577978][    C1]  x64_sys_call+0x58b/0x9a0
[  136.582477][    C1]  do_syscall_64+0x4c/0xa0
[  136.586904][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  136.592791][    C1] 
[  136.595113][    C1] Last potentially related work creation:
[  136.600819][    C1]  kasan_save_stack+0x3a/0x60
[  136.605493][    C1]  __kasan_record_aux_stack+0xb6/0xc0
[  136.610867][    C1]  kasan_record_aux_stack_noalloc+0xb/0x10
[  136.616687][    C1]  insert_work+0x51/0x300
[  136.621020][    C1]  __queue_work+0x9b1/0xd30
[  136.625529][    C1]  queue_work_on+0xd2/0x140
[  136.630042][    C1]  __hci_cmd_sync_sk+0xa3e/0xcf0
[  136.634984][    C1]  hci_cmd_sync_status+0x53/0x120
[  136.640048][    C1]  hci_dev_cmd+0x628/0x720
[  136.644481][    C1]  hci_sock_ioctl+0x41e/0x7f0
[  136.649162][    C1]  sock_do_ioctl+0x101/0x310
[  136.653754][    C1]  sock_ioctl+0x4d8/0x6e0
[  136.658083][    C1]  __se_sys_ioctl+0x12f/0x1b0
[  136.662756][    C1]  __x64_sys_ioctl+0x7b/0x90
[  136.667345][    C1]  x64_sys_call+0x58b/0x9a0
[  136.671849][    C1]  do_syscall_64+0x4c/0xa0
[  136.676259][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  136.682158][    C1] 
[  136.684472][    C1] Second to last potentially related work creation:
[  136.691061][    C1]  kasan_save_stack+0x3a/0x60
[  136.695737][    C1]  __kasan_record_aux_stack+0xb6/0xc0
[  136.701109][    C1]  kasan_record_aux_stack_noalloc+0xb/0x10
[  136.706941][    C1]  insert_work+0x51/0x300
[  136.711276][    C1]  __queue_work+0x9b1/0xd30
[  136.715790][    C1]  queue_work_on+0xd2/0x140
[  136.720299][    C1]  hci_cmd_timeout+0x191/0x200
[  136.725077][    C1]  process_one_work+0x71f/0xc40
[  136.729919][    C1]  worker_thread+0xa29/0x11f0
[  136.734585][    C1]  kthread+0x281/0x320
[  136.738643][    C1]  ret_from_fork+0x1f/0x30
[  136.743084][    C1] 
[  136.745399][    C1] The buggy address belongs to the object at ffff88810e3b8000
[  136.745399][    C1]  which belongs to the cache kmalloc-8k of size 8192
[  136.759448][    C1] The buggy address is located 2560 bytes inside of
[  136.759448][    C1]  8192-byte region [ffff88810e3b8000, ffff88810e3ba000)
[  136.773421][    C1] 
[  136.775740][    C1] The buggy address belongs to the physical page:
[  136.782137][    C1] page:ffffea000438ee00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10e3b8
[  136.792377][    C1] head:ffffea000438ee00 order:3 compound_mapcount:0 compound_pincount:0
[  136.800690][    C1] flags: 0x4000000000010200(slab|head|zone=1)
[  136.806802][    C1] raw: 4000000000010200 ffffea000433ce00 dead000000000004 ffff888100043500
[  136.815378][    C1] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[  136.823948][    C1] page dumped because: kasan: bad access detected
[  136.830357][    C1] page_owner tracks the page as allocated
[  136.836062][    C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 731, tgid 726 (syz.4.115), ts 58753202914, free_ts 58356252027
[  136.858374][    C1]  post_alloc_hook+0x1f5/0x210
[  136.863139][    C1]  prep_new_page+0x1c/0x110
[  136.867641][    C1]  get_page_from_freelist+0x2c7b/0x2cf0
[  136.873269][    C1]  __alloc_pages+0x1c3/0x450
[  136.877858][    C1]  alloc_slab_page+0x6e/0xf0
[  136.882447][    C1]  new_slab+0x98/0x3d0
[  136.886521][    C1]  ___slab_alloc+0x6bd/0xb20
[  136.891110][    C1]  __slab_alloc+0x5e/0xa0
[  136.895453][    C1]  __kmem_cache_alloc_node+0x203/0x2c0
[  136.900909][    C1]  __kmalloc_node_track_caller+0xa0/0x1e0
[  136.906628][    C1]  krealloc+0x6f/0x110
[  136.910691][    C1]  copy_verifier_state+0x6bb/0xab0
[  136.915799][    C1]  push_stack+0x19b/0x4f0
[  136.920142][    C1]  do_check+0x9620/0xf060
[  136.924471][    C1]  do_check_common+0x11ae/0x1950
[  136.929410][    C1]  bpf_check+0x3de0/0x10ca0
[  136.933913][    C1] page last free stack trace:
[  136.938585][    C1]  free_unref_page_prepare+0x742/0x750
[  136.944046][    C1]  free_unref_page+0x8f/0x530
[  136.948724][    C1]  __free_pages+0x67/0x100
[  136.953139][    C1]  __free_slab+0xca/0x1a0
[  136.957470][    C1]  __unfreeze_partials+0x160/0x190
[  136.962582][    C1]  put_cpu_partial+0xa9/0x100
[  136.967257][    C1]  __slab_free+0x1c4/0x280
[  136.971673][    C1]  ___cache_free+0xbf/0xd0
[  136.976095][    C1]  qlist_free_all+0xc6/0x140
[  136.980765][    C1]  kasan_quarantine_reduce+0x14a/0x170
[  136.986216][    C1]  __kasan_slab_alloc+0x24/0x80
[  136.991063][    C1]  slab_post_alloc_hook+0x4f/0x2d0
[  136.996175][    C1]  kmem_cache_alloc+0x16e/0x330
[  137.001026][    C1]  getname_flags+0xb9/0x500
[  137.005526][    C1]  __se_sys_newfstatat+0xdf/0x380
[  137.010542][    C1]  __x64_sys_newfstatat+0x9b/0xb0
[  137.015577][    C1] 
[  137.017890][    C1] Memory state around the buggy address:
[  137.023520][    C1]  ffff88810e3b8900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  137.031574][    C1]  ffff88810e3b8980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  137.039637][    C1] >ffff88810e3b8a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  137.047700][    C1]                    ^
[  137.051784][    C1]  ffff88810e3b8a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  137.059839][    C1]  ffff88810e3b8b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  137.067910][    C1] ==================================================================
[  137.075982][    C1] Disabling lock debugging due to kernel taint
[  137.082206][    C1] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  137.093938][    C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  137.102378][    C1] CPU: 1 PID: 1380 Comm: syz.1.313 Tainted: G    B              syzkaller #0
[  137.111230][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  137.121551][    C1] RIP: 0010:__queue_work+0x575/0xd30
[  137.126956][    C1] Code: 39 2b 0f 84 b9 00 00 00 e8 a8 dc 28 00 4c 89 ff e8 70 db ac 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 cc 4b 6d 00 49 8b 7d 00 e8 53 d7
[  137.146557][    C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[  137.152619][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888111b23cc0
[  137.160584][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  137.168547][    C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[  137.176513][    C1] R10: ffffed1021c77139 R11: 1ffff11021c77139 R12: dffffc0000000000
[  137.184478][    C1] R13: 0000000000000000 R14: ffff88810e3b89c8 R15: 0000000000000008
[  137.192542][    C1] FS:  00007f91d2ec26c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  137.201502][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  137.208215][    C1] CR2: 0000000000000000 CR3: 00000001204b7000 CR4: 00000000003526a0
[  137.208298][  T291] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  137.216222][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  137.231666][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  137.239680][    C1] Call Trace:
[  137.242987][    C1]  <IRQ>
[  137.245877][    C1]  delayed_work_timer_fn+0x61/0x80
[  137.251000][    C1]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  137.256815][    C1]  call_timer_fn+0x46/0x2a0
[  137.261346][    C1]  ? __cfi_delayed_work_timer_fn+0x10/0x10
[  137.267161][    C1]  __run_timers+0x667/0x9a0
[  137.271671][    C1]  ? calc_index+0x200/0x200
[  137.276173][    C1]  ? __kasan_check_read+0x11/0x20
[  137.281230][    C1]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  137.286875][    C1]  run_timer_softirq+0x6a/0xf0
[  137.291738][    C1]  handle_softirqs+0x1d7/0x600
[  137.296586][    C1]  ? irqtime_account_irq+0xc4/0x240
[  137.301787][    C1]  __irq_exit_rcu+0x52/0xf0
[  137.306289][    C1]  irq_exit_rcu+0x9/0x10
[  137.310533][    C1]  sysvec_apic_timer_interrupt+0xa9/0xc0
[  137.316183][    C1]  </IRQ>
[  137.319111][    C1]  <TASK>
[  137.322037][    C1]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  137.328050][    C1] RIP: 0010:finish_task_switch+0x173/0x7b0
[  137.333871][    C1] Code: 80 3c 2b 00 74 08 4c 89 f7 e8 79 0c 68 00 4d 8b 2e 4d 85 ed 0f 85 cd 00 00 00 4c 89 e7 e8 e5 9b a7 03 fb 49 8d 9f 48 0b 00 00 <48> 89 d8 48 c1 e8 03 49 bd 00 00 00 00 00 fc ff df 42 0f b6 04 28
[  137.353485][    C1] RSP: 0018:ffffc90000dd7200 EFLAGS: 00000282
[  137.359554][    C1] RAX: 0000000080000001 RBX: ffff888111b24808 RCX: 0000000000000000
[  137.367550][    C1] RDX: 0000000000000001 RSI: ffffffff85aa1140 RDI: 00000000ffffffff
[  137.375517][    C1] RBP: ffffc90000dd7250 R08: dffffc0000000000 R09: ffffed1027177001
[  137.383485][    C1] R10: ffffed1027177001 R11: 1ffff11027177000 R12: ffff8881f7137d80
[  137.391643][    C1] R13: 0000000000000000 R14: ffff8881f71388e0 R15: ffff888111b23cc0
[  137.399812][    C1]  ? __switch_to_asm+0x3a/0x60
[  137.404589][    C1]  __schedule+0xb8f/0x14e0
[  137.409009][    C1]  ? __cfi_preempt_schedule_irq+0x10/0x10
[  137.414734][    C1]  ? release_firmware_map_entry+0x194/0x194
[  137.420635][    C1]  ? sysvec_reschedule_ipi+0x78/0x80
[  137.425922][    C1]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  137.431568][    C1]  preempt_schedule_irq+0x9b/0x110
[  137.436690][    C1]  ? __cfi_preempt_schedule_irq+0x10/0x10
[  137.442595][    C1]  ? update_stack_state+0xed/0x480
[  137.447714][    C1]  raw_irqentry_exit_cond_resched+0x29/0x30
[  137.453616][    C1]  irqentry_exit+0x37/0x40
[  137.458040][    C1]  sysvec_reschedule_ipi+0x78/0x80
[  137.459858][  T291] usb 5-1: config index 0 descriptor too short (expected 60911, got 18)
[  137.463172][    C1]  asm_sysvec_reschedule_ipi+0x1b/0x20
[  137.471541][  T291] usb 5-1: config 15 has too many interfaces: 102, using maximum allowed: 32
[  137.477000][    C1] RIP: 0010:is_bpf_text_address+0xf7/0x190
[  137.487927][  T291] usb 5-1: config 15 has an invalid descriptor of length 224, skipping remainder of the config
[  137.491734][    C1] Code: 4d 8b 3f 4c 89 ff 48 89 de e8 05 96 f1 ff 49 39 df 73 53 e8 ab 93 f1 ff b8 08 00 00 00 49 bc 00 00 00 00 00 fc ff df 49 01 c6 <4c> 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 d3 02 36 00
[  137.491756][    C1] RSP: 0000:ffffc90000dd7500 EFLAGS: 00000282
[  137.527900][    C1] RAX: 0000000000000010 RBX: 0000000000000000 RCX: 0000000000080000
[  137.535888][    C1] RDX: ffffc90001289000 RSI: 00000000000024c8 RDI: 00000000000024c9
[  137.543903][    C1] RBP: ffffc90000dd7530 R08: ffffc90000dd7670 R09: ffffc90000dd7668
[  137.551883][    C1] R10: 000000000000000b R11: 1ffff920001baeb5 R12: dffffc0000000000
[  137.559861][    C1] R13: 0000000000000000 R14: ffff8881306c8310 R15: ffffffffa000097c
[  137.567846][    C1]  ? 0xffffffffa000097c
[  137.572010][    C1]  kernel_text_address+0xa0/0xd0
[  137.576961][    C1]  __kernel_text_address+0xd/0x30
[  137.582013][    C1]  unwind_get_return_address+0x4d/0x90
[  137.587481][    C1]  ? __cfi_stack_trace_consume_entry+0x10/0x10
[  137.593662][    C1]  arch_stack_walk+0xfc/0x150
[  137.598354][    C1]  stack_trace_save+0x98/0xe0
[  137.603047][    C1]  ? __cfi_stack_trace_save+0x10/0x10
[  137.608429][    C1]  ? memset+0x35/0x40
[  137.612421][    C1]  save_stack+0xf3/0x1e0
[  137.616669][    C1]  ? sched_clock+0x9/0x10
[  137.621039][    C1]  ? __reset_page_owner+0x190/0x190
[  137.626242][    C1]  ? post_alloc_hook+0x1f5/0x210
[  137.631185][    C1]  ? prep_new_page+0x1c/0x110
[  137.635875][    C1]  ? get_page_from_freelist+0x2c7b/0x2cf0
[  137.641609][    C1]  ? __alloc_pages+0x1c3/0x450
[  137.646384][    C1]  ? bpf_ringbuf_alloc+0x1b5/0x4c0
[  137.651510][    C1]  ? ringbuf_map_alloc+0x1cb/0x2f0
[  137.656633][    C1]  ? map_create+0x49c/0xd80
[  137.661151][    C1]  ? __sys_bpf+0x30b/0x780
[  137.665567][    C1]  ? __x64_sys_bpf+0x7c/0x90
[  137.670344][    C1]  ? x64_sys_call+0x488/0x9a0
[  137.675024][    C1]  ? do_syscall_64+0x4c/0xa0
[  137.679628][    C1]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  137.685708][    C1]  ? __set_page_owner_handle+0x3c7/0x410
[  137.691344][    C1]  __set_page_owner+0x1f/0x60
[  137.696050][    C1]  post_alloc_hook+0x1f5/0x210
[  137.700823][    C1]  prep_new_page+0x1c/0x110
[  137.705333][    C1]  get_page_from_freelist+0x2c7b/0x2cf0
[  137.710900][    C1]  ? release_firmware_map_entry+0x194/0x194
[  137.716806][    C1]  ? __kasan_check_read+0x11/0x20
[  137.721840][    C1]  ? __alloc_pages+0x450/0x450
[  137.726612][    C1]  ? __cfi_gfp_zone+0x10/0x10
[  137.731314][    C1]  __alloc_pages+0x1c3/0x450
[  137.735917][    C1]  ? __cfi___alloc_pages+0x10/0x10
[  137.741057][    C1]  bpf_ringbuf_alloc+0x1b5/0x4c0
[  137.746007][    C1]  ringbuf_map_alloc+0x1cb/0x2f0
[  137.750956][    C1]  map_create+0x49c/0xd80
[  137.755300][    C1]  __sys_bpf+0x30b/0x780
[  137.759565][    C1]  ? bpf_link_show_fdinfo+0x320/0x320
[  137.764941][    C1]  ? __kasan_check_write+0x14/0x20
[  137.770111][    C1]  ? fpregs_restore_userregs+0x128/0x260
[  137.775754][    C1]  __x64_sys_bpf+0x7c/0x90
[  137.780186][    C1]  x64_sys_call+0x488/0x9a0
[  137.784699][    C1]  do_syscall_64+0x4c/0xa0
[  137.789119][    C1]  ? clear_bhb_loop+0x30/0x80
[  137.793807][    C1]  ? clear_bhb_loop+0x30/0x80
[  137.798491][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  137.804389][    C1] RIP: 0033:0x7f91d1f8efc9
[  137.808902][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.828514][    C1] RSP: 002b:00007f91d2ec2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  137.836934][    C1] RAX: ffffffffffffffda RBX: 00007f91d21e5fa0 RCX: 00007f91d1f8efc9
[  137.844914][    C1] RDX: 0000000000000050 RSI: 00002000000009c0 RDI: 0000000000000000
[  137.852918][    C1] RBP: 00007f91d2011f91 R08: 0000000000000000 R09: 0000000000000000
[  137.860900][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  137.868871][    C1] R13: 00007f91d21e6038 R14: 00007f91d21e5fa0 R15: 00007ffd1d95b9b8
[  137.876851][    C1]  </TASK>
[  137.879887][    C1] Modules linked in:
[  137.883817][    C1] ---[ end trace 0000000000000000 ]---
[  137.889273][    C1] RIP: 0010:__queue_work+0x575/0xd30
[  137.894572][    C1] Code: 39 2b 0f 84 b9 00 00 00 e8 a8 dc 28 00 4c 89 ff e8 70 db ac 03 49 bc 00 00 00 00 00 fc ff df 4c 8b 6d d0 4c 89 e8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ef e8 cc 4b 6d 00 49 8b 7d 00 e8 53 d7
[  137.914193][    C1] RSP: 0018:ffffc900001b0c70 EFLAGS: 00010046
[  137.920356][    C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff888111b23cc0
[  137.928335][    C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[  137.936347][    C1] RBP: ffffc900001b0d08 R08: fffffffffffffffb R09: 0000000000000007
[  137.944333][    C1] R10: ffffed1021c77139 R11: 1ffff11021c77139 R12: dffffc0000000000
[  137.952308][    C1] R13: 0000000000000000 R14: ffff88810e3b89c8 R15: 0000000000000008
[  137.960285][    C1] FS:  00007f91d2ec26c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  137.969223][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  137.975806][    C1] CR2: 0000000000000000 CR3: 00000001204b7000 CR4: 00000000003526a0
[  137.983784][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  137.991760][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  137.999734][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[  138.007238][    C1] Kernel Offset: disabled
[  138.011565][    C1] Rebooting in 86400 seconds..