last executing test programs:

2.322642965s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x9, 0x5, 0x1080}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1, 0xb, 0x103ba, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r1, &(0x7f0000000280), 0x0}, 0x20)

2.280725302s ago: executing program 3:
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0xfff}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
socket$igmp(0x2, 0x3, 0x2)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
sendto$packet(r5, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)

1.815532625s ago: executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
utimes(0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2800000012006763"], 0x28}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020307b1af8ff0000d59d320f00000000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffbf00c}, {0x6}]}, 0x10)
sendmmsg$unix(r5, &(0x7f0000001900)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="f58dacff", 0x8df5}], 0x1}}], 0x1, 0x0)
r7 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={@map=r8, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r4}, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2, 0x1000}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000001007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000040)=@o_path={&(0x7f0000000000)='./file0\x00', r10, 0x4000, r10}, 0x18)
r11 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet(r11, &(0x7f0000002f80)=[{{&(0x7f0000000080)={0x2, 0x4e23, @remote}, 0x10, 0x0}}, {{&(0x7f0000000300)={0x2, 0x4e23, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000580)=[@ip_ttl={{0x14, 0x0, 0x34}}], 0x18}}], 0x2, 0x0)
sync()
r12 = openat2$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000340)={0x20800, 0x50, 0x5}, 0x18)
open_tree(r12, &(0x7f0000000380)='./file0\x00', 0x8000)

1.65748079s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x9, 0x5, 0x1080}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1, 0xb, 0x103ba, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r1, &(0x7f0000000280), 0x0}, 0x20)

1.641026552s ago: executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
fgetxattr(r1, &(0x7f0000000000)=ANY=[], 0x0, 0x0)

1.606226158s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010700000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0), &(0x7f0000000300), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x10)
setitimer(0x2, 0x0, 0x0)

1.500504684s ago: executing program 2:
socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xfffffffffffffd74, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
personality(0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cgroup.controllers\x00', 0x100002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r3, &(0x7f0000000380), 0x20000000}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x0, 0x41, 0x0, 0x1, 0x1}, 0x48)

1.357635747s ago: executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000a80)={<r0=>0xffffffffffffffff})
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setresgid(r3, 0x0, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r4, 0x0)
r5 = getpgid(0x0)
sendmmsg$unix(r0, &(0x7f0000008f00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=[@cred={{0x1c, 0x1, 0x2, {r5, r4}}}], 0x20}}], 0x1, 0x0)

954.65567ms ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00007fd000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f00008d7000/0x2000)=nil)
mprotect(&(0x7f000060d000/0x3000)=nil, 0x3000, 0x0)
madvise(&(0x7f00003c1000/0x1000)=nil, 0xdfc3efff, 0x14)

668.093945ms ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000380)={0x0, <r2=>0x0})
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x24, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x17\x00'}, @typed={0x8, 0xa, 0x0, 0x0, @pid=r2}]}, 0x24}}, 0x0)

617.035773ms ago: executing program 4:
ftruncate(0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x51}}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')

600.325706ms ago: executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc000ff}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000003c0))
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000140)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8937, &(0x7f00000014c0)={'wg1\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000061123000000000009500000800000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000200)={0x71e5b314})

580.535179ms ago: executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
utimes(0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2800000012006763"], 0x28}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020307b1af8ff0000d59d320f00000000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffbf00c}, {0x6}]}, 0x10)
sendmmsg$unix(r5, &(0x7f0000001900)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="f58dacff", 0x8df5}], 0x1}}], 0x1, 0x0)
r7 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={@map=r8, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r4}, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2, 0x1000}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000001007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000040)=@o_path={&(0x7f0000000000)='./file0\x00', r10, 0x4000, r10}, 0x18)
r11 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet(r11, &(0x7f0000002f80)=[{{&(0x7f0000000080)={0x2, 0x4e23, @remote}, 0x10, 0x0}}, {{&(0x7f0000000300)={0x2, 0x4e23, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000580)=[@ip_ttl={{0x14, 0x0, 0x34}}], 0x18}}], 0x2, 0x0)
sync()
r12 = openat2$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000340)={0x20800, 0x50, 0x5}, 0x18)
open_tree(r12, &(0x7f0000000380)='./file0\x00', 0x8000)

561.324431ms ago: executing program 3:
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18030000fffffffb000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000d000000b7020000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='ext4_free_blocks\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000100), 0x1001)
ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc, 0x8}})

529.811247ms ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xf1, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000103c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f000000e3c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r4, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r4, r1)
fdatasync(r4)

426.053553ms ago: executing program 4:
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x18, &(0x7f0000000140)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}, @printk={@u}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

413.716205ms ago: executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCFLSH(r0, 0x540b, 0x0)

397.563497ms ago: executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="66b8b9000f00d8b8010000000f23c00f21f835020001000f23f8b9680200000f320f20e035080000000f22e0360f303e2664660f3880480db9740a0000b8679d0000ba000000000f300fc77f0066b8db000f00d80f015f00", 0x58}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000})
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

350.940065ms ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001100)=ANY=[@ANYBLOB="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"/849], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x86, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "09f0c6564b6ac6413304000000d9f8f22f81ae81c2bd7edd9aeaf6fd91c25227", "60326eacce5de87bf00be86b3ebbb957", {"fcc68dd1b5242bdc6466eba8cab8d7b2", "05fef0e9b077b6c6639938f9db7c621b"}}}}}}}, 0x0)

340.639326ms ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='ext4_drop_inode\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='ext4_drop_inode\x00', r2}, 0x10)
unlink(&(0x7f0000000140)='./cgroup\x00')

322.679039ms ago: executing program 1:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x3, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000020000000000000000000000850000008700000095"], &(0x7f0000000000)='GPL\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="9e36d448b388dd965f7a3312779a", 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50)

318.01522ms ago: executing program 0:
r0 = inotify_init()
ppoll(&(0x7f0000000240)=[{r0}], 0x1, &(0x7f0000000a40)={0x0, 0x3938700}, 0x0, 0x0)

309.624211ms ago: executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv6_getaddrlabel={0x38, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_LABEL={0x1c}, @IFAL_ADDRESS={0x14, 0x1, @private0}]}, 0x38}}, 0x0)

295.363443ms ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

222.680335ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
inotify_init1(0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

205.028957ms ago: executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r2}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000840)=ANY=[@ANYBLOB="1500000065ffff017f00000800395032303030"], 0x15)
r5 = dup(r4)
write$FUSE_BMAP(r5, &(0x7f00000003c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000580)=ANY=[@ANYBLOB="a8"], 0xa8)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

169.546953ms ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x9, 0x5, 0x1080}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1, 0xb, 0x103ba, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r1, &(0x7f0000000280), 0x0}, 0x20)

87.711256ms ago: executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000a00)=ANY=[@ANYBLOB="6c00000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="000000007243060008002e"], 0x6c}}, 0x0)

19.176737ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000040)='sockfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r2, 0x3, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0xffffffffffffffff, r3)

0s ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r0, &(0x7f0000000000), 0x0}, 0x20)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x88002, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
renameat2(r3, &(0x7f0000000380)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, 0x0, 0x2)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c340000000000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
syz_usb_control_io$hid(r4, &(0x7f00000001c0)={0x24, &(0x7f0000000dc0)=ANY=[@ANYBLOB="00020c0000000c0002"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r4, 0x0, &(0x7f0000000080)={0x7b, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x20000000000000df, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io(r4, 0x0, &(0x7f0000000900)={0x84, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x20, 0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r4, 0x0, &(0x7f00000009c0)={0x84, 0x0, 0x0, 0x0, &(0x7f00000005c0)={0x20, 0x0, 0x4, {0x7}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_disconnect(0xffffffffffffffff)
socket$pppl2tp(0x18, 0x1, 0x1)

kernel console output (not intermixed with test programs):

1216] F2FS-fs (loop2): invalid crc value
[   52.909490][ T1216] F2FS-fs (loop2): Found nat_bits in checkpoint
[   52.948233][ T1216] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   52.955142][ T1216] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   52.986892][  T334] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   52.995822][  T334] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   53.008713][  T323] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   53.139238][  T349] keytouch 0003:0926:3333.0007: fixing up Keytouch IEC report descriptor
[   53.151144][  T349] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0007/input/input6
[   53.209070][ T1231] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=1231 comm=syz-executor.2
[   53.231009][  T349] keytouch 0003:0926:3333.0007: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[   53.258694][  T323] usb 5-1: Using ep0 maxpacket: 8
[   53.349956][   T25] usb 2-1: USB disconnect, device number 3
[   53.360421][ T1253]  loop3: p2 p3 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2
[   53.360502][ T1253] loop3: p2 start 8388612 is beyond EOD, 
[   53.448765][  T323] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[   53.449044][ T1253] truncated
[   53.454326][  T323] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   53.454339][  T323] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   53.454363][  T323] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[   53.466500][ T1253] loop3: p4 size 32937 extends beyond EOD, truncated
[   53.505079][  T323] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[   53.505572][ T1253] loop3: p5 start 8388612 is beyond EOD, truncated
[   53.518745][  T323] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[   53.521371][ T1253] loop3: p6 size 32937 extends beyond EOD, truncated
[   53.536326][  T323] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   53.541404][ T1253] loop3: p7 start 8388612 is beyond EOD, truncated
[   53.555483][ T1253] loop3: p8 size 32937 extends beyond EOD, truncated
[   53.555533][  T323] usb 5-1: config 0 descriptor??
[   53.562654][ T1253] loop3: p9 start 8388612 is beyond EOD, truncated
[   53.573396][ T1253] loop3: p10 size 32937 extends beyond EOD, truncated
[   53.581136][ T1253] loop3: p11 start 8388612 is beyond EOD, truncated
[   53.588807][ T1210] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   53.597446][ T1253] loop3: p12 size 32937 extends beyond EOD, truncated
[   53.606483][ T1253] loop3: p13 start 8388612 is beyond EOD, truncated
[   53.613079][ T1253] loop3: p14 size 32937 extends beyond EOD, truncated
[   53.620256][ T1253] loop3: p15 start 8388612 is beyond EOD, truncated
[   53.626799][ T1253] loop3: p16 size 32937 extends beyond EOD, truncated
[   53.633938][ T1253] loop3: p17 start 8388612 is beyond EOD, truncated
[   53.640549][ T1253] loop3: p18 size 32937 extends beyond EOD, truncated
[   53.647655][ T1253] loop3: p19 start 8388612 is beyond EOD, truncated
[   53.654469][ T1253] loop3: p20 size 32937 extends beyond EOD, truncated
[   53.661578][ T1253] loop3: p21 start 8388612 is beyond EOD, truncated
[   53.670696][ T1253] loop3: p22 size 32937 extends beyond EOD, truncated
[   53.677855][ T1253] loop3: p23 start 8388612 is beyond EOD, truncated
[   53.684560][ T1253] loop3: p24 size 32937 extends beyond EOD, truncated
[   53.691610][ T1253] loop3: p25 start 8388612 is beyond EOD, truncated
[   53.698150][ T1253] loop3: p26 size 32937 extends beyond EOD, truncated
[   53.705289][ T1253] loop3: p27 start 8388612 is beyond EOD, truncated
[   53.711791][ T1253] loop3: p28 size 32937 extends beyond EOD, truncated
[   53.719262][ T1253] loop3: p29 start 8388612 is beyond EOD, truncated
[   53.725735][ T1253] loop3: p30 size 32937 extends beyond EOD, truncated
[   53.732774][ T1253] loop3: p31 start 8388612 is beyond EOD, truncated
[   53.739276][ T1253] loop3: p32 size 32937 extends beyond EOD, truncated
[   53.746288][ T1253] loop3: p33 start 8388612 is beyond EOD, truncated
[   53.752793][ T1253] loop3: p34 size 32937 extends beyond EOD, truncated
[   53.759900][ T1253] loop3: p35 start 8388612 is beyond EOD, truncated
[   53.766369][ T1253] loop3: p36 size 32937 extends beyond EOD, truncated
[   53.773530][ T1253] loop3: p37 start 8388612 is beyond EOD, truncated
[   53.780013][ T1253] loop3: p38 size 32937 extends beyond EOD, truncated
[   53.787025][ T1253] loop3: p39 start 8388612 is beyond EOD, truncated
[   53.793554][ T1253] loop3: p40 size 32937 extends beyond EOD, truncated
[   53.800669][ T1253] loop3: p41 start 8388612 is beyond EOD, truncated
[   53.807150][ T1253] loop3: p42 size 32937 extends beyond EOD, truncated
[   53.814219][ T1253] loop3: p43 start 8388612 is beyond EOD, truncated
[   53.828721][ T1253] loop3: p44 size 32937 extends beyond EOD, truncated
[   53.837832][ T1253] loop3: p45 start 8388612 is beyond EOD, truncated
[   53.844820][ T1253] loop3: p46 size 32937 extends beyond EOD, truncated
[   53.853110][   T25] usb 5-1: USB disconnect, device number 4
[   53.859935][ T1253] loop3: p47 start 8388612 is beyond EOD, truncated
[   53.867076][ T1253] loop3: p48 size 32937 extends beyond EOD, truncated
[   53.876643][ T1253] loop3: p49 start 8388612 is beyond EOD, truncated
[   53.883270][ T1253] loop3: p50 size 32937 extends beyond EOD, truncated
[   53.978887][ T1253] loop3: p51 start 8388612 is beyond EOD, truncated
[   53.985422][ T1253] loop3: p52 size 32937 extends beyond EOD, truncated
[   54.001205][ T1253] loop3: p53 start 8388612 is beyond EOD, truncated
[   54.389215][ T1253] loop3: p54 size 32937 extends beyond EOD, truncated
[   54.424845][ T1253] loop3: p55 start 8388612 is beyond EOD, truncated
[   54.439739][ T1253] loop3: p56 size 32937 extends beyond EOD, truncated
[   54.454353][ T1253] loop3: p57 start 8388612 is beyond EOD, truncated
[   54.468567][ T1253] loop3: p58 size 32937 extends beyond EOD, truncated
[   54.476214][ T1253] loop3: p59 start 8388612 is beyond EOD, truncated
[   54.482937][ T1253] loop3: p60 size 32937 extends beyond EOD, truncated
[   54.490819][ T1253] loop3: p61 start 8388612 is beyond EOD, truncated
[   54.497329][ T1253] loop3: p62 size 32937 extends beyond EOD, truncated
[   54.506279][ T1253] loop3: p63 start 8388612 is beyond EOD, truncated
[   54.512989][ T1253] loop3: p64 size 32937 extends beyond EOD, truncated
[   54.520316][ T1253] loop3: p65 start 8388612 is beyond EOD, truncated
[   54.526965][ T1253] loop3: p66 size 32937 extends beyond EOD, truncated
[   54.534136][ T1253] loop3: p67 start 8388612 is beyond EOD, truncated
[   54.541701][ T1253] loop3: p68 size 32937 extends beyond EOD, truncated
[   54.548714][ T1253] loop3: p69 start 8388612 is beyond EOD, truncated
[   54.555124][ T1253] loop3: p70 size 32937 extends beyond EOD, truncated
[   54.562293][ T1253] loop3: p71 start 8388612 is beyond EOD, truncated
[   54.568732][ T1253] loop3: p72 size 32937 extends beyond EOD, truncated
[   54.575743][ T1253] loop3: p73 start 8388612 is beyond EOD, truncated
[   54.582294][ T1253] loop3: p74 size 32937 extends beyond EOD, truncated
[   54.589526][ T1253] loop3: p75 start 8388612 is beyond EOD, truncated
[   54.597345][ T1253] loop3: p76 size 32937 extends beyond EOD, truncated
[   54.609945][ T1253] loop3: p77 start 8388612 is beyond EOD, truncated
[   54.616356][ T1253] loop3: p78 size 32937 extends beyond EOD, truncated
[   54.623549][ T1253] loop3: p79 start 8388612 is beyond EOD, truncated
[   54.629997][ T1253] loop3: p80 size 32937 extends beyond EOD, truncated
[   54.636965][ T1253] loop3: p81 start 8388612 is beyond EOD, truncated
[   54.643718][ T1253] loop3: p82 size 32937 extends beyond EOD, truncated
[   54.652926][ T1253] loop3: p83 start 8388612 is beyond EOD, truncated
[   54.660009][ T1253] loop3: p84 size 32937 extends beyond EOD, truncated
[   54.665178][ T1280] netlink: 165 bytes leftover after parsing attributes in process `syz-executor.2'.
[   54.667402][ T1253] loop3: p85 start 8388612 is beyond EOD, truncated
[   54.682911][ T1253] loop3: p86 size 32937 extends beyond EOD, truncated
[   54.690460][ T1253] loop3: p87 start 8388612 is beyond EOD, truncated
[   54.697251][ T1253] loop3: p88 size 32937 extends beyond EOD, truncated
[   54.712446][ T1253] loop3: p89 start 8388612 is beyond EOD, truncated
[   54.719072][ T1253] loop3: p90 size 32937 extends beyond EOD, truncated
[   54.726105][ T1253] loop3: p91 start 8388612 is beyond EOD, truncated
[   54.733324][ T1253] loop3: p92 size 32937 extends beyond EOD, truncated
[   54.740385][ T1253] loop3: p93 start 8388612 is beyond EOD, truncated
[   54.746905][ T1253] loop3: p94 size 32937 extends beyond EOD, truncated
[   54.755102][ T1253] loop3: p95 start 8388612 is beyond EOD, truncated
[   54.761628][ T1253] loop3: p96 size 32937 extends beyond EOD, truncated
[   54.769058][ T1253] loop3: p97 start 8388612 is beyond EOD, truncated
[   54.775575][ T1253] loop3: p98 size 32937 extends beyond EOD, truncated
[   54.782575][ T1253] loop3: p99 start 8388612 is beyond EOD, truncated
[   54.789040][ T1253] loop3: p100 size 32937 extends beyond EOD, truncated
[   54.789655][ T1286] EXT4-fs (loop4): quotafile must be on filesystem root
[   54.800100][ T1253] loop3: p101 start 8388612 is beyond EOD, truncated
[   54.809128][ T1253] loop3: p102 size 32937 extends beyond EOD, truncated
[   54.816076][ T1253] loop3: p103 start 8388612 is beyond EOD, truncated
[   54.822683][ T1253] loop3: p104 size 32937 extends beyond EOD, truncated
[   54.832082][ T1253] loop3: p105 start 8388612 is beyond EOD, truncated
[   54.839640][ T1253] loop3: p106 size 32937 extends beyond EOD, truncated
[   54.849027][ T1253] loop3: p107 start 8388612 is beyond EOD, truncated
[   54.855631][ T1253] loop3: p108 size 32937 extends beyond EOD, truncated
[   54.864821][ T1253] loop3: p109 start 8388612 is beyond EOD, truncated
[   54.953314][ T1253] loop3: p110 size 32937 extends beyond EOD, truncated
[   54.962832][ T1253] loop3: p111 start 8388612 is beyond EOD, truncated
[   54.969634][ T1253] loop3: p112 size 32937 extends beyond EOD, truncated
[   54.979019][ T1253] loop3: p113 start 8388612 is beyond EOD, truncated
[   54.985627][ T1253] loop3: p114 size 32937 extends beyond EOD, truncated
[   55.004020][ T1253] loop3: p115 start 8388612 is beyond EOD, truncated
[   55.010864][ T1253] loop3: p116 size 32937 extends beyond EOD, truncated
[   55.018109][ T1253] loop3: p117 start 8388612 is beyond EOD, truncated
[   55.024737][ T1253] loop3: p118 size 32937 extends beyond EOD, truncated
[   55.032084][ T1253] loop3: p119 start 8388612 is beyond EOD, truncated
[   55.038726][ T1253] loop3: p120 size 32937 extends beyond EOD, truncated
[   55.045846][ T1253] loop3: p121 start 8388612 is beyond EOD, truncated
[   55.052414][ T1253] loop3: p122 size 32937 extends beyond EOD, truncated
[   55.059467][ T1253] loop3: p123 start 8388612 is beyond EOD, truncated
[   55.066038][ T1253] loop3: p124 size 32937 extends beyond EOD, truncated
[   55.073148][ T1253] loop3: p125 start 8388612 is beyond EOD, truncated
[   55.079749][ T1253] loop3: p126 size 32937 extends beyond EOD, truncated
[   55.086784][ T1253] loop3: p127 start 8388612 is beyond EOD, truncated
[   55.093350][ T1253] loop3: p128 size 32937 extends beyond EOD, truncated
[   55.100431][ T1253] loop3: p129 start 8388612 is beyond EOD, truncated
[   55.106952][ T1253] loop3: p130 size 32937 extends beyond EOD, truncated
[   55.114080][ T1253] loop3: p131 start 8388612 is beyond EOD, truncated
[   55.120602][ T1253] loop3: p132 size 32937 extends beyond EOD, truncated
[   55.127669][ T1253] loop3: p133 start 8388612 is beyond EOD, truncated
[   55.134237][ T1253] loop3: p134 size 32937 extends beyond EOD, truncated
[   55.141217][ T1253] loop3: p135 start 8388612 is beyond EOD, truncated
[   55.147727][ T1253] loop3: p136 size 32937 extends beyond EOD, truncated
[   55.156184][ T1253] loop3: p137 start 8388612 is beyond EOD, truncated
[   55.163484][ T1253] loop3: p138 size 32937 extends beyond EOD, truncated
[   55.172682][ T1253] loop3: p139 start 8388612 is beyond EOD, truncated
[   55.179635][ T1253] loop3: p140 size 32937 extends beyond EOD, truncated
[   55.188718][ T1253] loop3: p141 start 8388612 is beyond EOD, truncated
[   55.195768][ T1253] loop3: p142 size 32937 extends beyond EOD, truncated
[   55.228088][ T1253] loop3: p143 start 8388612 is beyond EOD, truncated
[   55.234963][ T1253] loop3: p144 size 32937 extends beyond EOD, truncated
[   55.245511][ T1253] loop3: p145 start 8388612 is beyond EOD, truncated
[   55.253028][ T1253] loop3: p146 size 32937 extends beyond EOD, truncated
[   55.262426][ T1253] loop3: p147 start 8388612 is beyond EOD, truncated
[   55.269517][ T1253] loop3: p148 size 32937 extends beyond EOD, truncated
[   55.278887][ T1253] loop3: p149 start 8388612 is beyond EOD, truncated
[   55.285919][ T1253] loop3: p150 size 32937 extends beyond EOD, truncated
[   55.296058][ T1253] loop3: p151 start 8388612 is beyond EOD, truncated
[   55.302671][ T1253] loop3: p152 size 32937 extends beyond EOD, truncated
[   55.309673][ T1253] loop3: p153 start 8388612 is beyond EOD, truncated
[   55.316226][ T1253] loop3: p154 size 32937 extends beyond EOD, truncated
[   55.323710][ T1253] loop3: p155 start 8388612 is beyond EOD, truncated
[   55.330258][ T1253] loop3: p156 size 32937 extends beyond EOD, truncated
[   55.337315][ T1253] loop3: p157 start 8388612 is beyond EOD, truncated
[   55.343923][ T1253] loop3: p158 size 32937 extends beyond EOD, truncated
[   55.350918][ T1253] loop3: p159 start 8388612 is beyond EOD, truncated
[   55.357447][ T1253] loop3: p160 size 32937 extends beyond EOD, truncated
[   55.364569][ T1253] loop3: p161 start 8388612 is beyond EOD, truncated
[   55.371172][ T1253] loop3: p162 size 32937 extends beyond EOD, truncated
[   55.378195][ T1253] loop3: p163 start 8388612 is beyond EOD, truncated
[   55.384741][ T1253] loop3: p164 size 32937 extends beyond EOD, truncated
[   55.391729][ T1253] loop3: p165 start 8388612 is beyond EOD, truncated
[   55.398487][ T1253] loop3: p166 size 32937 extends beyond EOD, truncated
[   55.406152][ T1253] loop3: p167 start 8388612 is beyond EOD, truncated
[   55.412706][ T1253] loop3: p168 size 32937 extends beyond EOD, truncated
[   55.419741][ T1253] loop3: p169 start 8388612 is beyond EOD, truncated
[   55.426247][ T1253] loop3: p170 size 32937 extends beyond EOD, truncated
[   55.433310][ T1253] loop3: p171 start 8388612 is beyond EOD, truncated
[   55.439846][ T1253] loop3: p172 size 32937 extends beyond EOD, truncated
[   55.446816][ T1253] loop3: p173 start 8388612 is beyond EOD, truncated
[   55.453333][ T1253] loop3: p174 size 32937 extends beyond EOD, truncated
[   55.460435][ T1253] loop3: p175 start 8388612 is beyond EOD, truncated
[   55.466944][ T1253] loop3: p176 size 32937 extends beyond EOD, truncated
[   55.473975][ T1253] loop3: p177 start 8388612 is beyond EOD, truncated
[   55.480838][ T1253] loop3: p178 size 32937 extends beyond EOD, truncated
[   55.488420][ T1253] loop3: p179 start 8388612 is beyond EOD, truncated
[   55.495058][ T1253] loop3: p180 size 32937 extends beyond EOD, truncated
[   55.502224][ T1253] loop3: p181 start 8388612 is beyond EOD, truncated
[   55.508788][ T1253] loop3: p182 size 32937 extends beyond EOD, truncated
[   55.516014][ T1253] loop3: p183 start 8388612 is beyond EOD, truncated
[   55.522597][ T1253] loop3: p184 size 32937 extends beyond EOD, truncated
[   55.534975][ T1253] loop3: p185 start 8388612 is beyond EOD, truncated
[   55.557189][ T1253] loop3: p186 size 32937 extends beyond EOD, truncated
[   55.570485][ T1253] loop3: p187 start 8388612 is beyond EOD, truncated
[   55.577451][ T1253] loop3: p188 size 32937 extends beyond EOD, truncated
[   55.585878][ T1253] loop3: p189 start 8388612 is beyond EOD, truncated
[   55.592500][ T1253] loop3: p190 size 32937 extends beyond EOD, truncated
[   55.599677][ T1253] loop3: p191 start 8388612 is beyond EOD, truncated
[   55.606370][ T1253] loop3: p192 size 32937 extends beyond EOD, truncated
[   55.617409][ T1253] loop3: p193 start 8388612 is beyond EOD, truncated
[   55.624682][ T1253] loop3: p194 size 32937 extends beyond EOD, truncated
[   55.632376][ T1253] loop3: p195 start 8388612 is beyond EOD, truncated
[   55.639049][ T1253] loop3: p196 size 32937 extends beyond EOD, truncated
[   55.646221][ T1253] loop3: p197 start 8388612 is beyond EOD, truncated
[   55.652881][ T1253] loop3: p198 size 32937 extends beyond EOD, truncated
[   55.660026][ T1253] loop3: p199 start 8388612 is beyond EOD, truncated
[   55.666976][ T1253] loop3: p200 size 32937 extends beyond EOD, truncated
[   55.674477][ T1253] loop3: p201 start 8388612 is beyond EOD, truncated
[   55.681450][ T1253] loop3: p202 size 32937 extends beyond EOD, truncated
[   55.689218][ T1253] loop3: p203 start 8388612 is beyond EOD, truncated
[   55.697320][ T1253] loop3: p204 size 32937 extends beyond EOD, truncated
[   55.713073][ T1253] loop3: p205 start 8388612 is beyond EOD, truncated
[   55.730354][ T1253] loop3: p206 size 32937 extends beyond EOD, truncated
[   55.741839][ T1253] loop3: p207 start 8388612 is beyond EOD, truncated
[   55.750873][ T1310] netlink: 165 bytes leftover after parsing attributes in process `syz-executor.4'.
[   55.752756][ T1253] loop3: p208 size 32937 extends beyond EOD, truncated
[   55.768837][ T1253] loop3: p209 start 8388612 is beyond EOD, truncated
[   55.771040][ T1312] tipc: Failed to remove local publication {66,1,1}/2377113116
[   55.775721][ T1253] loop3: p210 size 32937 extends beyond EOD, truncated
[   55.788712][ T1312] tipc: Failed to remove local publication {66,1,1}/2377113116
[   55.790252][ T1253] loop3: p211 start 8388612 is beyond EOD, truncated
[   55.797078][ T1312] tipc: Failed to remove local publication {66,1,1}/2377113116
[   55.803730][ T1253] loop3: p212 size 32937 extends beyond EOD, truncated
[   55.818357][ T1253] loop3: p213 start 8388612 is beyond EOD, truncated
[   55.825267][ T1253] loop3: p214 size 32937 extends beyond EOD, truncated
[   55.832651][ T1253] loop3: p215 start 8388612 is beyond EOD, truncated
[   55.838715][  T512] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   55.839225][ T1253] loop3: p216 size 32937 extends beyond EOD, truncated
[   55.853539][ T1253] loop3: p217 start 8388612 is beyond EOD, truncated
[   55.860097][ T1253] loop3: p218 size 32937 extends beyond EOD, truncated
[   55.868595][ T1253] loop3: p219 start 8388612 is beyond EOD, truncated
[   55.875369][ T1253] loop3: p220 size 32937 extends beyond EOD, truncated
[   55.884765][ T1253] loop3: p221 start 8388612 is beyond EOD, truncated
[   55.891502][ T1253] loop3: p222 size 32937 extends beyond EOD, truncated
[   55.900207][ T1253] loop3: p223 start 8388612 is beyond EOD, truncated
[   55.906948][ T1253] loop3: p224 size 32937 extends beyond EOD, truncated
[   55.939693][ T1318] overlayfs: conflicting lowerdir path
[   55.967408][ T1253] loop3: p225 start 8388612 is beyond EOD, truncated
[   55.974125][ T1253] loop3: p226 size 32937 extends beyond EOD, truncated
[   55.983439][ T1253] loop3: p227 start 8388612 is beyond EOD, truncated
[   55.990165][ T1253] loop3: p228 size 32937 extends beyond EOD, truncated
[   55.999336][ T1253] loop3: p229 start 8388612 is beyond EOD, truncated
[   56.005981][ T1253] loop3: p230 size 32937 extends beyond EOD, truncated
[   56.016938][ T1253] loop3: p231 start 8388612 is beyond EOD, truncated
[   56.024108][ T1253] loop3: p232 size 32937 extends beyond EOD, truncated
[   56.031370][ T1253] loop3: p233 start 8388612 is beyond EOD, truncated
[   56.038026][ T1253] loop3: p234 size 32937 extends beyond EOD, truncated
[   56.045511][ T1253] loop3: p235 start 8388612 is beyond EOD, truncated
[   56.052137][ T1253] loop3: p236 size 32937 extends beyond EOD, truncated
[   56.059283][ T1253] loop3: p237 start 8388612 is beyond EOD, truncated
[   56.065848][ T1253] loop3: p238 size 32937 extends beyond EOD, truncated
[   56.072865][ T1253] loop3: p239 start 8388612 is beyond EOD, truncated
[   56.079412][  T512] usb 2-1: Using ep0 maxpacket: 32
[   56.082260][ T1253] loop3: p240 size 32937 extends beyond EOD, truncated
[   56.091425][ T1253] loop3: p241 start 8388612 is beyond EOD, truncated
[   56.097895][ T1253] loop3: p242 size 32937 extends beyond EOD, truncated
[   56.105002][ T1253] loop3: p243 start 8388612 is beyond EOD, truncated
[   56.111624][ T1253] loop3: p244 size 32937 extends beyond EOD, truncated
[   56.118597][ T1253] loop3: p245 start 8388612 is beyond EOD, truncated
[   56.125365][ T1253] loop3: p246 size 32937 extends beyond EOD, truncated
[   56.132473][ T1253] loop3: p247 start 8388612 is beyond EOD, truncated
[   56.139005][ T1253] loop3: p248 size 32937 extends beyond EOD, truncated
[   56.145955][ T1253] loop3: p249 start 8388612 is beyond EOD, truncated
[   56.152486][ T1253] loop3: p250 size 32937 extends beyond EOD, truncated
[   56.159619][ T1253] loop3: p251 start 8388612 is beyond EOD, truncated
[   56.166206][ T1253] loop3: p252 size 32937 extends beyond EOD, truncated
[   56.173284][ T1253] loop3: p253 start 8388612 is beyond EOD, truncated
[   56.179818][ T1253] loop3: p254 size 32937 extends beyond EOD, truncated
[   56.186791][ T1253] loop3: p255 start 8388612 is beyond EOD, truncated
[   56.198819][  T512] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   56.209691][  T512] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   56.219224][  T512] usb 2-1: New USB device found, idVendor=056a, idProduct=0315, bcdDevice= 0.00
[   56.228440][  T512] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   56.236843][  T512] usb 2-1: config 0 descriptor??
[   56.450181][ T1324] F2FS-fs (loop3): invalid crc value
[   56.456581][ T1324] F2FS-fs (loop3): Found nat_bits in checkpoint
[   56.479002][ T1324] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   56.761474][   T24] kauditd_printk_skb: 8011 callbacks suppressed
[   56.761503][   T24] audit: type=1400 audit(1718522296.979:8290): avc:  denied  { setattr } for  pid=1323 comm="syz-executor.3" name="/" dev="loop3" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   56.804767][   T24] audit: type=1400 audit(1718522297.009:8291): avc:  denied  { mounton } for  pid=1323 comm="syz-executor.3" path="/root/syzkaller-testdir745076259/syzkaller.daYx8V/79/file0/file0" dev="loop3" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   56.816252][  T512] wacom 0003:056A:0315.0008: item fetching failed at offset 0/3
[   56.832154][   T24] audit: type=1400 audit(1718522297.009:8292): avc:  denied  { write } for  pid=1323 comm="syz-executor.3" name="file0" dev="loop3" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   56.842186][  T512] wacom 0003:056A:0315.0008: parse failed
[   56.867724][  T512] wacom: probe of 0003:056A:0315.0008 failed with error -22
[   56.876221][   T24] audit: type=1400 audit(1718522297.019:8293): avc:  denied  { add_name } for  pid=1323 comm="syz-executor.3" name="work" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   56.898683][   T24] audit: type=1400 audit(1718522297.019:8294): avc:  denied  { setattr } for  pid=1323 comm="syz-executor.3" name="work" dev="loop3" ino=24 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   56.920750][   T24] audit: type=1400 audit(1718522297.019:8295): avc:  denied  { remove_name } for  pid=1323 comm="syz-executor.3" name="#11" dev="loop3" ino=27 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   56.943145][   T24] audit: type=1400 audit(1718522297.019:8296): avc:  denied  { rename } for  pid=1323 comm="syz-executor.3" name="#11" dev="loop3" ino=27 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   56.966196][   T24] audit: type=1400 audit(1718522297.029:8297): avc:  denied  { unlink } for  pid=1323 comm="syz-executor.3" name="#11" dev="loop3" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[   56.988644][   T24] audit: type=1400 audit(1718522297.029:8298): avc:  denied  { unlink } for  pid=1323 comm="syz-executor.3" name="#12" dev="loop3" ino=27 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   57.019071][  T512] usb 2-1: USB disconnect, device number 4
[   57.048788][ T1336] syz-executor.2[1336] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.048824][ T1336] syz-executor.2[1336] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.218968][  T303] attempt to access beyond end of device
[   57.218968][  T303] loop3: rw=524288, want=45072, limit=40427
[   57.243652][  T303] attempt to access beyond end of device
[   57.243652][  T303] loop3: rw=0, want=45072, limit=40427
[   57.283058][  T334] attempt to access beyond end of device
[   57.283058][  T334] loop3: rw=2049, want=45120, limit=40427
[   57.297865][   T24] audit: type=1400 audit(1718522297.619:8299): avc:  denied  { read } for  pid=1343 comm="syz-executor.2" path="socket:[18653]" dev="sockfs" ino=18653 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.628970][  T306] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[   57.739554][ T1355] overlayfs: conflicting lowerdir path
[   58.055049][ T1364] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.062179][ T1364] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.069853][ T1364] device bridge_slave_0 entered promiscuous mode
[   58.077034][ T1364] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.084024][ T1364] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.091505][ T1364] device bridge_slave_1 entered promiscuous mode
[   58.122807][ T1364] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.129689][ T1364] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.136718][ T1364] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.143557][ T1364] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.150920][  T306] usb 3-1: Using ep0 maxpacket: 32
[   58.337249][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   58.348583][  T450] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.359674][  T450] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.374172][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.382500][  T349] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.389355][  T349] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.396643][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.404929][  T349] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.411784][  T349] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.424350][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   58.433424][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.447112][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.460708][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.474222][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.481896][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.489050][  T306] usb 3-1: config 0 has no interfaces?
[   58.494730][ T1364] device veth0_vlan entered promiscuous mode
[   58.507769][ T1364] device veth1_macvtap entered promiscuous mode
[   58.516673][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.529845][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   58.545028][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   58.554744][  T334] device bridge_slave_1 left promiscuous mode
[   58.561241][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.568420][  T334] device bridge_slave_0 left promiscuous mode
[   58.574679][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.582580][  T334] device veth1_macvtap left promiscuous mode
[   58.588473][  T334] device veth0_vlan left promiscuous mode
[   58.688801][  T306] usb 3-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[   58.698361][  T306] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   58.706414][  T306] usb 3-1: Product: syz
[   58.711703][  T306] usb 3-1: Manufacturer: syz
[   58.716245][  T306] usb 3-1: SerialNumber: syz
[   58.721324][  T306] usb 3-1: config 0 descriptor??
[   58.921631][ T1408] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   59.050504][ T1421] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   59.130130][ T1416] F2FS-fs (loop4): invalid crc value
[   59.136406][ T1416] F2FS-fs (loop4): Found nat_bits in checkpoint
[   59.159512][ T1416] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   59.649190][ T1441] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.656173][ T1441] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.663626][ T1441] device bridge_slave_0 entered promiscuous mode
[   59.670366][ T1441] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.677357][ T1441] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.684495][ T1441] device bridge_slave_1 entered promiscuous mode
[   59.730007][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   59.737329][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   59.746078][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   59.754950][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   59.762967][  T323] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.769904][  T323] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.778118][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   59.796818][ T1441] device veth0_vlan entered promiscuous mode
[   59.803608][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   59.812347][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   59.820216][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   59.827772][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   59.835072][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   59.843632][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   59.851779][  T349] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.858660][  T349] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.867343][ T1077] attempt to access beyond end of device
[   59.867343][ T1077] loop4: rw=524288, want=45072, limit=40427
[   59.879126][ T1077] attempt to access beyond end of device
[   59.879126][ T1077] loop4: rw=0, want=45072, limit=40427
[   59.880144][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   59.898196][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   59.912026][ T1441] device veth1_macvtap entered promiscuous mode
[   59.921701][  T894] attempt to access beyond end of device
[   59.921701][  T894] loop4: rw=2049, want=45120, limit=40427
[   59.937553][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   59.958993][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.967166][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   60.066008][ T1451] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.073221][ T1451] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.080532][ T1451] device bridge_slave_0 entered promiscuous mode
[   60.089468][ T1451] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.097234][ T1458] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[   60.106882][ T1451] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.121495][ T1451] device bridge_slave_1 entered promiscuous mode
[   60.213586][ T1451] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.220479][ T1451] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.227575][ T1451] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.234441][ T1451] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.311827][  T349] usb 3-1: USB disconnect, device number 7
[   60.318864][ T1464] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.326059][ T1464] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.329473][ T1472] syz-executor.2[1472] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.333085][ T1472] syz-executor.2[1472] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.333501][ T1464] device bridge_slave_0 entered promiscuous mode
[   60.376232][ T1464] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.383450][ T1464] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.392865][ T1464] device bridge_slave_1 entered promiscuous mode
[   60.404478][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   60.412392][  T323] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.419596][  T323] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.429529][ T1467] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.439057][ T1467] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.446544][ T1467] device bridge_slave_0 entered promiscuous mode
[   60.459958][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   60.467946][  T346] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.474797][  T346] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.482178][  T346] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   60.490881][  T346] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.497708][  T346] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.525699][ T1467] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.533006][ T1467] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.547815][ T1467] device bridge_slave_1 entered promiscuous mode
[   60.572300][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   60.580332][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   60.593606][ T1451] device veth0_vlan entered promiscuous mode
[   60.601948][  T334] device bridge_slave_1 left promiscuous mode
[   60.608059][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.615738][  T334] device bridge_slave_0 left promiscuous mode
[   60.621788][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.630221][  T334] device veth1_macvtap left promiscuous mode
[   60.636060][  T334] device veth0_vlan left promiscuous mode
[   60.642731][ T1478] F2FS-fs (loop2): invalid crc value
[   60.652796][ T1478] F2FS-fs (loop2): Found nat_bits in checkpoint
[   60.704618][ T1478] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   60.725738][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   60.739985][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   60.747395][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   60.805956][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   60.827459][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   60.835646][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   60.860963][ T1451] device veth1_macvtap entered promiscuous mode
[   61.134867][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   61.143643][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   61.156766][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   61.163883][ T1485] capability: warning: `syz-executor.3' uses deprecated v2 capabilities in a way that may be insecure
[   61.187683][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   61.196018][  T349] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   61.269628][ T1467] device veth0_vlan entered promiscuous mode
[   61.276335][  T304] attempt to access beyond end of device
[   61.276335][  T304] loop2: rw=524288, want=45072, limit=40427
[   61.299172][  T304] attempt to access beyond end of device
[   61.299172][  T304] loop2: rw=0, want=45072, limit=40427
[   61.310580][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   61.318553][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   61.333794][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   61.342303][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   61.350263][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   61.352471][    T9] attempt to access beyond end of device
[   61.352471][    T9] loop2: rw=2049, want=45120, limit=40427
[   61.359322][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   61.375815][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   61.383167][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   61.390696][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.399567][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.408242][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.415095][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.422691][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.431079][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.439196][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.446059][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.479257][ T1467] device veth1_macvtap entered promiscuous mode
[   61.486162][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   61.494911][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   61.502994][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   61.510377][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   61.520813][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.529334][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.537363][  T512] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.539091][ T1500] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[   61.544234][  T512] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.558057][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.566306][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.574887][  T512] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.581736][  T512] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.588921][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   61.596701][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   61.604520][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   61.612335][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   61.620250][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   61.654305][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   61.664587][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   61.673077][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   61.683405][ T1464] device veth0_vlan entered promiscuous mode
[   61.691152][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   61.702746][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   61.710230][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   61.740708][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   61.749871][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   61.759920][ T1464] device veth1_macvtap entered promiscuous mode
[   61.796168][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   61.814175][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   61.822940][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   61.833941][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   61.842030][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   61.898385][ T1511] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.906311][ T1511] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.914772][ T1511] device bridge_slave_0 entered promiscuous mode
[   61.922038][ T1511] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.929018][ T1511] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.936412][ T1511] device bridge_slave_1 entered promiscuous mode
[   61.968910][    T5] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   61.979854][ T1511] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.986737][ T1511] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.993822][ T1511] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.000625][ T1511] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.029498][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.037014][  T306] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.045398][  T306] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.059567][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   62.067627][  T323] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.074497][  T323] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.081887][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   62.090182][  T323] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.097133][  T323] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.120036][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   62.127973][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   62.139799][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   62.154595][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   62.162796][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   62.170081][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   62.178136][ T1511] device veth0_vlan entered promiscuous mode
[   62.188257][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   62.202019][ T1511] device veth1_macvtap entered promiscuous mode
[   62.212953][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   62.226144][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   62.234155][    T5] usb 1-1: Using ep0 maxpacket: 32
[   62.268783][   T54] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   62.283653][ T1534] EXT4-fs warning (device sda1): ext4_group_extend:1805: can't shrink FS - resize aborted
[   62.299359][  T334] device bridge_slave_1 left promiscuous mode
[   62.305318][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.312653][  T334] device bridge_slave_0 left promiscuous mode
[   62.318766][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.326232][  T334] device bridge_slave_1 left promiscuous mode
[   62.332369][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.339913][  T334] device bridge_slave_0 left promiscuous mode
[   62.345966][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.354175][  T334] device veth1_macvtap left promiscuous mode
[   62.360495][  T334] device veth0_vlan left promiscuous mode
[   62.366345][  T334] device veth1_macvtap left promiscuous mode
[   62.372415][  T334] device veth0_vlan left promiscuous mode
[   62.380368][    T5] usb 1-1: config 0 has no interfaces?
[   62.400843][   T24] kauditd_printk_skb: 9 callbacks suppressed
[   62.400854][   T24] audit: type=1400 audit(1718522302.719:8309): avc:  denied  { bind } for  pid=1538 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   62.434687][   T24] audit: type=1400 audit(1718522302.739:8310): avc:  denied  { name_bind } for  pid=1538 comm="syz-executor.3" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   62.456759][   T24] audit: type=1400 audit(1718522302.739:8311): avc:  denied  { node_bind } for  pid=1538 comm="syz-executor.3" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   62.569085][    T5] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[   62.578053][    T5] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   62.586471][    T5] usb 1-1: Product: syz
[   62.590705][    T5] usb 1-1: Manufacturer: syz
[   62.595168][    T5] usb 1-1: SerialNumber: syz
[   62.600420][    T5] usb 1-1: config 0 descriptor??
[   62.628820][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.639893][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   62.649646][   T54] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   62.658575][   T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.667216][   T54] usb 5-1: config 0 descriptor??
[   62.670584][   T24] audit: type=1400 audit(1718522302.989:8312): avc:  denied  { create } for  pid=1548 comm="syz-executor.3" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   62.944950][ T1561] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[   62.954555][ T1561] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[   63.040510][ T1565] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   63.050137][   T24] audit: type=1400 audit(1718522303.369:8313): avc:  denied  { mount } for  pid=1563 comm="syz-executor.3" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   63.078595][   T24] audit: type=1400 audit(1718522303.389:8314): avc:  denied  { mounton } for  pid=1563 comm="syz-executor.3" path="/root/syzkaller-testdir765032252/syzkaller.hTO0ly/17/file0/file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   63.122205][   T24] audit: type=1400 audit(1718522303.399:8315): avc:  denied  { read } for  pid=1563 comm="syz-executor.3" dev="nsfs" ino=4026532449 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   63.143873][   T24] audit: type=1400 audit(1718522303.399:8316): avc:  denied  { open } for  pid=1563 comm="syz-executor.3" path="net:[4026532449]" dev="nsfs" ino=4026532449 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   63.168109][   T54] hid (null): bogus close delimiter
[   63.170145][   T24] audit: type=1400 audit(1718522303.399:8317): avc:  denied  { listen } for  pid=1563 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   63.193611][   T24] audit: type=1400 audit(1718522303.399:8318): avc:  denied  { setopt } for  pid=1563 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   63.351031][ T1588] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev bpf, type bpf) errno=-22
[   63.405205][ T1592] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[   63.415098][ T1592] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[   63.425288][  T334] device bridge_slave_1 left promiscuous mode
[   63.426845][ T1586] F2FS-fs (loop2): invalid crc value
[   63.431571][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.437573][ T1586] F2FS-fs (loop2): Found nat_bits in checkpoint
[   63.449580][  T334] device bridge_slave_0 left promiscuous mode
[   63.455616][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.463668][  T334] device veth1_macvtap left promiscuous mode
[   63.469608][  T334] device veth0_vlan left promiscuous mode
[   63.478187][ T1586] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   63.792442][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   63.800802][   T54] usb 5-1: string descriptor 0 read error: -71
[   63.807779][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   63.827009][   T54] uclogic 0003:256C:006D.0009: failed retrieving string descriptor #200: -71
[   63.836077][   T54] uclogic 0003:256C:006D.0009: failed retrieving pen parameters: -71
[   63.844034][   T54] uclogic 0003:256C:006D.0009: failed probing pen v2 parameters: -71
[   63.876272][   T54] uclogic 0003:256C:006D.0009: failed probing parameters: -71
[   63.884113][   T54] uclogic: probe of 0003:256C:006D.0009 failed with error -71
[   63.892643][   T54] usb 5-1: USB disconnect, device number 5
[   64.294972][ T1511] attempt to access beyond end of device
[   64.294972][ T1511] loop2: rw=524288, want=45072, limit=40427
[   64.309003][ T1511] attempt to access beyond end of device
[   64.309003][ T1511] loop2: rw=0, want=45072, limit=40427
[   64.335363][ T1625] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[   64.352329][    T9] attempt to access beyond end of device
[   64.352329][    T9] loop2: rw=2049, want=45120, limit=40427
[   64.370230][ T1625] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[   64.913193][   T25] usb 1-1: USB disconnect, device number 2
[   65.205118][ T1635] device syzkaller0 entered promiscuous mode
[   65.605263][ T1665] bridge1: the hash_elasticity option has been deprecated and is always 16
[   65.641303][ T1658] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.661030][ T1658] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.674216][ T1658] device bridge_slave_0 entered promiscuous mode
[   65.686663][ T1658] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.693576][ T1658] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.700802][ T1658] device bridge_slave_1 entered promiscuous mode
[   65.738761][  T323] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   65.768346][ T1658] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.775218][ T1658] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.782332][ T1658] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.789095][ T1658] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.802861][    T9] device bridge_slave_1 left promiscuous mode
[   65.813996][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.822350][    T9] device bridge_slave_0 left promiscuous mode
[   65.828449][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.836624][    T9] device veth1_macvtap left promiscuous mode
[   65.842943][    T9] device veth0_vlan left promiscuous mode
[   65.931175][    T5] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.938954][    T5] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.967700][ T1694] device syzkaller0 entered promiscuous mode
[   65.980364][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   65.987765][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   65.998730][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   66.007148][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   66.015597][   T54] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.018705][  T323] usb 5-1: Using ep0 maxpacket: 32
[   66.022488][   T54] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.034919][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   66.043446][   T54] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   66.051588][   T54] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.058449][   T54] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.079400][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   66.087563][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   66.109416][ T1658] device veth0_vlan entered promiscuous mode
[   66.115945][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   66.124325][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   66.132522][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   66.141269][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   66.149513][  T323] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   66.161983][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   66.170153][  T323] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   66.180256][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   66.194353][ T1658] device veth1_macvtap entered promiscuous mode
[   66.216922][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   66.224576][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   66.231841][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   66.240705][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   66.248599][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   66.256412][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   66.264684][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   66.273137][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   66.281700][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   66.318807][  T323] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   66.327673][  T323] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   66.339591][  T323] usb 5-1: Product: syz
[   66.343578][  T323] usb 5-1: Manufacturer: syz
[   66.379255][  T323] hub 5-1:4.0: USB hub found
[   66.433018][ T1730] input: syz0 as /devices/virtual/input/input7
[   66.608980][  T323] hub 5-1:4.0: 2 ports detected
[   67.616979][   T24] kauditd_printk_skb: 15 callbacks suppressed
[   67.616992][   T24] audit: type=1400 audit(1718522307.929:8334): avc:  denied  { connect } for  pid=1765 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   67.728872][  T343] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[   67.791807][ T1786] fuse: Bad value for 'fd'
[   67.808876][  T323] hub 5-1:4.0: hub_hub_status failed (err = -32)
[   67.815039][  T323] hub 5-1:4.0: config failed, can't get hub status (err -32)
[   67.845624][ T1792] device syzkaller0 entered promiscuous mode
[   67.873034][ T1797] FAT-fs (loop0): Directory bread(block 64) failed
[   67.880115][ T1797] FAT-fs (loop0): Directory bread(block 65) failed
[   67.888274][ T1797] FAT-fs (loop0): Directory bread(block 66) failed
[   67.895217][ T1797] FAT-fs (loop0): Directory bread(block 67) failed
[   67.901708][ T1797] FAT-fs (loop0): Directory bread(block 68) failed
[   67.908369][ T1797] FAT-fs (loop0): Directory bread(block 69) failed
[   67.914902][ T1797] FAT-fs (loop0): Directory bread(block 70) failed
[   67.921344][ T1797] FAT-fs (loop0): Directory bread(block 71) failed
[   67.927981][ T1797] FAT-fs (loop0): Directory bread(block 72) failed
[   67.934467][ T1797] FAT-fs (loop0): Directory bread(block 73) failed
[   68.014906][ T1797] attempt to access beyond end of device
[   68.014906][ T1797] loop0: rw=2049, want=1300, limit=256
[   68.026934][ T1797] attempt to access beyond end of device
[   68.026934][ T1797] loop0: rw=2051, want=1320, limit=256
[   68.038273][ T1797] x_tables: unsorted underflow at hook 3
[   68.043928][  T343] usb 3-1: device descriptor read/64, error -71
[   68.057909][   T24] audit: type=1326 audit(1718522308.369:8335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bfe50eea9 code=0x7ffc0000
[   68.102534][   T24] audit: type=1326 audit(1718522308.399:8336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6bfe50daa0 code=0x7ffc0000
[   68.126937][   T24] audit: type=1326 audit(1718522308.399:8337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f6bfe510637 code=0x7ffc0000
[   68.161547][   T24] audit: type=1326 audit(1718522308.399:8338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6bfe50eea9 code=0x7ffc0000
[   68.185960][   T24] audit: type=1326 audit(1718522308.399:8339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f6bfe510637 code=0x7ffc0000
[   68.222538][   T24] audit: type=1326 audit(1718522308.399:8340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f6bfe50dd9a code=0x7ffc0000
[   68.246241][   T24] audit: type=1326 audit(1718522308.399:8341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1796 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bfe50eea9 code=0x7ffc0000
[   68.339304][  T306] usb 5-1: USB disconnect, device number 6
[   68.350122][   T24] audit: type=1326 audit(1718522308.669:8342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1842 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ef4f1ea9 code=0x7ffc0000
[   68.374471][   T24] audit: type=1326 audit(1718522308.669:8343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1842 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3ef4f1ea9 code=0x7ffc0000
[   68.468753][  T343] usb 3-1: device descriptor read/64, error -71
[   69.298902][  T343] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[   69.395257][ T1867] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   69.410793][ T1867] device syzkaller0 entered promiscuous mode
[   69.488725][   T15] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   69.539294][ T1877] device syzkaller0 entered promiscuous mode
[   69.578831][  T343] usb 3-1: device descriptor read/64, error -71
[   69.688800][    T5] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   69.738765][   T15] usb 5-1: Using ep0 maxpacket: 32
[   69.763353][ T1892] x_tables: unsorted underflow at hook 3
[   70.058931][   T15] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   70.069846][   T15] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   70.158819][    T5] usb 1-1: Using ep0 maxpacket: 8
[   70.168727][  T343] usb 3-1: device descriptor read/64, error -71
[   70.238856][   T15] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   70.247718][   T15] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   70.255876][   T15] usb 5-1: Product: syz
[   70.260009][   T15] usb 5-1: Manufacturer: syz
[   70.288774][  T343] usb usb3-port1: attempt power cycle
[   70.298810][    T5] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 238, changing to 11
[   70.310268][   T15] hub 5-1:4.0: USB hub found
[   70.314710][    T5] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16
[   70.324391][    T5] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[   70.419338][    T5] usb 1-1: New USB device found, idVendor=0001, idProduct=8000, bcdDevice= 0.00
[   70.428339][    T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   70.436137][    T5] usb 1-1: SerialNumber: syz
[   70.447008][ T1902] fuse: Bad value for 'fd'
[   70.468814][ T1869] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[   70.488997][    T5] hub 1-1:1.0: bad descriptor, ignoring hub
[   70.494764][    T5] hub: probe of 1-1:1.0 failed with error -5
[   70.528751][   T15] hub 5-1:4.0: 2 ports detected
[   70.708810][    T5] cdc_ether: probe of 1-1:1.0 failed with error -71
[   70.716007][  T343] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[   70.732916][ T1916] device batadv_slave_1 entered promiscuous mode
[   70.758934][    T5] usb 1-1: USB disconnect, device number 3
[   70.804151][ T1918] FAT-fs (loop3): Directory bread(block 64) failed
[   70.810805][ T1918] FAT-fs (loop3): Directory bread(block 65) failed
[   70.817377][ T1918] FAT-fs (loop3): Directory bread(block 66) failed
[   70.823949][ T1918] FAT-fs (loop3): Directory bread(block 67) failed
[   70.830539][ T1918] FAT-fs (loop3): Directory bread(block 68) failed
[   70.837008][ T1918] FAT-fs (loop3): Directory bread(block 69) failed
[   70.843567][ T1918] FAT-fs (loop3): Directory bread(block 70) failed
[   70.850028][ T1918] FAT-fs (loop3): Directory bread(block 71) failed
[   70.856412][ T1918] FAT-fs (loop3): Directory bread(block 72) failed
[   70.862805][ T1918] FAT-fs (loop3): Directory bread(block 73) failed
[   70.888750][  T343] usb 3-1: device descriptor read/8, error -71
[   71.005742][ T1927] 9pnet: Insufficient options for proto=fd
[   71.012673][ T1927] serio: Serial port pts0
[   71.168746][  T343] usb 3-1: device descriptor read/8, error -71
[   71.207495][ T1936] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   71.216174][ T1936] device syzkaller0 entered promiscuous mode
[   71.354779][ T1907] device batadv_slave_1 left promiscuous mode
[   71.448981][  T343] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[   71.475544][   T15] hub 5-1:4.0: hub_hub_status failed (err = -71)
[   71.482662][   T15] hub 5-1:4.0: config failed, can't get hub status (err -71)
[   71.519235][   T15] usb 5-1: USB disconnect, device number 7
[   71.848728][  T343] usb 3-1: device descriptor read/8, error -71
[   72.098719][ T1024] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   72.109722][ T1973] F2FS-fs (loop4): QUOTA feature is enabled, so ignore jquota_fmt
[   72.118985][ T1973] F2FS-fs (loop4): invalid crc value
[   72.125572][ T1973] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[   72.146959][ T1973] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[   72.158726][  T343] usb 3-1: device descriptor read/8, error -71
[   72.299608][  T343] usb usb3-port1: unable to enumerate USB device
[   72.313562][ T1973] kvm: emulating exchange as write
[   72.368883][ T1024] usb 1-1: Using ep0 maxpacket: 16
[   72.611354][ T2005] 9pnet: p9_errstr2errno: server reported unknown error 1844674
[   72.678908][ T1024] usb 1-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   72.688205][ T1024] usb 1-1: too many endpoints for config 1 interface 1 altsetting 1: 111, using maximum allowed: 30
[   72.700286][ T1024] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   72.711024][ T1024] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   72.720498][ T1024] usb 1-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 111
[   72.733353][ T1024] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   72.744026][ T1024] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[   72.919180][ T1024] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   72.928110][ T1024] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.935973][ T1024] usb 1-1: Product: syz
[   72.939969][ T1024] usb 1-1: Manufacturer: syz
[   72.944325][ T1024] usb 1-1: SerialNumber: syz
[   73.126293][ T2012] 9pnet: Insufficient options for proto=fd
[   73.133242][ T2012] serio: Serial port pts0
[   73.168852][  T324] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   73.492653][ T2017] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   73.503879][ T2017] EXT4-fs (loop0): orphan cleanup on readonly fs
[   73.510552][ T2017] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #17: comm syz-executor.0: iget: bad i_size value: -6917529027641081756
[   73.524126][ T2017] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz-executor.0: couldn't read orphan inode 17 (err -117)
[   73.536518][ T2017] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   73.578761][  T324] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.589656][  T324] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.599613][  T324] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   73.608628][  T324] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.617136][  T324] usb 5-1: config 0 descriptor??
[   74.368750][  T324] usb 5-1: string descriptor 0 read error: -71
[   74.388735][  T324] uclogic 0003:256C:006D.000A: failed retrieving string descriptor #200: -71
[   74.397407][  T324] uclogic 0003:256C:006D.000A: failed retrieving pen parameters: -71
[   74.405440][  T324] uclogic 0003:256C:006D.000A: failed probing pen v2 parameters: -71
[   74.413351][  T324] uclogic 0003:256C:006D.000A: failed probing parameters: -71
[   74.420669][  T324] uclogic: probe of 0003:256C:006D.000A failed with error -71
[   74.428557][  T324] usb 5-1: USB disconnect, device number 8
[   74.857753][   T24] kauditd_printk_skb: 18 callbacks suppressed
[   74.857778][   T24] audit: type=1400 audit(1718522315.169:8362): avc:  denied  { create } for  pid=2044 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=appletalk_socket permissive=1
[   74.885069][   T24] audit: type=1400 audit(1718522315.179:8363): avc:  denied  { create } for  pid=2044 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=unix_stream_socket permissive=1
[   74.906369][   T24] audit: type=1400 audit(1718522315.179:8364): avc:  denied  { bind } for  pid=2044 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=unix_stream_socket permissive=1
[   74.929253][   T24] audit: type=1400 audit(1718522315.179:8365): avc:  denied  { listen } for  pid=2044 comm="syz-executor.4" path=2F726F6F742F73797A6B616C6C65722D746573746469723330373631383637302F73797A6B616C6C65722E4F6231726B702F31392FE91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=unix_stream_socket permissive=1
[   74.963882][ T1024] usb 1-1: USB disconnect, device number 4
[   74.973042][   T24] audit: type=1400 audit(1718522315.179:8366): avc:  denied  { connect } for  pid=2044 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=unix_stream_socket permissive=1
[   74.995313][   T24] audit: type=1400 audit(1718522315.179:8367): avc:  denied  { connectto } for  pid=2044 comm="syz-executor.4" path=2F726F6F742F73797A6B616C6C65722D746573746469723330373631383637302F73797A6B616C6C65722E4F6231726B702F31392FE91F7189591E9233614B scontext=system_u:object_r:hugetlbfs_t tcontext=system_u:object_r:hugetlbfs_t tclass=unix_stream_socket permissive=1
[   75.028785][   T24] audit: type=1400 audit(1718522315.249:8368): avc:  denied  { create } for  pid=2046 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   75.048769][   T24] audit: type=1400 audit(1718522315.249:8369): avc:  denied  { create } for  pid=2046 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   75.071115][   T24] audit: type=1400 audit(1718522315.249:8370): avc:  denied  { write } for  pid=2046 comm="syz-executor.0" path="socket:[23728]" dev="sockfs" ino=23728 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   75.096111][   T24] audit: type=1400 audit(1718522315.319:8371): avc:  denied  { ioctl } for  pid=2046 comm="syz-executor.0" path="socket:[23728]" dev="sockfs" ino=23728 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[   75.311002][ T2054] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d)
[   76.960383][ T2126] SELinux: security_context_str_to_sid(root) failed for (dev incremental-fs, type incremental-fs) errno=-22
[   77.548855][ T2179] syz-executor.3[2179] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.548909][ T2179] syz-executor.3[2179] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   78.772482][ T2199] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d)
[   79.058559][ T2224] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.065587][ T2224] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.073040][ T2224] device bridge_slave_0 entered promiscuous mode
[   79.081068][ T2224] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.088158][ T2224] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.095656][ T2224] device bridge_slave_1 entered promiscuous mode
[   79.147833][ T2224] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.154765][ T2224] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.161815][ T2224] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.168573][ T2224] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.193773][  T343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.202805][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.210203][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.229989][  T334] device bridge_slave_1 left promiscuous mode
[   79.235979][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.243711][  T334] device bridge_slave_0 left promiscuous mode
[   79.249861][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.257834][  T334] device veth1_macvtap left promiscuous mode
[   79.264275][  T334] device veth0_vlan left promiscuous mode
[   79.342308][ T1490] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   79.350478][ T1490] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.357383][ T1490] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.364673][ T1490] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   79.373619][ T1490] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.380474][ T1490] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.387890][ T1490] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   79.395846][ T1490] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   79.414206][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   79.424763][ T1490] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   79.433135][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   79.440655][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   79.448437][ T2224] device veth0_vlan entered promiscuous mode
[   79.461254][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   79.471064][ T2224] device veth1_macvtap entered promiscuous mode
[   79.487593][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   79.509102][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   79.590017][ T2251] EXT4-fs (loop3): Ignoring removed orlov option
[   79.596259][ T2251] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[   79.715663][ T2251] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue
[   80.380171][ T2283] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.387450][ T2283] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.414599][ T2283] device bridge_slave_0 entered promiscuous mode
[   80.687807][ T2283] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.705223][ T2283] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.719307][ T2283] device bridge_slave_1 entered promiscuous mode
[   80.819803][ T2304] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   80.846396][ T2304] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz-executor.4: iget: bad i_size value: -67835469387268086
[   80.869069][ T2304] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz-executor.4: couldn't read orphan inode 15 (err -117)
[   80.881471][ T2304] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   80.890752][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   80.898109][ T2304] ext2 filesystem being mounted at /root/syzkaller-testdir307618670/syzkaller.Ob1rkp/47/file0 supports timestamps until 2038 (0x7fffffff)
[   80.898242][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   80.917674][ T2318] x_tables: ip6_tables: SECMARK.0 target: invalid size 264 (kernel) != (user) 252
[   80.929355][ T2313] EXT4-fs (loop0): Ignoring removed orlov option
[   80.935502][ T2313] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[   80.943856][   T24] kauditd_printk_skb: 3014 callbacks suppressed
[   80.943869][   T24] audit: type=1326 audit(1718522321.259:11386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   80.957263][ T2313] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue
[   80.974306][   T24] audit: type=1326 audit(1718522321.259:11387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.018809][   T24] audit: type=1326 audit(1718522321.259:11388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.019668][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   81.042811][   T24] audit: type=1326 audit(1718522321.259:11389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.061335][ T2322] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[   81.074604][   T24] audit: type=1326 audit(1718522321.259:11390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.090316][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   81.110948][   T24] audit: type=1326 audit(1718522321.259:11391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.119687][  T512] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.148668][  T512] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.149705][   T24] audit: type=1326 audit(1718522321.259:11392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.155996][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   81.188394][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   81.196439][  T512] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.203319][  T512] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.213910][   T24] audit: type=1326 audit(1718522321.259:11393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.218864][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   81.238194][   T24] audit: type=1326 audit(1718522321.439:11394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.268978][  T512] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   81.277056][   T24] audit: type=1326 audit(1718522321.439:11395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2303 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd085ffea9 code=0x7ffc0000
[   81.287558][ T2283] device veth0_vlan entered promiscuous mode
[   81.307997][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   81.319376][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   81.337589][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   81.345362][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   81.352787][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   81.369788][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   81.378897][ T2283] device veth1_macvtap entered promiscuous mode
[   81.388188][ T1609] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   81.461898][ T1609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   81.478817][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   81.489181][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   81.907684][ T2351] syz-executor.3[2351] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.907739][ T2351] syz-executor.3[2351] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.960296][  T334] device bridge_slave_1 left promiscuous mode
[   81.980878][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.989686][  T334] device bridge_slave_0 left promiscuous mode
[   81.995749][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.009133][  T334] device veth1_macvtap left promiscuous mode
[   82.015492][  T334] device veth0_vlan left promiscuous mode
[   82.089284][ T2370] exfat: Deprecated parameter 'utf8'
[   82.097116][ T2370] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xcc9b7de9, utbl_chksum : 0xe619d30d)
[   82.133025][ T2370] kvm: pic: single mode not supported
[   82.133034][ T2370] kvm: pic: level sensitive irq not supported
[   82.138501][ T2370] kvm: pic: single mode not supported
[   82.144439][ T2370] kvm: pic: level sensitive irq not supported
[   82.149815][ T2370] kvm: pic: single mode not supported
[   82.156032][ T2370] kvm: pic: level sensitive irq not supported
[   82.161537][ T2370] kvm: pic: single mode not supported
[   82.167440][ T2370] kvm: pic: level sensitive irq not supported
[   82.173561][ T2370] kvm: pic: single mode not supported
[   82.179503][ T2370] kvm: pic: level sensitive irq not supported
[   82.185134][ T2370] kvm: pic: single mode not supported
[   82.191171][ T2370] kvm: pic: level sensitive irq not supported
[   82.196916][ T2370] kvm: pic: single mode not supported
[   82.202869][ T2370] kvm: pic: level sensitive irq not supported
[   82.208433][ T2370] kvm: pic: single mode not supported
[   82.214400][ T2370] kvm: pic: level sensitive irq not supported
[   82.219780][ T2370] kvm: pic: single mode not supported
[   82.225953][ T2370] kvm: pic: level sensitive irq not supported
[   82.231388][ T2370] kvm: pic: single mode not supported
[   82.237296][ T2370] kvm: pic: level sensitive irq not supported
[   82.516813][ T2370] kvm: pic: non byte write
[   82.528350][ T2370] kvm: pic: non byte read
[   82.584283][ T2404] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=2404 comm=syz-executor.0
[   83.018858][  T349] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   83.041026][ T2422] kvm: pic: non byte write
[   83.076499][ T2427] fscrypt: AES-256-CTS-CBC using implementation "cts(cbc-aes-aesni)"
[   83.170244][ T2438] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,max_dir_size_kb=0x00000000000007b1,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue
[   83.341913][ T2443] overlayfs: './file2' not a directory
[   83.515534][  T349] usb 1-1: Using ep0 maxpacket: 8
[   83.571810][ T2447] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz-executor.3: casefold flag without casefold feature
[   83.584918][ T2447] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #2: comm syz-executor.3: missing EA_INODE flag
[   83.598896][ T2447] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz-executor.3: error while reading EA inode 2 err=-117
[   83.611759][ T2447] EXT4-fs (loop3): 1 orphan inode deleted
[   83.617292][ T2447] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   83.728736][  T349] usb 1-1: unable to get BOS descriptor or descriptor too short
[   83.854995][  T349] usb 1-1: config 0 has no interfaces?
[   84.598599][ T2466] syz-executor.3[2466] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.600151][ T2466] syz-executor.3[2466] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.668787][  T349] usb 1-1: string descriptor 0 read error: -22
[   84.687005][  T349] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   84.696091][  T349] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.710442][  T349] usb 1-1: config 0 descriptor??
[   85.104038][  T346] usb 1-1: USB disconnect, device number 5
[   85.122396][ T2489] serio: Serial port pts0
[   85.139065][    T5] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   85.359629][ T2498] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   85.369538][ T2498] EXT4-fs (loop1): failed to initialize system zone (-117)
[   85.376648][ T2498] EXT4-fs (loop1): mount failed
[   85.498793][    T5] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[   85.509539][    T5] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   85.520647][    T5] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   85.530196][    T5] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   85.628833][    T5] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[   85.638286][    T5] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[   85.647683][    T5] usb 5-1: Manufacturer: syz
[   85.654492][    T5] usb 5-1: config 0 descriptor??
[   85.988764][  T306] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   85.998731][ T1490] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   86.149271][    T5] appleir 0003:05AC:8243.000B: unknown main item tag 0x0
[   86.156250][    T5] appleir 0003:05AC:8243.000B: No inputs registered, leaving
[   86.164327][    T5] appleir 0003:05AC:8243.000B: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[   86.238783][  T306] usb 1-1: Using ep0 maxpacket: 32
[   86.388854][  T306] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[   86.400042][  T306] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[   86.411075][ T1490] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[   86.422086][  T306] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   86.431270][ T1490] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   86.441973][  T306] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.449781][ T1490] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   86.459690][ T1490] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   86.472597][  T306] usb 1-1: config 0 descriptor??
[   86.498829][ T2519] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   86.519300][  T306] hub 1-1:0.0: USB hub found
[   86.568804][ T1490] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[   86.577656][ T1490] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[   86.585590][ T1490] usb 2-1: Manufacturer: syz
[   86.590433][ T1490] usb 2-1: config 0 descriptor??
[   86.721114][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.728458][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.735688][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.742904][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.750068][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.757302][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.764648][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.771905][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.779528][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.782712][ T2531] fuse: Bad value for 'fd'
[   86.786749][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.798333][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.805643][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.812854][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.820101][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.827240][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.834542][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.841870][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.849120][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.856279][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.863511][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.870751][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.877906][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.885112][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.892327][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.899555][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.906710][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.913942][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.921297][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.928487][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.935934][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.943119][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.950302][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.957489][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.964720][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.971914][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.979121][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.986431][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   86.988716][    T5] usb 4-1: new low-speed USB device number 4 using dummy_hcd
[   86.993674][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   87.008305][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   87.015711][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   87.022856][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   87.030048][  T450] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   87.037720][  T450] hid-generic 0000:0000:0000.000C: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   87.049253][ T1490] appleir 0003:05AC:8243.000D: unknown main item tag 0x0
[   87.056185][ T1490] appleir 0003:05AC:8243.000D: No inputs registered, leaving
[   87.064201][ T1490] appleir 0003:05AC:8243.000D: hiddev97,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[   87.075248][  T306] hub 1-1:0.0: config failed, can't read hub descriptor (err -22)
[   87.178782][  T306] usbhid 1-1:0.0: can't add hid device: -71
[   87.184595][  T306] usbhid: probe of 1-1:0.0 failed with error -71
[   87.218978][  T306] usb 1-1: USB disconnect, device number 6
[   87.378794][    T5] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[   87.387023][    T5] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[   87.394882][    T5] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[   87.403583][    T5] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[   87.413387][    T5] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   87.469784][ T1490] usb 2-1: USB disconnect, device number 5
[   87.778806][    T5] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[   87.787642][    T5] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.795621][    T5] usb 4-1: Product: Д
[   87.799463][    T5] usb 4-1: Manufacturer: ц
[   87.804325][    T5] usb 4-1: config 0 descriptor??
[   87.849102][    T5] hub 4-1:0.0: bad descriptor, ignoring hub
[   87.854879][    T5] hub: probe of 4-1:0.0 failed with error -5
[   87.861154][    T5] input: ц Д as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input8
[   87.983984][   T24] kauditd_printk_skb: 1214 callbacks suppressed
[   87.983995][   T24] audit: type=1400 audit(1718522328.299:12610): avc:  denied  { connect } for  pid=2540 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   88.070700][   T24] audit: type=1400 audit(1718522328.389:12611): avc:  denied  { ioctl } for  pid=2529 comm="syz-executor.3" path="socket:[25859]" dev="sockfs" ino=25859 ioctlcmd=0x1275 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   88.552809][ T2546] xt_CT: You must specify a L4 protocol and not use inversions on it
[   88.565669][  T450] usb 5-1: USB disconnect, device number 9
[   88.678013][ T2550] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x0b0ca5f0, utbl_chksum : 0xe619d30d)
[   88.980485][ T2565] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.987453][ T2565] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.997732][ T2565] device bridge_slave_1 left promiscuous mode
[   89.006315][ T2565] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.016304][ T2565] device bridge_slave_0 left promiscuous mode
[   89.022751][ T2565] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.029790][  T450] usb 4-1: USB disconnect, device number 4
[   89.147814][ T2588] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[   89.157186][ T2588] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[   89.255080][ T2597] xt_CT: You must specify a L4 protocol and not use inversions on it
[   89.434851][ T2593] FAT-fs (loop0): Directory bread(block 64) failed
[   89.441426][ T2593] FAT-fs (loop0): Directory bread(block 65) failed
[   89.447911][ T2593] FAT-fs (loop0): Directory bread(block 66) failed
[   89.454427][ T2593] FAT-fs (loop0): Directory bread(block 67) failed
[   89.460967][ T2593] FAT-fs (loop0): Directory bread(block 68) failed
[   89.467356][ T2593] FAT-fs (loop0): Directory bread(block 69) failed
[   89.473907][ T2593] FAT-fs (loop0): Directory bread(block 70) failed
[   89.484902][ T2593] FAT-fs (loop0): Directory bread(block 71) failed
[   89.510348][ T2593] FAT-fs (loop0): Directory bread(block 72) failed
[   89.532451][ T2593] FAT-fs (loop0): Directory bread(block 73) failed
[   90.656367][ T2602] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   90.679577][ T2602] EXT4-fs (loop1): orphan cleanup on readonly fs
[   90.726008][ T2602] Quota error (device loop1): v2_read_file_info: Can't read info structure
[   90.734744][ T2602] EXT4-fs warning (device loop1): ext4_enable_quotas:6455: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[   90.749839][ T2602] EXT4-fs (loop1): Cannot turn on quotas: error -5
[   90.760119][ T2602] EXT4-fs (loop1): 1 truncate cleaned up
[   90.765821][ T2602] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   90.979306][   T24] audit: type=1400 audit(1718522331.299:12612): avc:  denied  { module_load } for  pid=2627 comm="syz-executor.3" path="/root/syzkaller-testdir765032252/syzkaller.hTO0ly/142/bus" dev="sda1" ino=1985 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=system permissive=1
[   91.091518][ T2637] syz-executor.3[2637] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.091553][ T2637] syz-executor.3[2637] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.106519][ T2637] syz-executor.3[2637] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.118167][  T306] usb 1-1: new low-speed USB device number 7 using dummy_hcd
[   91.118238][ T2637] syz-executor.3[2637] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.659438][ T2641] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[   91.679204][ T2641] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   91.704905][ T2641] F2FS-fs (loop4): invalid crc value
[   91.716216][ T2641] F2FS-fs (loop4): Found nat_bits in checkpoint
[   91.752582][ T2641] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   91.759612][ T2641] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   91.766951][ T2647] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.774255][ T2647] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.781858][ T2647] device bridge_slave_0 entered promiscuous mode
[   91.788921][ T2647] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.795820][ T2647] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.803988][ T2647] device bridge_slave_1 entered promiscuous mode
[   91.863898][ T2647] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.870813][ T2647] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.877933][ T2647] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.884778][ T2647] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.908474][  T306] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[   91.957042][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   91.967539][  T450] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.984823][  T450] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.031690][   T24] audit: type=1400 audit(1718522332.339:12613): avc:  denied  { ioctl } for  pid=2640 comm="syz-executor.4" path="/root/syzkaller-testdir307618670/syzkaller.Ob1rkp/69/bus/file0" dev="loop4" ino=455 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   92.082384][ T2654] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[   92.114642][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   92.117204][  T306] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[   92.131443][  T306] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[   92.133147][ T1900] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.140317][  T306] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[   92.146961][ T1900] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.164888][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   92.177467][ T1900] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.178919][  T306] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   92.184390][ T1900] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.209649][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   92.217612][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   92.234837][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   92.245574][ T2647] device veth0_vlan entered promiscuous mode
[   92.252996][ T1900] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   92.260779][ T2661] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz-executor.3: casefold flag without casefold feature
[   92.273976][ T2661] EXT4-fs error (device loop3): __ext4_iget:4958: inode #12: block 2: comm syz-executor.3: invalid block
[   92.285468][ T2661] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz-executor.3: error while reading EA inode 12 err=-117
[   92.298217][ T2661] EXT4-fs (loop3): 1 orphan inode deleted
[   92.306545][ T2647] device veth1_macvtap entered promiscuous mode
[   92.313819][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   92.315739][ T2661] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[   92.322428][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   92.337704][  T450] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   92.352401][   T24] audit: type=1400 audit(1718522332.669:12614): avc:  denied  { mounton } for  pid=2660 comm="syz-executor.3" path="/root/syzkaller-testdir765032252/syzkaller.hTO0ly/147/file0/bus" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   92.389212][ T1609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   92.398513][ T1609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   92.412027][   T24] audit: type=1400 audit(1718522332.729:12615): avc:  denied  { unmount } for  pid=1441 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   92.437091][    T7] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   92.446334][   T24] audit: type=1400 audit(1718522332.749:12616): avc:  denied  { remove_name } for  pid=1441 comm="syz-executor.3" name="bus" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   92.470143][    T7] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   92.609612][  T334] device bridge_slave_1 left promiscuous mode
[   92.618524][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.625956][  T334] device bridge_slave_0 left promiscuous mode
[   92.632572][  T306] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[   92.641707][  T306] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.650149][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.657429][  T306] usb 1-1: Product: Д
[   92.662104][  T306] usb 1-1: Manufacturer: ц
[   92.911349][  T334] device veth1_macvtap left promiscuous mode
[   92.917434][  T334] device veth0_vlan left promiscuous mode
[   92.923181][  T306] usb 1-1: config 0 descriptor??
[   92.969331][  T306] hub 1-1:0.0: bad descriptor, ignoring hub
[   92.975100][  T306] hub: probe of 1-1:0.0 failed with error -5
[   92.994177][  T306] input: ц Д as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input9
[   93.661247][   T24] audit: type=1326 audit(1718522333.979:12617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.685677][   T24] audit: type=1326 audit(1718522333.979:12618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.714887][   T24] audit: type=1326 audit(1718522334.009:12619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=197 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.739645][   T24] audit: type=1326 audit(1718522334.009:12620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.772936][   T24] audit: type=1326 audit(1718522334.009:12621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.797213][   T24] audit: type=1326 audit(1718522334.009:12622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.821345][   T24] audit: type=1326 audit(1718522334.009:12623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.845916][   T24] audit: type=1326 audit(1718522334.009:12624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.878953][ T2733] process 'syz-executor.4' launched '/dev/fd/-1/./file0' with NULL argv: empty string added
[   93.900228][ T1609] usb 1-1: USB disconnect, device number 7
[   93.902386][   T24] audit: type=1326 audit(1718522334.009:12625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   93.937404][   T24] audit: type=1326 audit(1718522334.009:12626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2723 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd09025dea9 code=0x7ffc0000
[   94.397674][ T2798] fuse: Bad value for 'fd'
[   94.451618][ T2812] netem: change failed
[   94.505446][ T2825] syz-executor.4[2825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.505499][ T2825] syz-executor.4[2825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.600947][ T2840] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[   95.209670][ T2869] incfs_lookup_dentry err:-14
[   95.214311][ T2869] incfs: Can't find or create .incomplete dir in ./file0
[   95.221457][ T2869] incfs: mount failed -14
[   95.285766][ T2876] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2876 comm=syz-executor.2
[   95.329763][  T346] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   95.418040][ T2890] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[   95.654816][ T2909] incfs_lookup_dentry err:-14
[   95.659815][ T2909] incfs: Can't find or create .incomplete dir in ./file0
[   95.676076][ T2909] incfs: mount failed -14
[   95.754497][ T2920] fuse: Bad value for 'fd'
[   95.768734][  T346] usb 5-1: Using ep0 maxpacket: 8
[   95.872821][ T2934] raw_sendmsg: syz-executor.2 forgot to set AF_INET. Fix it!
[   95.898799][  T346] usb 5-1: config 135 has an invalid interface number: 230 but max is 0
[   95.906958][  T346] usb 5-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[   95.917079][  T346] usb 5-1: config 135 has no interface number 0
[   95.923271][  T346] usb 5-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[   96.058774][  T512] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[   96.158894][  T346] usb 5-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[   96.167847][  T346] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.175577][  T346] usb 5-1: Product: syz
[   96.179636][  T346] usb 5-1: Manufacturer: syz
[   96.183980][  T346] usb 5-1: SerialNumber: syz
[   96.229325][  T346] uvcvideo: Found UVC 0.00 device syz (18ec:3288)
[   96.235745][  T346] uvcvideo: No valid video chain found.
[   96.278709][    T5] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[   96.548440][ T2456] usb 5-1: USB disconnect, device number 10
[   96.598929][  T512] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   96.609826][  T512] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[   96.620451][  T512] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   96.633312][  T512] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   96.643359][  T512] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.652203][  T512] usb 4-1: config 0 descriptor??
[   96.668765][ T2929] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   96.723190][ T2991] geneve1: tun_chr_ioctl cmd 2147767517
[   96.798823][    T5] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   96.809748][    T5] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   96.819345][    T5] usb 3-1: New USB device found, idVendor=056e, idProduct=00fb, bcdDevice= 0.00
[   96.828281][    T5] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.836895][    T5] usb 3-1: config 0 descriptor??
[   97.129450][  T512] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[   97.136939][  T512] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[   97.149747][  T512] plantronics 0003:047F:FFFF.000E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   97.248697][  T349] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[   97.309393][    T5] elecom 0003:056E:00FB.000F: unknown main item tag 0x0
[   97.316636][    T5] elecom 0003:056E:00FB.000F: hidraw1: USB HID v0.07 Device [HID 056e:00fb] on usb-dummy_hcd.2-1/input0
[   97.468708][  T512] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[   97.511435][ T2456] usb 3-1: USB disconnect, device number 12
[   97.648787][  T349] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[   97.659507][  T349] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.670365][    T5] usb 2-1: new low-speed USB device number 6 using dummy_hcd
[   97.677632][  T349] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   97.687120][  T349] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   97.708678][  T512] usb 5-1: Using ep0 maxpacket: 16
[   97.798930][  T349] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[   97.807857][  T349] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[   97.815695][  T349] usb 1-1: Manufacturer: syz
[   97.820802][  T349] usb 1-1: config 0 descriptor??
[   97.828846][  T512] usb 5-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[   97.837780][  T512] usb 5-1: too many endpoints for config 1 interface 1 altsetting 1: 111, using maximum allowed: 30
[   97.848354][  T512] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   97.858932][  T512] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   97.868318][  T512] usb 5-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 111
[   97.881381][  T512] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   97.892070][  T512] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[   98.058739][  T512] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   98.067605][  T512] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.075974][  T512] usb 5-1: Product: syz
[   98.078832][    T5] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[   98.080019][  T512] usb 5-1: Manufacturer: syz
[   98.088242][    T5] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[   98.092467][  T512] usb 5-1: SerialNumber: syz
[   98.105042][    T5] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[   98.113693][    T5] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[   98.123467][    T5] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   98.289314][  T349] appleir 0003:05AC:8243.0010: unknown main item tag 0x0
[   98.296345][  T349] appleir 0003:05AC:8243.0010: No inputs registered, leaving
[   98.304988][  T349] appleir 0003:05AC:8243.0010: hiddev97,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[   98.379927][ T3056] EXT4-fs warning (device sda1): __ext4_ioctl:890: Setting inode version is not supported with metadata_csum enabled.
[   98.642925][ T3058] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   98.653357][ T3058] EXT4-fs (loop4): orphan cleanup on readonly fs
[   98.660094][ T3058] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz-executor.4: iget: bad i_size value: -6917529027641081756
[   98.673978][ T3058] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz-executor.4: couldn't read orphan inode 17 (err -117)
[   98.686386][ T3058] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[   98.717211][   T24] kauditd_printk_skb: 160 callbacks suppressed
[   98.717222][   T24] audit: type=1326 audit(1718522339.029:12787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.747072][    T5] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[   98.747085][    T5] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.747093][    T5] usb 2-1: Product: Д
[   98.747102][    T5] usb 2-1: Manufacturer: ц
[   98.772466][    T5] usb 2-1: config 0 descriptor??
[   98.772716][   T24] audit: type=1326 audit(1718522339.029:12788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.801185][   T24] audit: type=1326 audit(1718522339.029:12789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.825228][   T24] audit: type=1326 audit(1718522339.039:12790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.829118][    T5] hub 2-1:0.0: bad descriptor, ignoring hub
[   98.855095][    T5] hub: probe of 2-1:0.0 failed with error -5
[   98.855448][   T24] audit: type=1326 audit(1718522339.069:12791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.861644][    T5] input: ц Д as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input10
[   98.891304][   T24] audit: type=1326 audit(1718522339.079:12792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.917713][   T24] audit: type=1326 audit(1718522339.089:12793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.943336][   T24] audit: type=1326 audit(1718522339.089:12794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.973128][   T24] audit: type=1326 audit(1718522339.089:12795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3067 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7ffc0000
[   98.998623][   T24] audit: type=1400 audit(1718522339.289:12796): avc:  denied  { getopt } for  pid=3074 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   99.058723][ T3079] usb 4-1: string descriptor 0 read error: -71
[   99.179150][ T3085]  loop3: p3 < > p4 < >
[   99.183228][ T3085] loop3: partition table partially beyond EOD, truncated
[   99.190308][ T3085] loop3: p3 start 4284289 is beyond EOD, truncated
[   99.239438][  T450] usb 4-1: USB disconnect, device number 5
[   99.264373][ T3089] futex_wake_op: syz-executor.2 tries to shift op by 32; fix this program
[   99.354265][ T3097] attempt to access beyond end of device
[   99.354265][ T3097] loop2: rw=0, want=161, limit=128
[   99.547173][  T349] usb 2-1: USB disconnect, device number 6
[   99.606307][ T3124] futex_wake_op: syz-executor.1 tries to shift op by 32; fix this program
[   99.659401][ T3126] request_module fs-ceph succeeded, but still no fs?
[   99.830504][ T3128] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[   99.839313][ T3128] ext4 filesystem being mounted at /root/syzkaller-testdir481792348/syzkaller.2bhXda/95/file0 supports timestamps until 2038 (0x7fffffff)
[  100.078373][  T450] usb 1-1: USB disconnect, device number 8
[  100.312847][ T3155] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  100.320782][ T3155] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  100.330678][ T3155] F2FS-fs (loop0): invalid crc value
[  100.331454][  T512] usb 5-1: USB disconnect, device number 11
[  100.418411][ T3155] F2FS-fs (loop0): Found nat_bits in checkpoint
[  100.440297][ T3177] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  100.457360][ T3182] device batadv_slave_1 entered promiscuous mode
[  100.458739][ T3155] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  100.469757][ T3177] FAT-fs (loop5): unable to read boot sector
[  100.476230][ T3155] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  100.569532][ T3185] EXT4-fs (loop4): Value of option "test_dummy_encryption=test_dummy_encryption" is unrecognized
[  100.580583][ T3155] attempt to access beyond end of device
[  100.580583][ T3155] loop0: rw=10241, want=45104, limit=40427
[  101.164058][ T3216] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  101.237544][ T3171] device batadv_slave_1 left promiscuous mode
[  102.048786][ T1900] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  102.361394][ T3252] F2FS-fs (loop4): invalid crc value
[  102.540839][ T3252] F2FS-fs (loop4): Found nat_bits in checkpoint
[  102.549080][ T1900] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.604240][ T1900] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  102.680125][ T1900] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  102.699953][ T1900] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.707843][ T3252] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  102.723769][ T1900] usb 4-1: config 0 descriptor??
[  103.017005][ T3281] attempt to access beyond end of device
[  103.017005][ T3281] loop4: rw=10241, want=45104, limit=40427
[  103.029379][ T3281] attempt to access beyond end of device
[  103.029379][ T3281] loop4: rw=2049, want=45112, limit=40427
[  103.220127][ T3283] SELinux: security_context_str_to_sid(s) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  103.337154][ T1467] attempt to access beyond end of device
[  103.337154][ T1467] loop4: rw=2049, want=45128, limit=40427
[  103.359549][ T1900] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  103.379109][ T1900] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  103.386647][ T1900] plantronics 0003:047F:FFFF.0011: No inputs registered, leaving
[  103.410867][ T1900] plantronics 0003:047F:FFFF.0011: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  103.489465][ T3297] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  103.496579][ T3297] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  103.519152][ T3297] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002]
[  103.526902][ T3297] System zones: 1-12
[  103.555404][ T3297] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz-executor.0: casefold flag without casefold feature
[  103.579481][ T3297] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.0: missing EA_INODE flag
[  103.591827][ T3297] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 12 err=-117
[  103.605122][ T3302] EXT4-fs (loop1): Value of option "test_dummy_encryption=test_dummy_encryption" is unrecognized
[  103.615698][ T3297] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  103.628809][ T3297] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.0: missing EA_INODE flag
[  103.642150][ T3297] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 12 err=-117
[  103.654955][ T1900] usb 4-1: USB disconnect, device number 6
[  103.664825][ T3297] EXT4-fs (loop0): 1 orphan inode deleted
[  103.670604][ T3297] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,user_xattr,debug_want_extra_isize=0x000000000000005c,debug,mblk_io_submit,errors=continue,usrjquota=,prjquota,nodiscard,,errors=continue
[  104.180546][ T3313] F2FS-fs (loop1): invalid crc value
[  104.193804][ T3313] F2FS-fs (loop1): Found nat_bits in checkpoint
[  104.268936][ T3313] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  104.432723][   T24] kauditd_printk_skb: 20 callbacks suppressed
[  104.432735][   T24] audit: type=1400 audit(1718522344.749:12817): avc:  denied  { map } for  pid=3331 comm="syz-executor.2" path="socket:[28964]" dev="sockfs" ino=28964 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  104.697540][ T3333] attempt to access beyond end of device
[  104.697540][ T3333] loop1: rw=10241, want=45104, limit=40427
[  104.710033][ T3333] attempt to access beyond end of device
[  104.710033][ T3333] loop1: rw=2049, want=45112, limit=40427
[  104.868213][ T3345] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  104.879130][ T2283] attempt to access beyond end of device
[  104.879130][ T2283] loop1: rw=2049, want=45128, limit=40427
[  105.380508][ T3366] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #17: comm syz-executor.0: iget: bogus i_mode (0)
[  105.396121][ T3366] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz-executor.0: couldn't read orphan inode 17 (err -117)
[  105.411363][ T3366] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  105.492140][ T3384] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  105.499721][   T24] audit: type=1400 audit(1718522345.819:12818): avc:  denied  { create } for  pid=3365 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  105.501575][ T3366] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz-executor.0: bg 0: block 7: invalid block bitmap
[  105.963379][   T24] audit: type=1400 audit(1718522346.279:12819): avc:  denied  { nlmsg_read } for  pid=3395 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  105.963385][ T3396] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  106.149204][ T3416] exfat: Deprecated parameter 'utf8'
[  106.154418][ T3416] exfat: Deprecated parameter 'namecase'
[  106.174188][ T3416] exfat: Deprecated parameter 'utf8'
[  106.195887][ T3416] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[  106.213276][ T3416] syz-executor.4[3416] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.213330][ T3416] syz-executor.4[3416] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.170309][ T3438] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  107.233434][   T24] audit: type=1326 audit(1718522347.549:12820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3435 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7fc00000
[  107.313310][   T24] audit: type=1326 audit(1718522347.629:12821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3435 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7fc00000
[  107.433355][   T24] audit: type=1326 audit(1718522347.749:12822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3435 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7fc00000
[  107.458363][ T3475] EXT4-fs (loop1): Ignoring removed orlov option
[  107.470735][ T3475] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  107.492379][ T3475] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,errors=continue,noauto_da_alloc,nomblk_io_submit,,errors=continue
[  107.525078][   T24] audit: type=1400 audit(1718522347.839:12823): avc:  denied  { map } for  pid=3474 comm="syz-executor.1" path="/root/syzkaller-testdir481792348/syzkaller.2bhXda/122/file1/file0/bus" dev="devtmpfs" ino=112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  107.576070][ T3475] EXT4-fs error (device loop1): get_max_inline_xattr_value_size:68: inode #12: comm syz-executor.1: corrupt xattr in inline inode
[  107.611468][ T3486] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.0'.
[  107.635242][ T3475] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2204: inode #12: comm syz-executor.1: corrupted in-inode xattr
[  107.690203][ T2283] ==================================================================
[  107.698103][ T2283] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xc67/0xc80
[  107.705909][ T2283] Read of size 4 at addr ffff88812a3d0000 by task syz-executor.1/2283
[  107.713911][ T2283] 
[  107.716063][ T2283] CPU: 1 PID: 2283 Comm: syz-executor.1 Tainted: G        W         5.10.214-syzkaller-00187-ge6f44899ce5d #0
[  107.727513][ T2283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  107.737402][ T2283] Call Trace:
2024/06/16 07:19:08 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  107.740542][ T2283]  dump_stack_lvl+0x1e2/0x24b
[  107.745061][ T2283]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  107.750356][ T2283]  ? panic+0x80b/0x80b
[  107.754249][ T2283]  ? ext4_mark_iloc_dirty+0x2c23/0x3e60
[  107.757544][   T24] audit: type=1326 audit(1718522348.009:12824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3435 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bbbbb1ea9 code=0x7fc00000
[  107.759625][ T2283]  print_address_description+0x81/0x3b0
[  107.759634][ T2283]  kasan_report+0x179/0x1c0
[  107.759644][ T2283]  ? __ext4_journal_ensure_credits+0x470/0x470
[  107.759664][ T2283]  ? ext4_xattr_delete_inode+0xc67/0xc80
[  107.804862][ T2283]  ? ext4_xattr_delete_inode+0xc67/0xc80
[  107.810330][ T2283]  __asan_report_load4_noabort+0x14/0x20
[  107.815784][ T2283]  ext4_xattr_delete_inode+0xc67/0xc80
[  107.821083][ T2283]  ? sb_end_intwrite+0x110/0x110
[  107.825858][ T2283]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  107.831758][ T2283]  ? __kasan_check_read+0x11/0x20
[  107.836624][ T2283]  ext4_evict_inode+0x1095/0x1730
[  107.841483][ T2283]  ? ext4_inode_is_fast_symlink+0x360/0x360
[  107.847555][ T2283]  ? inode_io_list_del_locked+0x1ad/0x210
[  107.853105][ T2283]  ? _raw_spin_unlock+0x4d/0x70
[  107.857794][ T2283]  ? ext4_inode_is_fast_symlink+0x360/0x360
[  107.863524][ T2283]  evict+0x2a3/0x6c0
[  107.867250][ T2283]  iput+0x632/0x7e0
[  107.870897][ T2283]  vfs_rmdir+0x271/0x3f0
[  107.874972][ T2283]  do_rmdir+0x2cf/0x5c0
[  107.878965][ T2283]  ? d_delete_notify+0xd0/0xd0
[  107.883566][ T2283]  ? strncpy_from_user+0x18e/0x2d0
[  107.888517][ T2283]  ? getname_flags+0x1fd/0x520
[  107.893203][ T2283]  __x64_sys_unlinkat+0xdf/0xf0
[  107.897886][ T2283]  do_syscall_64+0x34/0x70
[  107.902143][ T2283]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  107.907865][ T2283] RIP: 0033:0x7fd09025d687
[  107.912117][ T2283] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  107.931554][ T2283] RSP: 002b:00007ffedb3ad6e8 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  107.939794][ T2283] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007fd09025d687
[  107.947623][ T2283] RDX: 0000000000000200 RSI: 00007ffedb3ae890 RDI: 00000000ffffff9c
[  107.955419][ T2283] RBP: 00007fd0902ba636 R08: 0000000000000000 R09: 0000000000000000
[  107.963236][ T2283] R10: 0000000000000100 R11: 0000000000000207 R12: 00007ffedb3ae890
[  107.971042][ T2283] R13: 00007fd0902ba636 R14: 000000000001a37d R15: 0000000000000008
[  107.978854][ T2283] 
[  107.981015][ T2283] The buggy address belongs to the page:
[  107.986510][ T2283] page:ffffea0004a8f400 refcount:0 mapcount:-128 mapping:0000000000000000 index:0x1 pfn:0x12a3d0
[  107.996905][ T2283] flags: 0x4000000000000000()
[  108.001431][ T2283] raw: 4000000000000000 ffffea0004ae8808 ffffea0004b1f208 0000000000000000
[  108.009972][ T2283] raw: 0000000000000001 0000000000000003 00000000ffffff7f 0000000000000000
[  108.018371][ T2283] page dumped because: kasan: bad access detected
[  108.024628][ T2283] page_owner tracks the page as freed
[  108.029838][ T2283] page last allocated via order 0, migratetype Movable, gfp_mask 0x100cca(GFP_HIGHUSER_MOVABLE), pid 3431, ts 107064824303, free_ts 107068213128
[  108.044331][ T2283]  prep_new_page+0x166/0x180
[  108.048753][ T2283]  get_page_from_freelist+0x2d8c/0x2f30
[  108.054131][ T2283]  __alloc_pages_nodemask+0x435/0xaf0
[  108.059341][ T2283]  wp_page_copy+0x226/0x1940
[  108.063764][ T2283]  do_wp_page+0x71b/0xca0
[  108.067932][ T2283]  handle_pte_fault+0xd59/0x3e30
[  108.072704][ T2283]  handle_mm_fault+0x11d6/0x1a10
[  108.077481][ T2283]  exc_page_fault+0x2a6/0x5b0
[  108.081991][ T2283]  asm_exc_page_fault+0x1e/0x30
[  108.086676][ T2283] page last free stack trace:
[  108.091195][ T2283]  free_unref_page_prepare+0x2ae/0x2d0
[  108.096486][ T2283]  free_unref_page_list+0x122/0xb20
[  108.101521][ T2283]  release_pages+0xea0/0xef0
[  108.105964][ T2283]  free_pages_and_swap_cache+0x8a/0xa0
[  108.111337][ T2283]  tlb_finish_mmu+0x177/0x320
[  108.115839][ T2283]  exit_mmap+0x312/0x5c0
[  108.119919][ T2283]  __mmput+0x95/0x2d0
[  108.123735][ T2283]  mmput+0x59/0x170
[  108.127389][ T2283]  do_exit+0xbda/0x2a50
[  108.131375][ T2283]  do_group_exit+0x141/0x310
[  108.135815][ T2283]  get_signal+0x10a0/0x1410
[  108.140142][ T2283]  arch_do_signal_or_restart+0xbd/0x17c0
[  108.145610][ T2283]  exit_to_user_mode_loop+0x9b/0xd0
[  108.150647][ T2283]  syscall_exit_to_user_mode+0xc5/0x1d0
[  108.156185][ T2283]  do_syscall_64+0x40/0x70
[  108.160419][ T2283]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  108.166147][ T2283] 
[  108.168312][ T2283] Memory state around the buggy address:
[  108.173786][ T2283]  ffff88812a3cff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  108.181679][ T2283]  ffff88812a3cff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  108.189661][ T2283] >ffff88812a3d0000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  108.197645][ T2283]                    ^
[  108.201550][ T2283]  ffff88812a3d0080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  108.209711][ T2283]  ffff88812a3d0100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  108.217608][ T2283] ==================================================================
[  108.225504][ T2283] Disabling lock debugging due to kernel taint