last executing test programs:

7.494803757s ago: executing program 3 (id=877):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1807000000000000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1b, 0x0, 0x4, 0x83}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$addseals(r1, 0x409, 0x8)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$inet6(r5, &(0x7f0000003080)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32], 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
ioctl$TIOCL_SELLOADLUT(0xffffffffffffffff, 0x541c, &(0x7f0000000280)={0x5, 0x7, 0x0, 0xdee8, 0x5})
r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_UIE_ON(r7, 0x7003)
ioctl$RTC_SET_TIME(r7, 0x4024700a, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x0, 0x4f})
write$tun(0xffffffffffffffff, &(0x7f0000000740)=ANY=[], 0x129)

6.612355469s ago: executing program 3 (id=882):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4e7, 0x30, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x3b)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r1, &(0x7f0000000380), 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000ffff000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000380)={0x2c, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000700000007000047fc6b"], 0x0, 0x0, 0x0, 0x0}, 0x0)

6.155869276s ago: executing program 4 (id=886):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1d, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r3, &(0x7f00000004c0)="cf", 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000fd00000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
syz_clone(0x42024180, 0x0, 0x0, 0x0, 0x0, 0x0)

5.288676907s ago: executing program 4 (id=892):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYRES16], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet(0x2, 0x4000000805, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x71, &(0x7f00000003c0)='Oproc/sys\x00net/\x00\x00v4\x00\x00s/\x92y\x03\xc0\xb8+\xab\xbbY\xcb\xf3sc_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1\xeeu\x8b\x05\xb4\xa0\xab5\xe0\xeb\x13X\x0f\xaf\xc7\'\xe7R\xb9\x17o\xb9+\x13\vl\xf0\xac\xcft\xf2\"\xf4\x1c\xcau\xa1\x03\xa0\xdf\x8fj!\x04\x18F\xe9\x19\xc0i\xa3M>-i\xda\x17\x00\x99I\xdb\x9c'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r4, &(0x7f0000000680)=""/184, 0xb8)
getdents64(r4, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c010000100001000000000000000000ac1414aa000000000000000000000000fc00000000000000000000000000000000000000000000000a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000000003c0000f1fd88000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c001400736861312d61736d00"/241], 0x13c}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006}]})
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000000))

5.090916644s ago: executing program 0 (id=888):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r1}, 0x10)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x44f, 0xb653, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xff, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)

4.285743569s ago: executing program 4 (id=895):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$selinux_access(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="73797374656d5f753a6f626af7db745f723a6c6f67696e5f657865635f743a7330202f7573728b944cefe3332f6c69622f74656c6570617468792f6d697373696f6e2d636f6e747f6f6c2d352030"], 0x5c)

4.27895287s ago: executing program 4 (id=896):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x5e, &(0x7f0000000300)={[{@debug}, {@grpquota}, {@i_version}, {@data_err_ignore}]}, 0x1, 0x44b, &(0x7f0000000dc0)="$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")
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x4000001)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000001fc0)=""/4086, 0xff6)

4.188189458s ago: executing program 4 (id=898):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
r6 = getpid()
r7 = inotify_init1(0x0)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000040)={0x0, <r8=>0x0})
kcmp(r6, r8, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, 0x0, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0xfffffd66, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000980)=ANY=[@ANYBLOB="9c010000010a010100"], 0x19c}}, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x22, &(0x7f0000356000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000340)={0xa, 0x0, 0x0, @empty}, 0x1c)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r11, &(0x7f0000000240), 0x3af4701e)
sendfile(r1, r10, 0x0, 0x10000a007)

4.083735686s ago: executing program 3 (id=899):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000401904000600000000000109022400010000000009040000010300000009210000120122050009058103"], 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
keyctl$search(0xa, 0x0, 0xfffffffffffffffe, 0x0, 0x0)
chdir(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

3.923055109s ago: executing program 1 (id=903):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000026000000850000000700000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000640)="d9b9547ed3c0021a6fd6a67ab922", 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.870124973s ago: executing program 4 (id=904):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r0, &(0x7f0000000100)='reno\x00', 0x5)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@cgroup=r2, r1, 0x12, 0x0, 0x0, @prog_id}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
write$tcp_congestion(r0, &(0x7f0000000300)='reno\x00', 0x5)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
write$tcp_congestion(r0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, 0x0)
r6 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$HIDIOCGRDESC(r6, 0x90044802, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0x541b, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000000180), 0xfc, 0x57c, &(0x7f00000013c0)="$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")

3.869875633s ago: executing program 1 (id=905):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1d, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r3, &(0x7f00000004c0)="cf", 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000fd00000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
syz_clone(0x42024180, 0x0, 0x0, 0x0, 0x0, 0x0)

2.989638456s ago: executing program 1 (id=908):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1b96, 0xa, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000d40)={0x2c, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00\a'], 0x0, 0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000700)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0})

2.56737517s ago: executing program 0 (id=909):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x7ffffffb, 0x0, 0x0, 0x0, 0xac})

1.923545233s ago: executing program 0 (id=912):
r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
readv(r0, &(0x7f0000000600)=[{&(0x7f0000000400)=""/44, 0x2c}], 0x1)

1.923244423s ago: executing program 2 (id=913):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc}, 0x48)

1.922989633s ago: executing program 3 (id=914):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10001)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace$setregset(0x4205, r0, 0x202, &(0x7f00000003c0)={&(0x7f0000000340)="21577d0a003b815e9a8903bab4a2c3102edd7d1fd2621ffc2e6305f7d0b6d5783d2bd08cb7055487fe9b76ee49c308cf7fc6d195d2c3f15f15e69c2a877ff917f28c5d81ace48865bdd257fb260844d9737728addb7b0ea84650caebb9221369dd13e33e71", 0x65})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[], 0x1c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c0000002100010000004a3662b000000a0000000000000000000000b0041047d59195b193c1f18198ace8e8014917e4dc70eced6c5956b969810c61538dc57e9ee556dc8de81e4bb648034b71e8ebd609297fb5627bd93f29cd14697f6f88df79c8096500d9f4c2b0d36c22a3e0b9d431f9acfb5db64faf"], 0x1c}}, 0x0)

1.910034474s ago: executing program 2 (id=915):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)

1.909299924s ago: executing program 0 (id=916):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000026000000850000000700000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000640)="d9b9547ed3c0021a6fd6a67ab922", 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.867782977s ago: executing program 2 (id=917):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r1)
getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newqdisc={0x4c, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@delchain={0x24, 0x2a, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}}, 0x0)

1.867333737s ago: executing program 2 (id=918):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x400000bc6)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100))
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x8)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100802c, &(0x7f0000000080)={[{@xattr}]})
socket$inet6(0xa, 0x0, 0x7)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
getpid()
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r3 = pidfd_getfd(0xffffffffffffffff, r2, 0x0)
pidfd_getfd(0xffffffffffffffff, r3, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS64(r2, 0x80605414, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000240)={{{@in=@dev={0xac, 0x14, 0x14, 0x31}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20, 0x3b, 0x0, 0xffffffffffffffff}, {0x0, 0xfffffffffffffffe, 0x0, 0x100000001}, {0x0, 0x0, 0x0, 0x200000000}, 0x8000, 0x0, 0x1, 0x1}, {{@in6=@private0, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x0, 0x0, 0x0, 0x7, 0x0, 0x800, 0x3}}, 0xe8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='contention_begin\x00'}, 0x10)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sched_setattr(r0, &(0x7f0000000100)={0x38, 0x3, 0x6, 0x8, 0x3, 0x7, 0x8, 0x10, 0x8, 0x10000}, 0x0)
bind$bt_hci(r4, &(0x7f0000000400)={0x1f, 0xfffb}, 0x6)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_UIE_ON(r5, 0x7003)
ioctl$RTC_AIE_ON(r5, 0x7001)

832.366642ms ago: executing program 0 (id=919):
syz_clone(0x42024180, 0x0, 0x0, 0x0, 0x0, 0x0)

831.698562ms ago: executing program 2 (id=920):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$selinux_access(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="73797374656d5f753a6f626af7db745f723a6c6f67696e5f657865635f743a7330202f7573728b944cefe3332f6c69622f74656c6570617468792f6d697373696f6e2d636f6e747f6f6c2d352030"], 0x5c)

831.393432ms ago: executing program 3 (id=921):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1, 0x8, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000001ac0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
readv(r1, &(0x7f0000000600)=[{&(0x7f0000000400)=""/44, 0x2c}], 0x1)

813.310103ms ago: executing program 3 (id=922):
socket$netlink(0x10, 0x3, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000090003206d0414c340000000000109022400010000a000090400000103010100092100080001220100090581", @ANYRES64], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0)
close(r2)
socketpair$unix(0x1, 0xb19b8c86f713fd4e, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r2, 0x8b2b, &(0x7f0000000000)={'wlan0\x00'})
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
prlimit64(0x0, 0x8, &(0x7f0000000140)={0x800000008, 0x8b}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r3, 0x29, 0x45, 0x0, &(0x7f0000000840)=0x1e)

812.800194ms ago: executing program 2 (id=923):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000000000000046, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3}, 0x0, &(0x7f00000002c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000900))
mount$overlay(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000300)={[], [{@audit}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x10\x00'}]}, 0x1c}}, 0x0)

753.200588ms ago: executing program 1 (id=924):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000001600)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_INIT(r2, &(0x7f0000000380)={0x50}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f0000000200)='./file0/file0\x00', 0x0)

18.760369ms ago: executing program 0 (id=925):
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000500)='./file0\x00', 0x200201a, &(0x7f0000000300)={[{@bsdgroups}]}, 0x1, 0x53a, &(0x7f0000000a80)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$fscrypt_v1(0x0, &(0x7f0000000180)={'fscrypt:', @desc2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x5}]}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280), 0x3, 0x44d, &(0x7f0000000a40)="$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")
listxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000400)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r7 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r7, 0x8982, &(0x7f0000000680)={0x0, 'veth0_to_team\x00', {}, 0x23ff})

18.436658ms ago: executing program 1 (id=926):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000020"], 0xfe44, 0x0)

0s ago: executing program 1 (id=927):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0xe)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x19)

kernel console output (not intermixed with test programs):

lan entered promiscuous mode
[   94.510179][ T1737] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.517106][ T1737] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.524347][ T1737] device bridge_slave_0 entered promiscuous mode
[   94.531607][ T1737] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.538758][ T1737] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.546080][ T1737] device bridge_slave_1 entered promiscuous mode
[   94.572415][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   94.591234][ T1712] device veth1_macvtap entered promiscuous mode
[   94.606639][  T314] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   94.616455][  T314] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   94.692566][ T1737] device veth0_vlan entered promiscuous mode
[   94.705807][ T1737] device veth1_macvtap entered promiscuous mode
[   94.716819][  T314] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   94.726758][  T314] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   94.739685][  T314] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   94.748561][  T314] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.762929][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   94.770931][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   94.778922][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   94.787161][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   94.794872][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   94.796634][ T1203] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   94.802389][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   94.816463][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   94.824550][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   94.831845][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   94.839050][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   94.847232][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   94.855146][   T24] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.861995][   T24] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.869146][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   94.877511][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   94.885426][   T24] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.892272][   T24] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.906287][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   94.913919][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   94.922272][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   94.930319][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   94.938751][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   94.946839][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   94.954892][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   95.020068][ T1754] loop0: detected capacity change from 0 to 2048
[   95.046277][ T1754] EXT4-fs mount: 6 callbacks suppressed
[   95.046301][ T1754] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   95.077837][ T1737] EXT4-fs (loop0): unmounting filesystem.
[   95.105081][ T1761] loop0: detected capacity change from 0 to 512
[   95.112208][ T1761] EXT4-fs: Ignoring removed i_version option
[   95.118641][ T1761] EXT4-fs: Ignoring removed nobh option
[   95.124634][ T1761] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   95.140937][ T1761] EXT4-fs (loop0): 1 truncate cleaned up
[   95.147079][ T1761] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   95.187159][ T1203] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[   95.198437][ T1203] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   95.207210][ T1761] loop0: detected capacity change from 512 to 0
[   95.209374][ T1203] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   95.221208][ T1761] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.360: bg 0: block 3: invalid block bitmap
[   95.224856][ T1203] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   95.243410][ T1737] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /2/bus: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   95.250652][ T1203] usb 2-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00
[   95.279693][ T1737] EXT4-fs (loop0): unmounting filesystem.
[   95.280684][ T1203] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.302795][ T1203] usb 2-1: config 0 descriptor??
[   95.497260][   T28] kauditd_printk_skb: 28 callbacks suppressed
[   95.497782][   T28] audit: type=1400 audit(1724166158.956:259): avc:  denied  { remount } for  pid=1766 comm="syz.4.364" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   95.589685][   T28] audit: type=1400 audit(1724166158.966:260): avc:  denied  { ioctl } for  pid=1766 comm="syz.4.364" path="/dev/rtc0" dev="devtmpfs" ino=171 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   95.698211][   T43] device bridge_slave_1 left promiscuous mode
[   95.704874][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.714527][   T43] device bridge_slave_0 left promiscuous mode
[   95.721212][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.731696][   T43] device veth1_macvtap left promiscuous mode
[   95.803439][   T43] device veth0_vlan left promiscuous mode
[   95.808647][ T1203] nintendo 0003:057E:2009.000B: hidraw0: USB HID v80.00 Device [HID 057e:2009] on usb-dummy_hcd.1-1/input0
[   95.888587][ T1203] nintendo 0003:057E:2009.000B: failed reading SPI flash; ret=-38
[   95.896221][ T1203] nintendo 0003:057E:2009.000B: using factory cal for left stick
[   95.903860][ T1203] nintendo 0003:057E:2009.000B: failed reading SPI flash; ret=-38
[   95.911595][ T1203] nintendo 0003:057E:2009.000B: using factory cal for right stick
[   95.919276][ T1203] nintendo 0003:057E:2009.000B: failed reading SPI flash; ret=-38
[   95.926900][ T1203] nintendo 0003:057E:2009.000B: Failed to read left stick cal, using defaults; e=-38
[   95.936249][ T1203] nintendo 0003:057E:2009.000B: failed reading SPI flash; ret=-38
[   95.944000][ T1203] nintendo 0003:057E:2009.000B: Failed to read right stick cal, using defaults; e=-38
[   95.953405][ T1203] nintendo 0003:057E:2009.000B: failed reading SPI flash; ret=-38
[   95.961091][ T1203] nintendo 0003:057E:2009.000B: using factory cal for IMU
[   95.968130][ T1203] nintendo 0003:057E:2009.000B: failed reading SPI flash; ret=-38
[   95.975763][ T1203] nintendo 0003:057E:2009.000B: Failed to read IMU cal, using defaults; ret=-38
[   95.984792][ T1203] nintendo 0003:057E:2009.000B: Unable to read IMU calibration data
[   95.993048][ T1203] nintendo 0003:057E:2009.000B: Failed to set report mode; ret=-38
[   96.003035][ T1776] netlink: 28 bytes leftover after parsing attributes in process `syz.4.367'.
[   96.011849][ T1203] nintendo 0003:057E:2009.000B: Failed to initialize controller; ret=-38
[   96.032555][ T1203] nintendo 0003:057E:2009.000B: probe - fail = -38
[   96.041354][ T1203] nintendo: probe of 0003:057E:2009.000B failed with error -38
[   96.055024][ T1203] usb 2-1: USB disconnect, device number 6
[   96.073010][   T28] audit: type=1400 audit(1724166159.536:261): avc:  denied  { write } for  pid=1777 comm="syz.4.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   96.137781][ T1769] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.159281][ T1769] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.168582][ T1769] device bridge_slave_0 entered promiscuous mode
[   96.175797][ T1769] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.182950][ T1769] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.192025][ T1769] device bridge_slave_1 entered promiscuous mode
[   96.222043][ T1798] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Dropping request.  Check SNMP counters.
[   96.272199][ T1804] loop3: detected capacity change from 0 to 512
[   96.288905][ T1804] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   96.295347][ T1769] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.297777][ T1804] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038 (0x7fffffff)
[   96.304473][ T1769] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.321298][ T1769] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.328145][ T1769] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.347695][ T1712] EXT4-fs (loop3): unmounting filesystem.
[   96.370488][ T1809] netlink: 16 bytes leftover after parsing attributes in process `syz.3.379'.
[   96.383446][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   96.392344][  T314] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.399889][  T314] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.447585][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   96.455527][ T1262] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.462376][ T1262] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.469557][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   96.477598][ T1262] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.484583][ T1262] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.492257][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   96.500940][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   96.574300][ T1815] loop1: detected capacity change from 0 to 1024
[   96.575209][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   96.580902][ T1815] EXT4-fs: Ignoring removed orlov option
[   96.596830][   T28] audit: type=1400 audit(1724166160.056:262): avc:  denied  { read write } for  pid=1810 comm="syz.3.380" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[   96.620247][ T1815] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   96.623347][ T1769] device veth0_vlan entered promiscuous mode
[   96.638073][   T28] audit: type=1400 audit(1724166160.056:263): avc:  denied  { open } for  pid=1810 comm="syz.3.380" path="/11/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[   96.667387][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   96.676512][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   96.684931][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   96.748370][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   96.757259][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   96.771946][ T1769] device veth1_macvtap entered promiscuous mode
[   96.795533][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   96.803997][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   96.813124][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   96.864368][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   96.891857][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   96.891982][  T314] usb 3-1: USB disconnect, device number 5
[   96.962081][   T28] audit: type=1400 audit(1724166160.426:264): avc:  denied  { name_bind } for  pid=1821 comm="syz.1.383" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   96.992375][   T43] device bridge_slave_1 left promiscuous mode
[   97.021158][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.029896][   T43] device bridge_slave_0 left promiscuous mode
[   97.036081][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.046283][   T43] device veth1_macvtap left promiscuous mode
[   97.307828][ T1833] loop0: detected capacity change from 0 to 512
[   97.315041][   T43] device veth0_vlan left promiscuous mode
[   97.445667][ T1833] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   97.466847][ T1833] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038 (0x7fffffff)
[   97.512420][ T1844] netlink: 256 bytes leftover after parsing attributes in process `syz.4.386'.
[   97.530956][   T28] audit: type=1400 audit(1724166160.976:265): avc:  denied  { write } for  pid=1834 comm="syz.4.386" name="snmp" dev="proc" ino=4026532970 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   97.661044][   T28] audit: type=1400 audit(1724166161.126:266): avc:  denied  { ioctl } for  pid=1834 comm="syz.4.386" path="socket:[20113]" dev="sockfs" ino=20113 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   97.705787][ T1769] EXT4-fs (loop0): unmounting filesystem.
[   97.714047][ T1850] netlink: 256 bytes leftover after parsing attributes in process `syz.3.390'.
[   98.148433][   T28] audit: type=1400 audit(1724166161.166:267): avc:  denied  { sys_module } for  pid=1848 comm="syz.1.389" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   98.228513][   T28] audit: type=1400 audit(1724166161.696:268): avc:  denied  { read } for  pid=1852 comm="syz.1.392" dev="nsfs" ino=4026532558 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   99.090779][ T1876] loop1: detected capacity change from 0 to 1024
[   99.126509][ T1876] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   99.137480][ T1876] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[   99.147231][ T1876] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #3: comm syz.1.399: pblk 82 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[   99.172178][ T1879] netlink: 8 bytes leftover after parsing attributes in process `syz.4.400'.
[   99.175157][ T1876] EXT4-fs (loop1): no journal found
[   99.186018][ T1876] EXT4-fs (loop1): can't get journal size
[   99.208736][ T1876] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   99.273015][  T294] EXT4-fs error (device loop1): __ext4_iget:5046: inode #15: block 1803188595: comm syz-executor: invalid block
[   99.285494][  T294] EXT4-fs error (device loop1): __ext4_iget:5046: inode #15: block 1803188595: comm syz-executor: invalid block
[   99.303084][ T1894] loop2: detected capacity change from 0 to 1024
[   99.326945][ T1894] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   99.401427][  T294] EXT4-fs (loop1): unmounting filesystem.
[  100.068447][  T293] EXT4-fs (loop2): unmounting filesystem.
[  100.164034][    C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Dropping request.  Check SNMP counters.
[  100.238036][ T1915] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.252636][ T1915] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.267566][ T1915] device bridge_slave_0 entered promiscuous mode
[  100.284260][ T1915] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.321066][ T1915] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.343661][ T1915] device bridge_slave_1 entered promiscuous mode
[  100.550277][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  100.560996][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  100.577305][   T43] device bridge_slave_1 left promiscuous mode
[  100.583738][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.597106][   T43] device bridge_slave_0 left promiscuous mode
[  100.606689][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.624760][   T43] device veth1_macvtap left promiscuous mode
[  100.633939][   T43] device veth0_vlan left promiscuous mode
[  100.785893][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.797380][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.813257][ T1262] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.820160][ T1262] bridge0: port 1(bridge_slave_0) entered forwarding state
[  100.834519][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.845711][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.853982][ T1262] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.861124][ T1262] bridge0: port 2(bridge_slave_1) entered forwarding state
[  100.877914][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  100.885771][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  100.893840][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  100.907730][ T1915] device veth0_vlan entered promiscuous mode
[  100.916377][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  100.925060][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  100.932675][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  100.940374][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  100.979059][ T1915] device veth1_macvtap entered promiscuous mode
[  101.008638][ T1262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  101.037229][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  101.069646][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  101.153853][ T1941] netlink: 4 bytes leftover after parsing attributes in process `syz.1.419'.
[  101.395429][ T1958] device pim6reg1 entered promiscuous mode
[  101.456411][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  101.456426][   T28] audit: type=1400 audit(1724166164.916:272): avc:  denied  { create } for  pid=1965 comm="syz.2.432" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  101.486607][  T313] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  101.487405][ T1968] netlink: 40 bytes leftover after parsing attributes in process `syz.3.433'.
[  101.716060][ T1970] loop4: detected capacity change from 0 to 40427
[  101.738769][ T1970] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  101.745728][ T1970] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  101.753979][ T1970] F2FS-fs (loop4): Unrecognized mount option "errors=continue" or missing value
[  101.856629][ T1203] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  101.866772][  T313] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  101.882127][  T313] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  101.896622][   T28] audit: type=1400 audit(1724166165.356:273): avc:  denied  { map } for  pid=1976 comm="syz.4.437" path="socket:[21618]" dev="sockfs" ino=21618 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  101.925785][   T28] audit: type=1400 audit(1724166165.356:274): avc:  denied  { read } for  pid=1976 comm="syz.4.437" path="socket:[21618]" dev="sockfs" ino=21618 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  102.716651][  T313] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  102.736911][  T313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  102.744732][  T313] usb 2-1: Product: syz
[  102.769248][  T313] usb 2-1: Manufacturer: syz
[  102.773670][  T313] usb 2-1: SerialNumber: syz
[  102.881543][ T1975] loop0: detected capacity change from 0 to 131072
[  102.903495][ T1975] F2FS-fs (loop0): invalid crc value
[  102.909685][ T1975] F2FS-fs (loop0): Mismatch valid blocks 0 vs. 1
[  102.916211][ T1975] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-117)
[  102.969409][ T1989] loop4: detected capacity change from 0 to 2048
[  102.996438][ T1992] loop2: detected capacity change from 0 to 256
[  103.016407][ T1989] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  103.033859][ T1989] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038 (0x7fffffff)
[  103.056650][ T1203] usb 4-1: New USB device found, idVendor=066b, idProduct=20f9, bcdDevice=ff.94
[  103.080422][   T28] audit: type=1400 audit(1724166166.546:275): avc:  denied  { ioctl } for  pid=1988 comm="syz.4.439" path="/34/file0/file0/file0" dev="loop4" ino=13 ioctlcmd=0x6685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  103.096933][ T1996] Zero length message leads to an empty skb
[  103.105662][ T1989] fs-verity: sha512 using implementation "sha512-avx2"
[  103.122453][ T1203] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.130347][ T1203] usb 4-1: Product: syz
[  103.135250][ T1203] usb 4-1: Manufacturer: syz
[  103.154530][ T1203] usb 4-1: SerialNumber: syz
[  103.161169][   T28] audit: type=1400 audit(1724166166.576:276): avc:  denied  { bind } for  pid=1995 comm="syz.2.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  103.185827][ T1203] usb 4-1: config 0 descriptor??
[  103.186126][ T1589] EXT4-fs (loop4): unmounting filesystem.
[  103.229641][   T28] audit: type=1400 audit(1724166166.696:277): avc:  denied  { getopt } for  pid=2008 comm="syz.4.447" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  103.411040][   T28] audit: type=1400 audit(1724166166.876:278): avc:  denied  { getopt } for  pid=2012 comm="syz.4.448" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  103.489221][ T1203] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  103.499102][ T1203] asix: probe of 4-1:0.0 failed with error -71
[  103.507208][ T1203] usb 4-1: USB disconnect, device number 5
[  103.730358][  T313] usb 2-1: USB disconnect, device number 7
[  104.566966][   T10] Bluetooth: hci0: Frame reassembly failed (-84)
[  104.626685][  T313] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  104.986778][ T2049] loop0: detected capacity change from 0 to 1024
[  104.998510][ T2049] EXT4-fs: Ignoring removed orlov option
[  105.004204][ T2049] EXT4-fs: quotafile must be on filesystem root
[  105.026890][  T313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  105.049028][  T313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  105.058987][   T28] audit: type=1400 audit(1724166168.526:279): avc:  denied  { setopt } for  pid=2044 comm="syz.0.456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  105.078515][  T313] usb 5-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  105.089325][   T28] audit: type=1400 audit(1724166168.556:280): avc:  denied  { bind } for  pid=2044 comm="syz.0.456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  105.108514][  T313] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.119630][  T313] usb 5-1: config 0 descriptor??
[  105.597358][  T313] elo 0003:04E7:0030.000C: item fetching failed at offset 5/7
[  105.604839][  T313] elo 0003:04E7:0030.000C: parse failed
[  105.610308][  T313] elo: probe of 0003:04E7:0030.000C failed with error -22
[  105.712084][ T2053] loop0: detected capacity change from 0 to 512
[  105.783645][  T609] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  105.798242][  T314] usb 5-1: USB disconnect, device number 4
[  106.525089][   T28] audit: type=1400 audit(1724166169.746:281): avc:  denied  { map } for  pid=2055 comm="syz.3.459" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  106.602230][   T28] audit: type=1400 audit(1724166169.746:282): avc:  denied  { execute } for  pid=2055 comm="syz.3.459" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  106.629097][ T2039] Bluetooth: hci0: command 0x1003 tx timeout
[  106.634963][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  106.717336][ T2071] loop3: detected capacity change from 0 to 256
[  106.724106][ T2071] FAT-fs (loop3): Unrecognized mount option "shoŠtname=mixed" or missing value
[  106.731342][ T2073] loop2: detected capacity change from 0 to 128
[  106.801716][  T609] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  107.086527][ T2080] syz.3.464[2080] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.086896][ T2080] syz.3.464[2080] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.105701][ T2080] netlink: 165 bytes leftover after parsing attributes in process `syz.3.464'.
[  108.174073][ T2102] netlink: 24 bytes leftover after parsing attributes in process `syz.4.469'.
[  108.637742][ T2092] rtc_cmos 00:00: Alarms can be up to one day in the future
[  108.645614][   T28] audit: type=1400 audit(1724166172.106:283): avc:  denied  { setopt } for  pid=2109 comm="syz.0.472" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  108.712653][   T28] audit: type=1400 audit(1724166172.176:284): avc:  denied  { lock } for  pid=2115 comm="syz.3.475" path="/29/bus" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  108.721019][ T2118] loop0: detected capacity change from 0 to 1024
[  108.736471][   T28] audit: type=1400 audit(1724166172.176:285): avc:  denied  { unmount } for  pid=1712 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  108.787078][ T2102] loop4: detected capacity change from 0 to 40427
[  108.810759][ T2102] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  108.824773][ T2102] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  108.834007][ T2102] F2FS-fs (loop4): invalid crc value
[  108.839636][ T2102] F2FS-fs (loop4): invalid crc value
[  108.844977][ T2102] F2FS-fs (loop4): Failed to get valid F2FS checkpoint
[  108.853808][ T2118] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  108.862011][ T2130] loop3: detected capacity change from 0 to 512
[  108.868794][ T2130] EXT4-fs: Ignoring removed i_version option
[  108.875752][ T2130] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a016c018, mo2=0002]
[  108.883669][ T2130] System zones: 1-12
[  108.890946][ T2130] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.480: bg 0: block 131: padding at end of block bitmap is not set
[  108.929966][ T2130] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6171: Corrupt filesystem
[  109.117172][ T2130] EXT4-fs (loop3): 1 truncate cleaned up
[  109.123385][ T2118] loop0: detected capacity change from 1024 to 96
[  109.127592][ T2130] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  109.141193][ T2118] syz.0.476: attempt to access beyond end of device
[  109.141193][ T2118] loop0: rw=34817, sector=224, nr_sectors = 120 limit=96
[  109.158901][ T2118] syz.0.476: attempt to access beyond end of device
[  109.158901][ T2118] loop0: rw=2051, sector=320, nr_sectors = 32 limit=96
[  109.172781][ T2118] EXT4-fs (loop0): discard request in group:0 block:10 count:16 failed with -5
[  109.186272][   T28] audit: type=1400 audit(1724166172.646:286): avc:  denied  { mount } for  pid=2129 comm="syz.3.480" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  109.213178][ T2118] syz.0.476: attempt to access beyond end of device
[  109.213178][ T2118] loop0: rw=2051, sector=224, nr_sectors = 96 limit=96
[  109.219849][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.227691][ T2118] EXT4-fs (loop0): discard request in group:0 block:7 count:48 failed with -5
[  109.251227][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.259911][   T28] audit: type=1400 audit(1724166172.676:287): avc:  denied  { watch watch_reads } for  pid=2129 comm="syz.3.480" path="/32/file0/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  109.262275][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.285145][   T28] audit: type=1400 audit(1724166172.676:288): avc:  denied  { rmdir } for  pid=1712 comm="syz-executor" name="lost+found" dev="loop3" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  109.321043][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.331831][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.342955][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.343253][ T1769] syz-executor: attempt to access beyond end of device
[  109.343253][ T1769] loop0: rw=2051, sector=160, nr_sectors = 32 limit=96
[  109.353903][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.368294][ T1769] EXT4-fs (loop0): discard request in group:0 block:5 count:16 failed with -5
[  109.386198][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.396922][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.397431][ T1769] syz-executor: attempt to access beyond end of device
[  109.397431][ T1769] loop0: rw=2051, sector=192, nr_sectors = 32 limit=96
[  109.407249][   T28] audit: type=1400 audit(1724166172.866:289): avc:  denied  { unlink } for  pid=1769 comm="syz-executor" name="file1" dev="loop0" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  109.420656][ T1769] EXT4-fs (loop0): discard request in group:0 block:6 count:16 failed with -5
[  109.444201][ T1712] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  109.463894][ T1769] EXT4-fs (loop0): unmounting filesystem.
[  109.470679][ T2124] kmmpd-loop0: attempt to access beyond end of device
[  109.470679][ T2124] loop0: rw=14337, sector=128, nr_sectors = 2 limit=96
[  109.484309][ T2124] Buffer I/O error on dev loop0, logical block 64, lost sync page write
[  109.499123][  T314] rtc_cmos 00:00: Alarms can be up to one day in the future
[  109.506432][  T314] rtc_cmos 00:00: Alarms can be up to one day in the future
[  109.513930][  T314] rtc_cmos 00:00: Alarms can be up to one day in the future
[  109.521466][  T314] rtc_cmos 00:00: Alarms can be up to one day in the future
[  109.528611][  T314] rtc rtc0: __rtc_set_alarm: err=-22
[  109.549271][ T1712] EXT4-fs (loop3): unmounting filesystem.
[  109.556471][ T2143] loop0: detected capacity change from 0 to 512
[  109.596599][ T2143] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  109.611088][ T2143] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  109.620968][ T2143] System zones: 0-2, 18-18, 34-35
[  109.627647][ T2147] loop1: detected capacity change from 0 to 256
[  109.636695][ T2143] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  109.663133][ T1769] EXT4-fs (loop0): unmounting filesystem.
[  109.716769][   T28] audit: type=1400 audit(1724166173.166:290): avc:  denied  { write } for  pid=2151 comm="syz.0.488" name="ppp" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  109.768223][ T2148] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.775077][ T2148] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.782411][ T2148] device bridge_slave_0 entered promiscuous mode
[  109.789865][ T2148] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.796746][ T2148] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.803917][ T2148] device bridge_slave_1 entered promiscuous mode
[  110.083313][ T2163] process 'syz.2.491' launched '/dev/fd/4/./file0' with NULL argv: empty string added
[  110.109055][ T2167] netlink: 4 bytes leftover after parsing attributes in process `syz.4.493'.
[  110.171409][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  110.179239][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  110.211829][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  110.223273][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  110.231494][   T24] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.238344][   T24] bridge0: port 1(bridge_slave_0) entered forwarding state
[  110.246738][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  110.256277][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  110.264793][   T24] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.271658][   T24] bridge0: port 2(bridge_slave_1) entered forwarding state
[  110.279139][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  110.287971][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  110.299006][ T2179] loop2: detected capacity change from 0 to 256
[  110.305347][ T2179] exfat: Deprecated parameter 'utf8'
[  110.310724][ T2179] exfat: Deprecated parameter 'utf8'
[  110.316688][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  110.318797][ T2179] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  110.341014][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  110.350084][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  110.397951][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  110.408091][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  110.447795][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  110.464644][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  110.473347][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  110.499799][ T2148] device veth0_vlan entered promiscuous mode
[  110.643283][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  110.667068][ T2148] device veth1_macvtap entered promiscuous mode
[  110.726646][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  110.735538][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  110.766192][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  110.775819][  T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  111.055358][ T2209] Illegal XDP return value 4294967274 on prog  (id 282) dev N/A, expect packet loss!
[  111.133379][ T2217] loop3: detected capacity change from 0 to 256
[  111.157756][  T345] device bridge_slave_1 left promiscuous mode
[  111.165833][  T345] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.169237][ T2217] FAT-fs (loop3): Unrecognized mount option "shoŠtname=mixed" or missing value
[  111.196658][  T345] device bridge_slave_0 left promiscuous mode
[  111.211407][  T345] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.224275][  T345] device veth1_macvtap left promiscuous mode
[  111.236367][  T345] device veth0_vlan left promiscuous mode
[  111.412419][ T2258] syz.3.513[2258] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.412714][ T2258] syz.3.513[2258] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.463702][ T2258] netlink: 165 bytes leftover after parsing attributes in process `syz.3.513'.
[  112.296594][  T313] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  112.396604][  T314] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  112.466649][   T24] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  112.636743][  T314] usb 2-1: Using ep0 maxpacket: 8
[  112.656684][  T313] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  112.666787][  T313] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  112.679473][  T313] usb 4-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  112.688362][  T313] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.696583][  T321] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  112.703918][  T313] usb 4-1: config 0 descriptor??
[  112.746921][  T313] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  112.766663][  T314] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  112.775581][  T314] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.783763][  T314] usb 2-1: config 0 descriptor??
[  112.836669][   T24] usb 3-1: config index 0 descriptor too short (expected 45, got 36)
[  112.844735][   T24] usb 3-1: config 255 has an invalid descriptor of length 0, skipping remainder of the config
[  112.854913][   T24] usb 3-1: config 255 has 0 interfaces, different from the descriptor's value: 1
[  112.863852][   T24] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  112.872836][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.936617][  T321] usb 5-1: Using ep0 maxpacket: 32
[  113.056814][  T321] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  113.259306][  T321] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  113.268587][  T321] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.276521][  T321] usb 5-1: Product: syz
[  113.280506][  T321] usb 5-1: Manufacturer: syz
[  113.284921][  T321] usb 5-1: SerialNumber: syz
[  113.290333][  T321] usb 5-1: config 0 descriptor??
[  113.306672][   T19] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  113.326867][  T321] usb 5-1: bad CDC descriptors
[  113.331598][  T321] usb 5-1: unsupported MDLM descriptors
[  113.396631][   T24] usb 3-1: string descriptor 0 read error: -71
[  113.402970][   T24] usb 3-1: USB disconnect, device number 6
[  113.886671][   T19] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[  113.894627][   T19] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  113.904488][   T19] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  113.913413][   T19] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  113.922191][   T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.930387][   T19] usb 1-1: config 0 descriptor??
[  114.056675][  T314] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  114.066781][  T314] asix: probe of 2-1:0.0 failed with error -71
[  114.073281][  T314] usb 2-1: USB disconnect, device number 8
[  114.396642][ T1203] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  114.496650][   T19] usb 1-1: string descriptor 0 read error: -71
[  114.502973][   T19] usb 1-1: USB disconnect, device number 5
[  114.638171][ T2404] loop1: detected capacity change from 0 to 40427
[  114.644800][ T2404] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  114.652430][ T2404] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  114.662447][ T2404] F2FS-fs (loop1): Found nat_bits in checkpoint
[  114.686792][ T2404] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  114.693672][ T2404] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  114.708885][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  114.708896][   T28] audit: type=1400 audit(1724166178.176:294): avc:  denied  { unlink } for  pid=2403 comm="syz.1.598" name="#2b" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[  114.710677][ T2404] overlayfs: invalid origin (0000)
[  114.747261][ T1915] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  114.747283][ T1915] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  114.754673][ T1915] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  114.762144][ T1915] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  114.769547][ T1915] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  114.776957][ T1915] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  114.784271][ T1915] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  114.792002][   T28] audit: type=1400 audit(1724166178.256:295): avc:  denied  { rmdir } for  pid=1915 comm="syz-executor" name="file1" dev="loop1" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  114.806630][ T1203] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  115.114975][   T28] audit: type=1326 audit(1724166178.576:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2409 comm="syz.1.599" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdaebb79e79 code=0x0
[  115.153843][   T28] audit: type=1326 audit(1724166178.616:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2409 comm="syz.1.599" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdaebb79e79 code=0x0
[  115.154279][ T1203] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  115.179323][   T28] audit: type=1326 audit(1724166178.646:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2409 comm="syz.1.599" exe="/root/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7fdaebbabf65 code=0x0
[  115.185246][ T1203] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.215507][ T1203] usb 3-1: Product: syz
[  115.219551][ T1203] usb 3-1: Manufacturer: syz
[  115.223944][ T1203] usb 3-1: SerialNumber: syz
[  115.238527][   T24] usb 4-1: USB disconnect, device number 6
[  115.541437][  T321] usb 5-1: USB disconnect, device number 5
[  115.548652][    C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Dropping request.  Check SNMP counters.
[  115.738275][   T28] audit: type=1400 audit(1724166179.206:299): avc:  denied  { bind } for  pid=2401 comm="syz.2.597" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  115.817208][ T2430] loop0: detected capacity change from 0 to 2048
[  115.847556][ T2430] Alternate GPT is invalid, using primary GPT.
[  115.853647][ T2430]  loop0: p1 p2 p3
[  116.356725][ T2437] loop3: detected capacity change from 0 to 512
[  116.363436][ T2437] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.371879][ T2437] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  116.382569][ T2437] EXT4-fs (loop3): orphan cleanup on readonly fs
[  116.389503][ T2437] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3845: comm syz.3.607: Allocating blocks 41-42 which overlap fs metadata
[  116.403224][ T2437] EXT4-fs (loop3): Remounting filesystem read-only
[  116.409645][ T2437] Quota error (device loop3): write_blk: dquota write failed
[  116.416848][ T2437] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  116.426730][ T2437] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.607: Failed to acquire dquot type 0
[  116.437994][ T2437] EXT4-fs (loop3): 1 truncate cleaned up
[  116.444121][ T2437] EXT4-fs (loop3): pa ffff88811c4371f8: logic 1, phys. 41, len 23
[  116.451872][ T2437] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4885: group 0, free 22, pa_free 23
[  116.462263][ T2437] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  116.475196][ T2148] EXT4-fs (loop3): unmounting filesystem.
[  116.487586][ T2444] loop3: detected capacity change from 0 to 512
[  116.494285][ T2444] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.502696][ T2444] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  116.512552][ T2444] EXT4-fs (loop3): orphan cleanup on readonly fs
[  116.519476][ T2444] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3845: comm syz.3.609: Allocating blocks 41-42 which overlap fs metadata
[  116.533247][ T2444] EXT4-fs (loop3): Remounting filesystem read-only
[  116.539641][ T2444] Quota error (device loop3): write_blk: dquota write failed
[  116.547070][ T2444] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  116.557198][ T2444] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.609: Failed to acquire dquot type 0
[  116.568440][ T2444] EXT4-fs (loop3): 1 truncate cleaned up
[  116.574104][ T2444] EXT4-fs (loop3): pa ffff888111ee4a80: logic 1, phys. 41, len 23
[  116.581778][ T2444] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4885: group 0, free 22, pa_free 23
[  116.591925][ T2444] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  116.676661][ T1203] cdc_ncm 3-1:1.0: failed to get mac address
[  116.696698][ T1203] cdc_ncm 3-1:1.0: bind() failure
[  116.716621][ T1203] cdc_ncm: probe of 3-1:1.1 failed with error -71
[  116.752206][ T1203] cdc_mbim: probe of 3-1:1.1 failed with error -71
[  116.761614][ T1203] usb 3-1: USB disconnect, device number 7
[  117.251309][ T2461] loop4: detected capacity change from 0 to 256
[  117.323415][ T2148] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  117.341725][ T2148] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  117.612635][ T2471] loop2: detected capacity change from 0 to 256
[  117.718641][ T2148] EXT4-fs (loop3): unmounting filesystem.
[  118.053017][ T2482] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.060080][ T2482] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.067598][ T2482] device bridge_slave_0 entered promiscuous mode
[  118.082031][ T2482] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.103851][ T2482] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.111283][ T2482] device bridge_slave_1 entered promiscuous mode
[  118.246509][ T2482] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.253423][ T2482] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.260526][ T2482] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.267308][ T2482] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.326486][  T345] device bridge_slave_1 left promiscuous mode
[  118.333469][  T345] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.354799][  T345] device bridge_slave_0 left promiscuous mode
[  118.371609][  T345] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.395162][  T345] device veth1_macvtap left promiscuous mode
[  118.411874][  T345] device veth0_vlan left promiscuous mode
[  118.440518][ T2490] loop4: detected capacity change from 0 to 40427
[  118.486851][ T1203] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  118.495152][ T2490] F2FS-fs (loop4): Found nat_bits in checkpoint
[  118.592896][ T2490] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  118.630867][   T24] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.644081][   T24] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.661829][ T1589] syz-executor: attempt to access beyond end of device
[  118.661829][ T1589] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  118.766590][ T1203] usb 3-1: Using ep0 maxpacket: 32
[  118.774851][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  118.784160][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  118.816757][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  118.825709][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  118.834288][  T313] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.841182][  T313] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.859432][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  118.868169][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  118.878576][  T313] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.885429][  T313] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.892667][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  118.900745][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  118.908413][ T1203] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.908597][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  118.926867][ T1203] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.927368][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  118.944581][ T1203] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  118.952817][ T2500] netlink: 8 bytes leftover after parsing attributes in process `syz.0.628'.
[  118.959290][ T1203] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  118.974754][ T1203] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.984755][ T2482] device veth0_vlan entered promiscuous mode
[  118.991295][ T1203] usb 3-1: config 0 descriptor??
[  119.014759][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  119.023126][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  119.031935][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  119.039719][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  119.048213][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  119.055512][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  119.228773][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  119.242039][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  119.243038][ T2518] loop4: detected capacity change from 0 to 128
[  119.258785][ T2482] device veth1_macvtap entered promiscuous mode
[  119.269697][ T2518] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  119.279780][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  119.285976][ T2518] ext4 filesystem being mounted at /109/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  119.288176][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  119.326456][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  119.342982][ T1589] EXT4-fs (loop4): unmounting filesystem.
[  119.348445][ T2524] loop1: detected capacity change from 0 to 256
[  119.357882][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  119.368042][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  119.380380][ T2524] exfat: Bad value for 'uid'
[  119.391611][ T2530] loop4: detected capacity change from 0 to 512
[  119.398468][ T2530] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  119.430471][ T2530] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  119.439413][ T2530] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038 (0x7fffffff)
[  119.453046][ T2530] binder: Bad value for 'max'
[  119.468327][ T1203] ntrig 0003:1B96:000A.000D: unknown main item tag 0x0
[  119.469970][ T1589] EXT4-fs (loop4): unmounting filesystem.
[  119.475502][ T1203] ntrig 0003:1B96:000A.000D: unknown main item tag 0x0
[  119.488537][ T1203] ntrig 0003:1B96:000A.000D: unknown main item tag 0x0
[  119.495338][ T1203] ntrig 0003:1B96:000A.000D: unknown main item tag 0x0
[  119.502506][ T1203] ntrig 0003:1B96:000A.000D: unknown main item tag 0x0
[  119.510731][ T1203] ntrig 0003:1B96:000A.000D: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.2-1/input0
[  119.561499][ T2537] loop4: detected capacity change from 0 to 512
[  119.613396][ T2537] loop4: detected capacity change from 0 to 512
[  119.620129][ T2537] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  119.631718][ T2537] EXT4-fs (loop4): 1 orphan inode deleted
[  119.637339][ T2537] EXT4-fs (loop4): 1 truncate cleaned up
[  119.642989][ T2537] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  119.684395][   T24] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  119.730726][ T2546] loop0: detected capacity change from 0 to 16
[  119.737231][ T2546] erofs: (device loop0): mounted with root inode @ nid 36.
[  119.906815][  T313] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  120.066917][ T1203] usb 3-1: USB disconnect, device number 8
[  120.076664][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.087646][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.097444][   T24] usb 4-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  120.107628][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.118341][   T24] usb 4-1: config 0 descriptor??
[  120.144454][ T2580] loop0: detected capacity change from 0 to 1024
[  120.151252][ T2580] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869)
[  120.161396][  T313] usb 2-1: Using ep0 maxpacket: 8
[  120.161765][ T2580] EXT4-fs (loop0): invalid journal inode
[  120.171855][ T2580] EXT4-fs (loop0): can't get journal size
[  120.178323][ T2580] EXT4-fs error (device loop0): ext4_protect_reserved_inode:182: inode #2: comm syz.0.651: blocks 48-48 from inode overlap system zone
[  120.192208][ T2580] EXT4-fs (loop0): failed to initialize system zone (-117)
[  120.199423][ T2580] EXT4-fs (loop0): mount failed
[  120.326666][  T313] usb 2-1: unable to get BOS descriptor or descriptor too short
[  120.368350][   T28] kauditd_printk_skb: 47 callbacks suppressed
[  120.368364][   T28] audit: type=1326 audit(1724166183.836:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2527 comm="syz.3.621" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f82a8d79e79 code=0x0
[  120.406676][  T313] usb 2-1: config 16 has an invalid interface number: 216 but max is 0
[  120.415021][  T313] usb 2-1: config 16 has no interface number 0
[  120.423513][   T28] audit: type=1326 audit(1724166183.886:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2588 comm="syz.0.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8534979e79 code=0x7fc00000
[  120.445770][  T313] usb 2-1: config 16 interface 216 altsetting 249 endpoint 0xF has invalid maxpacket 1024, setting to 64
[  120.446626][   T28] audit: type=1326 audit(1724166183.886:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2588 comm="syz.0.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8534979e79 code=0x7fc00000
[  120.481223][  T313] usb 2-1: config 16 interface 216 has no altsetting 0
[  120.488820][ T1589] EXT4-fs (loop4): unmounting filesystem.
[  120.636675][   T24] usbhid 4-1:0.0: can't add hid device: -71
[  120.642466][   T24] usbhid: probe of 4-1:0.0 failed with error -71
[  120.648655][  T313] usb 2-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=3d.45
[  120.657542][  T313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.673207][  T313] usb 2-1: Product: syz
[  120.678127][   T24] usb 4-1: USB disconnect, device number 7
[  120.684302][  T313] usb 2-1: Manufacturer: syz
[  120.691175][  T313] usb 2-1: SerialNumber: syz
[  120.699228][ T2617] loop4: detected capacity change from 0 to 128
[  120.705686][ T2617] EXT4-fs (loop4): Test dummy encryption mode enabled
[  120.713638][ T2617] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  120.722234][ T2617] ext4 filesystem being mounted at /122/mnt supports timestamps until 2038 (0x7fffffff)
[  120.819062][   T28] audit: type=1400 audit(1724166184.286:350): avc:  denied  { module_load } for  pid=2614 comm="syz.2.666" path=2F6D656D66643A1037202864656C6574656429 dev="tmpfs" ino=1314 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  120.819099][ T2619] Invalid ELF section header size
[  121.021540][  T313] usb 2-1: USB disconnect, device number 9
[  121.155560][   T28] audit: type=1326 audit(1724166184.616:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2588 comm="syz.0.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8534979e79 code=0x7fc00000
[  121.184382][ T2624] loop0: detected capacity change from 0 to 512
[  121.241842][ T2624] loop0: detected capacity change from 0 to 512
[  121.248414][ T2624] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  121.259705][ T2624] EXT4-fs (loop0): 1 orphan inode deleted
[  121.265245][ T2624] EXT4-fs (loop0): 1 truncate cleaned up
[  121.271142][ T2624] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  121.627500][ T1589] EXT4-fs (loop4): unmounting filesystem.
[  121.635516][ T2631] loop1: detected capacity change from 0 to 512
[  121.646273][ T2631] journal_path: Lookup failure for './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[  121.667517][ T2631] EXT4-fs: error: could not find journal device path
[  121.966654][ T1203] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  122.046453][ T1769] EXT4-fs (loop0): unmounting filesystem.
[  122.108389][ T2663] loop0: detected capacity change from 0 to 2048
[  122.117914][ T2663] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  122.126298][ T2663] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038 (0x7fffffff)
[  122.143022][ T1769] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /45/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  122.168229][ T1769] EXT4-fs (loop0): unmounting filesystem.
[  122.206588][ T1203] usb 5-1: Using ep0 maxpacket: 32
[  122.233189][   T28] audit: type=1400 audit(1724166185.696:352): avc:  denied  { watch watch_reads } for  pid=2668 comm="syz.0.686" path="/46" dev="tmpfs" ino=264 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  122.261200][ T2670] Invalid ELF section header size
[  122.336700][ T1203] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.348323][ T1203] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.357829][ T1203] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  122.370717][ T1203] usb 5-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  122.379531][ T1203] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.388077][ T1203] usb 5-1: config 0 descriptor??
[  122.847437][ T1203] ntrig 0003:1B96:000A.000E: unknown main item tag 0x0
[  122.854467][ T1203] ntrig 0003:1B96:000A.000E: unknown main item tag 0x0
[  122.861325][ T1203] ntrig 0003:1B96:000A.000E: unknown main item tag 0x0
[  122.869731][ T1203] ntrig 0003:1B96:000A.000E: unknown main item tag 0x0
[  122.876605][ T1203] ntrig 0003:1B96:000A.000E: unknown main item tag 0x0
[  122.883959][ T1203] ntrig 0003:1B96:000A.000E: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.4-1/input0
[  122.946467][ T2679] loop2: detected capacity change from 0 to 512
[  123.010469][ T2683] loop1: detected capacity change from 0 to 256
[  123.023287][ T2679] loop2: detected capacity change from 0 to 512
[  123.037376][ T2679] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  123.053034][ T2683] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  123.111131][ T2679] EXT4-fs (loop2): 1 orphan inode deleted
[  123.116863][ T2679] EXT4-fs (loop2): 1 truncate cleaned up
[  123.135754][ T2679] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  123.296948][ T1263] usb 5-1: USB disconnect, device number 6
[  123.526594][ T1262] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  123.566672][ T1203] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  123.766607][ T1262] usb 2-1: Using ep0 maxpacket: 32
[  123.817011][  T293] EXT4-fs (loop2): unmounting filesystem.
[  123.886673][ T1262] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  123.898149][ T1262] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  123.909562][ T1262] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  123.910124][ T2715] netlink: 60 bytes leftover after parsing attributes in process `syz.2.704'.
[  123.918656][ T1262] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.926981][ T1262] usb 2-1: config 0 descriptor??
[  123.949705][ T1203] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.956727][ T2703] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  123.961821][ T1203] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  123.976977][ T1262] hub 2-1:0.0: USB hub found
[  123.977541][ T1203] usb 1-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  123.991728][ T1203] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.026598][ T1203] usb 1-1: config 0 descriptor??
[  124.116646][   T24] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  124.290936][   T28] audit: type=1326 audit(1724166187.756:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2699 comm="syz.0.699" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8534979e79 code=0x0
[  124.313973][ T1262] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  124.396636][   T24] usb 5-1: Using ep0 maxpacket: 32
[  124.516672][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  124.527873][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  124.539080][   T24] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  124.548493][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.557875][   T24] usb 5-1: config 0 descriptor??
[  124.557953][ T1203] usbhid 1-1:0.0: can't add hid device: -71
[  124.570386][ T1203] usbhid: probe of 1-1:0.0 failed with error -71
[  124.576756][ T2713] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  124.578239][ T1203] usb 1-1: USB disconnect, device number 6
[  124.585628][ T1262] hid-generic 0003:046D:C314.000F: hidraw0: USB HID v8.00 Device [HID 046d:c314] on usb-dummy_hcd.1-1/input0
[  124.601459][   T24] hub 5-1:0.0: USB hub found
[  124.896673][   T24] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  124.911730][ T2731] loop2: detected capacity change from 0 to 256
[  125.017554][ T1263] usb 2-1: USB disconnect, device number 10
[  125.030033][ T2736] netlink: 60 bytes leftover after parsing attributes in process `syz.3.711'.
[  125.168906][   T24] hid-generic 0003:046D:C314.0010: hidraw0: USB HID v8.00 Device [HID 046d:c314] on usb-dummy_hcd.4-1/input0
[  125.226625][ T1262] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  125.466598][ T1262] usb 3-1: Using ep0 maxpacket: 8
[  125.472393][   T28] audit: type=1400 audit(1724166188.936:354): avc:  denied  { create } for  pid=2711 comm="syz.4.703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  125.511524][ T2741] loop1: detected capacity change from 0 to 2048
[  125.528308][ T2741] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  125.536813][ T2741] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038 (0x7fffffff)
[  125.555314][ T1915] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /49/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  125.577495][  T313] usb 5-1: USB disconnect, device number 7
[  125.589384][ T1915] EXT4-fs (loop1): unmounting filesystem.
[  125.605676][ T2746] loop1: detected capacity change from 0 to 512
[  125.626614][ T1262] usb 3-1: unable to get BOS descriptor or descriptor too short
[  125.642283][ T2746] loop1: detected capacity change from 0 to 512
[  125.648998][ T2746] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  125.660894][ T2746] EXT4-fs (loop1): 1 orphan inode deleted
[  125.666518][ T2746] EXT4-fs (loop1): 1 truncate cleaned up
[  125.672744][ T2746] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  125.766709][ T1262] usb 3-1: config 16 has an invalid interface number: 216 but max is 0
[  125.774810][ T1262] usb 3-1: config 16 has no interface number 0
[  125.780851][ T1262] usb 3-1: config 16 interface 216 has no altsetting 0
[  125.996830][ T1262] usb 3-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=3d.45
[  126.006407][ T1262] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.014533][ T1262] usb 3-1: Product: syz
[  126.019040][ T1262] usb 3-1: Manufacturer: syz
[  126.023502][ T1262] usb 3-1: SerialNumber: syz
[  126.236684][  T313] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  126.263943][ T2758] input: syz0 as /devices/virtual/input/input12
[  126.275667][ T2758] netlink: 40 bytes leftover after parsing attributes in process `syz.0.716'.
[  126.285749][ T2758] netlink: 32 bytes leftover after parsing attributes in process `syz.0.716'.
[  126.295968][ T2758] netlink: 36 bytes leftover after parsing attributes in process `syz.0.716'.
[  126.390544][ T1262] usb 3-1: USB disconnect, device number 9
[  126.416642][   T24] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  126.511800][ T1915] EXT4-fs (loop1): unmounting filesystem.
[  126.556781][  T313] usb 4-1: Using ep0 maxpacket: 32
[  126.676951][  T313] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  126.687965][  T313] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  126.697672][  T313] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  126.710948][  T313] usb 4-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  126.722576][  T313] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.734384][  T313] usb 4-1: config 0 descriptor??
[  126.836756][   T24] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  127.236684][   T24] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  127.245828][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.259579][   T24] usb 5-1: Product: syz
[  127.268579][   T24] usb 5-1: Manufacturer: syz
[  127.273101][   T24] usb 5-1: SerialNumber: syz
[  127.395995][ T2782] overlayfs: missing 'lowerdir'
[  127.459416][  T313] ntrig 0003:1B96:000A.0011: unknown main item tag 0x0
[  127.466459][  T313] ntrig 0003:1B96:000A.0011: unknown main item tag 0x0
[  127.473307][  T313] ntrig 0003:1B96:000A.0011: unknown main item tag 0x0
[  127.480213][  T313] ntrig 0003:1B96:000A.0011: unknown main item tag 0x0
[  127.487265][  T313] ntrig 0003:1B96:000A.0011: unknown main item tag 0x0
[  127.496375][  T313] ntrig 0003:1B96:000A.0011: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0
[  127.669796][  T313] usb 4-1: USB disconnect, device number 8
[  128.426623][ T1203] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  128.446691][  T313] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  128.456640][ T1263] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  128.527679][   T24] cdc_ncm 5-1:1.0: failed to get mac address
[  128.546657][   T24] cdc_ncm 5-1:1.0: bind() failure
[  128.566762][   T24] cdc_ncm: probe of 5-1:1.1 failed with error -71
[  128.586640][   T24] cdc_mbim: probe of 5-1:1.1 failed with error -71
[  128.593654][   T24] usb 5-1: USB disconnect, device number 8
[  128.686599][  T313] usb 1-1: Using ep0 maxpacket: 8
[  128.806683][ T1203] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.806700][  T313] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  128.806726][  T313] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  128.817558][ T1203] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.825423][  T313] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  128.835039][ T1203] usb 3-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  128.844545][  T313] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  128.854123][ T1263] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  128.862938][  T313] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  128.872645][ T1203] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.903867][  T313] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  128.905184][ T1263] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.923387][ T1263] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.932936][  T313] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.932935][ T1263] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  128.933607][ T1203] usb 3-1: config 0 descriptor??
[  129.026684][ T1263] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  129.035736][ T1263] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  129.043615][ T1263] usb 4-1: Manufacturer: syz
[  129.048581][ T1263] usb 4-1: config 0 descriptor??
[  129.204496][   T28] audit: type=1326 audit(1724166192.666:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2789 comm="syz.2.727" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f20b1379e79 code=0x0
[  129.346667][  T313] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  129.476667][ T1203] usbhid 3-1:0.0: can't add hid device: -71
[  129.482436][ T1203] usbhid: probe of 3-1:0.0 failed with error -71
[  129.490653][ T1203] usb 3-1: USB disconnect, device number 10
[  129.527207][ T1263] appleir 0003:05AC:8243.0012: unknown main item tag 0x0
[  129.534332][ T1263] appleir 0003:05AC:8243.0012: No inputs registered, leaving
[  129.542331][ T1263] appleir 0003:05AC:8243.0012: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[  129.706652][  T313] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  129.715665][  T313] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  129.725503][  T313] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  129.738676][  T313] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  129.866715][  T313] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  129.875691][  T313] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  129.883481][  T313] usb 5-1: Product: syz
[  129.887513][  T313] usb 5-1: Manufacturer: syz
[  129.926851][  T313] cdc_wdm 5-1:1.0: skipping garbage
[  129.931962][  T313] cdc_wdm 5-1:1.0: skipping garbage
[  129.937336][  T313] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  130.127853][ T1263] usb 5-1: USB disconnect, device number 9
[  131.113890][   T28] audit: type=1400 audit(1724166194.576:356): avc:  denied  { connect } for  pid=2831 comm="syz.1.742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  131.186152][  T313] usb 1-1: USB disconnect, device number 7
[  131.426623][   T24] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  131.586971][  T313] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  131.666591][   T24] usb 3-1: Using ep0 maxpacket: 32
[  131.726033][ T1203] usb 4-1: USB disconnect, device number 9
[  131.787089][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.798479][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.808133][   T24] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  131.820759][   T24] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  131.829954][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.847178][   T24] usb 3-1: config 0 descriptor??
[  131.924366][   T28] audit: type=1400 audit(1724166195.386:357): avc:  denied  { mount } for  pid=2847 comm="syz.1.748" name="/" dev="configfs" ino=6903 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  131.956689][  T313] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  132.045728][   T28] audit: type=1400 audit(1724166195.506:358): avc:  denied  { unmount } for  pid=1915 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  132.122180][ T2862] loop4: detected capacity change from 0 to 512
[  132.126941][   T28] audit: type=1326 audit(1724166195.586:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2860 comm="syz.1.754" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdaebb79e79 code=0x0
[  132.156703][  T313] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  132.172015][ T2862] loop4: detected capacity change from 0 to 512
[  132.178802][  T313] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.187117][ T2862] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  132.196817][  T313] usb 1-1: Product: syz
[  132.200737][  T313] usb 1-1: Manufacturer: syz
[  132.205168][  T313] usb 1-1: SerialNumber: syz
[  132.212372][ T2862] EXT4-fs (loop4): 1 orphan inode deleted
[  132.218015][ T2862] EXT4-fs (loop4): 1 truncate cleaned up
[  132.223468][ T2862] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  132.531071][   T24] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  132.545405][   T24] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  132.577760][   T24] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  132.584674][   T24] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  132.591428][   T24] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  132.598814][   T24] ntrig 0003:1B96:000A.0013: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.2-1/input0
[  132.747673][   T24] usb 3-1: USB disconnect, device number 11
[  132.983218][ T1589] EXT4-fs (loop4): unmounting filesystem.
[  133.476629][  T313] cdc_ncm 1-1:1.0: failed to get mac address
[  133.496642][  T313] cdc_ncm 1-1:1.0: bind() failure
[  133.516621][  T313] cdc_ncm: probe of 1-1:1.1 failed with error -71
[  133.536617][  T313] cdc_mbim: probe of 1-1:1.1 failed with error -71
[  133.544209][  T313] usb 1-1: USB disconnect, device number 8
[  133.955576][   T28] audit: type=1326 audit(1724166197.416:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2904 comm="syz.0.767" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8534979e79 code=0x0
[  134.809527][ T2915] loop0: detected capacity change from 0 to 512
[  134.892448][ T2915] loop0: detected capacity change from 0 to 512
[  134.917084][ T2915] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  134.977689][ T2915] EXT4-fs (loop0): 1 orphan inode deleted
[  134.983253][ T2915] EXT4-fs (loop0): 1 truncate cleaned up
[  135.006620][ T2915] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  135.662334][ T1769] EXT4-fs (loop0): unmounting filesystem.
[  135.946618][   T19] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  136.206579][   T19] usb 1-1: Using ep0 maxpacket: 32
[  136.326655][   T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.356616][   T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.386420][   T19] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  136.416584][   T19] usb 1-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  136.446609][   T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.476199][   T19] usb 1-1: config 0 descriptor??
[  136.823073][  T353] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  136.889506][   T28] audit: type=1326 audit(1724166200.356:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2947 comm="syz.4.780" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff73c779e79 code=0x0
[  136.952607][ T2949] input: syz1 as /devices/virtual/input/input13
[  137.159368][   T19] ntrig 0003:1B96:000A.0014: unknown main item tag 0x0
[  137.166079][   T19] ntrig 0003:1B96:000A.0014: unknown main item tag 0x0
[  137.172816][   T19] ntrig 0003:1B96:000A.0014: unknown main item tag 0x0
[  137.186833][   T19] ntrig 0003:1B96:000A.0014: unknown main item tag 0x0
[  137.193652][   T19] ntrig 0003:1B96:000A.0014: unknown main item tag 0x0
[  137.207273][   T19] ntrig 0003:1B96:000A.0014: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.0-1/input0
[  137.236696][  T353] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  137.247432][   T19] usb 1-1: USB disconnect, device number 9
[  137.446656][  T353] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  137.455931][  T353] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.463749][  T353] usb 4-1: Product: syz
[  137.467723][  T353] usb 4-1: Manufacturer: syz
[  137.472147][  T353] usb 4-1: SerialNumber: syz
[  137.637819][ T2956] loop1: detected capacity change from 0 to 512
[  137.707545][ T2956] loop1: detected capacity change from 0 to 512
[  137.715776][ T2956] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  137.762588][ T2958] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  137.944669][ T2956] EXT4-fs (loop1): 1 orphan inode deleted
[  137.950407][ T2956] EXT4-fs (loop1): 1 truncate cleaned up
[  137.955854][ T2956] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  138.512182][ T2968] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  138.625226][ T2966] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  138.880989][ T1915] EXT4-fs (loop1): unmounting filesystem.
[  138.966933][  T353] cdc_ncm 4-1:1.0: bind() failure
[  138.986719][  T353] cdc_ncm: probe of 4-1:1.1 failed with error -71
[  139.093165][ T2985] fuse: Bad value for 'fd'
[  139.481949][  T353] cdc_mbim: probe of 4-1:1.1 failed with error -71
[  139.493611][  T353] usb 4-1: USB disconnect, device number 10
[  139.686624][  T314] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  140.491843][ T2996] input: syz1 as /devices/virtual/input/input14
[  141.465968][ T3006] loop4: detected capacity change from 0 to 512
[  141.472551][ T3006] EXT4-fs: Ignoring removed nobh option
[  141.482807][ T3008] netlink: 12 bytes leftover after parsing attributes in process `syz.1.797'.
[  141.491932][ T3008] netlink: 40 bytes leftover after parsing attributes in process `syz.1.797'.
[  141.497277][ T3006] EXT4-fs (loop4): 1 orphan inode deleted
[  141.501006][ T3008] netlink: 40 bytes leftover after parsing attributes in process `syz.1.797'.
[  141.506773][ T3006] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  141.524076][ T3006] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038 (0x7fffffff)
[  141.539477][ T3015] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  141.937329][   T28] audit: type=1326 audit(1724166205.396:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3003 comm="syz.3.796" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f82a8d79e79 code=0x0
[  142.503204][   T28] audit: type=1326 audit(1724166205.566:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3003 comm="syz.3.796" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f82a8d79e79 code=0x0
[  142.525979][  T314] usb 1-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  142.544696][   T28] audit: type=1326 audit(1724166205.576:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3003 comm="syz.3.796" exe="/root/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7f82a8dabf65 code=0x0
[  142.567724][ T1263] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  142.575372][  T314] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.583411][  T314] usb 1-1: Product: syz
[  142.587464][  T314] usb 1-1: Manufacturer: syz
[  142.592413][  T314] usb 1-1: config 0 descriptor??
[  142.654519][ T1589] EXT4-fs (loop4): unmounting filesystem.
[  142.896142][  T314] usb 1-1: can't set config #0, error -71
[  142.902226][  T314] usb 1-1: USB disconnect, device number 10
[  143.316670][ T1263] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.327786][ T1263] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.337422][ T1263] usb 3-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  143.346285][ T1263] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.354537][ T1263] usb 3-1: config 0 descriptor??
[  143.359348][  T314] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  143.416647][  T416] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  143.612076][   T28] audit: type=1326 audit(1724166207.076:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3000 comm="syz.2.795" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f20b1379e79 code=0x0
[  143.656644][  T416] usb 2-1: Using ep0 maxpacket: 16
[  143.786734][  T416] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.797641][  T416] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.804135][ T3049] input input15: cannot allocate more than FF_MAX_EFFECTS effects
[  143.807460][  T416] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  143.827750][  T416] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  143.837234][  T416] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.845478][  T416] usb 2-1: config 0 descriptor??
[  143.886708][  T314] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  143.895819][  T314] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.903961][  T314] usb 1-1: Product: syz
[  143.908043][  T314] usb 1-1: Manufacturer: syz
[  143.912435][  T314] usb 1-1: SerialNumber: syz
[  143.917549][  T314] usb 1-1: config 0 descriptor??
[  144.086619][ T1203] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  144.326638][ T1203] usb 5-1: Using ep0 maxpacket: 16
[  144.327529][  T416] koneplus 0003:1E7D:2E22.0015: unknown main item tag 0x0
[  144.338595][  T416] koneplus 0003:1E7D:2E22.0015: unknown main item tag 0x0
[  144.346038][  T416] koneplus 0003:1E7D:2E22.0015: hidraw0: USB HID v0.00 Device [HID 1e7d:2e22] on usb-dummy_hcd.1-1/input0
[  144.446695][ T1203] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  144.457639][ T1203] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  144.467217][ T3053] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  144.470494][ T1203] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  144.487664][ T1203] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.489965][   T28] audit: type=1400 audit(1724166207.956:366): avc:  denied  { create } for  pid=3054 comm="syz.3.813" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  144.496128][ T1203] usb 5-1: config 0 descriptor??
[  144.546701][  T416] koneplus 0003:1E7D:2E22.0015: couldn't init struct koneplus_device
[  144.554958][  T416] koneplus 0003:1E7D:2E22.0015: couldn't install mouse
[  144.562210][  T416] koneplus: probe of 0003:1E7D:2E22.0015 failed with error -5
[  144.607915][ T3064] loop3: detected capacity change from 0 to 512
[  144.614377][ T3064] EXT4-fs: Ignoring removed nobh option
[  144.628994][ T3064] EXT4-fs (loop3): 1 orphan inode deleted
[  144.634692][ T3064] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  144.643536][ T3064] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038 (0x7fffffff)
[  145.039964][   T19] usb 2-1: USB disconnect, device number 11
[  145.080441][ T1203] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0016/input/input16
[  145.116659][ T1263] usbhid 3-1:0.0: can't add hid device: -71
[  145.122463][ T1263] usbhid: probe of 3-1:0.0 failed with error -71
[  145.129287][ T1263] usb 3-1: USB disconnect, device number 12
[  145.157315][ T1203] microsoft 0003:045E:07DA.0016: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  145.466136][ T2482] EXT4-fs (loop3): unmounting filesystem.
[  145.476642][ T1263] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  145.506446][ T1203] usb 5-1: USB disconnect, device number 10
[  145.711466][ T3085] netlink: 164 bytes leftover after parsing attributes in process `syz.1.823'.
[  145.720946][ T3085] netlink: 28 bytes leftover after parsing attributes in process `syz.1.823'.
[  145.730235][ T3085] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.737310][ T3085] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.745291][ T3085] device bridge0 entered promiscuous mode
[  145.886589][ T1263] usb 3-1: Using ep0 maxpacket: 32
[  145.983510][   T24] usb 1-1: USB disconnect, device number 11
[  146.006701][ T1263] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[  146.015048][ T1263] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  146.028133][ T1263] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  146.034603][ T3092] netlink: 48 bytes leftover after parsing attributes in process `syz.4.826'.
[  146.039234][ T1263] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  146.062004][ T1263] usb 3-1: config 0 interface 0 has no altsetting 0
[  146.096719][  T416] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  146.226631][ T1263] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  146.235558][ T1263] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  146.243843][ T1263] usb 3-1: Product: syz
[  146.247902][ T1263] usb 3-1: Manufacturer: syz
[  146.252325][ T1263] usb 3-1: SerialNumber: syz
[  146.261878][ T1263] usb 3-1: config 0 descriptor??
[  146.360213][ T3102] loop3: detected capacity change from 0 to 512
[  146.367061][   T24] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  146.367122][ T3102] EXT4-fs: Ignoring removed nobh option
[  146.374489][  T353] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  146.387560][  T416] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  146.399358][ T3102] EXT4-fs (loop3): 1 orphan inode deleted
[  146.404925][ T3102] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  146.414083][ T3102] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038 (0x7fffffff)
[  146.506734][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  146.515765][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  146.526792][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  146.537766][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  146.616620][   T24] usb 1-1: Using ep0 maxpacket: 32
[  146.712226][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  146.721367][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  146.732580][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  146.743650][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  146.766666][   T24] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[  146.774755][   T24] usb 1-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  146.785488][   T24] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  146.796697][  T353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  146.807471][   T24] usb 1-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  146.820341][  T353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  146.830066][   T24] usb 1-1: config 0 interface 0 has no altsetting 0
[  146.836485][  T353] usb 5-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  146.845285][  T353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.853167][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  146.862534][  T353] usb 5-1: config 0 descriptor??
[  146.867444][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  146.878807][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  146.889810][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  146.996761][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.005646][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  147.016800][   T24] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  147.025666][   T24] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  147.034092][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  147.045073][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  147.051482][   T24] usb 1-1: Product: syz
[  147.055464][   T24] usb 1-1: Manufacturer: syz
[  147.059987][   T24] usb 1-1: SerialNumber: syz
[  147.065256][   T24] usb 1-1: config 0 descriptor??
[  147.146088][   T28] audit: type=1326 audit(1724166210.606:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3097 comm="syz.4.829" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff73c779e79 code=0x0
[  147.168961][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.177686][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  147.190358][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  147.236146][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  147.236508][ T2482] EXT4-fs (loop3): unmounting filesystem.
[  147.309370][ T2759] usb 1-1: USB disconnect, device number 12
[  147.316988][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.325998][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  147.337095][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  147.348127][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  147.446737][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.455614][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  147.467489][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  147.478619][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  147.536616][   T24] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  147.566791][  T416] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.575600][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 255, changing to 11
[  147.586903][  T416] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  147.598027][  T416] usb 2-1: config 0 interface 0 has no altsetting 0
[  147.797140][   T24] usb 4-1: Using ep0 maxpacket: 32
[  147.820742][  T416] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  147.836713][  T416] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  147.845311][  T416] usb 2-1: Product: syz
[  147.849298][  T416] usb 2-1: Manufacturer: syz
[  147.853915][  T416] usb 2-1: SerialNumber: syz
[  147.859217][  T416] usb 2-1: config 0 descriptor??
[  147.886688][ T3088] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  147.936647][   T24] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  147.944698][   T24] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  147.955600][   T24] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  147.966553][   T24] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  147.979687][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[  148.076745][ T1263] usb 3-1: USB disconnect, device number 13
[  148.110382][  T416] usb 2-1: USB disconnect, device number 12
[  148.156998][   T24] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  148.165967][   T24] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  148.178684][   T24] usb 4-1: Product: syz
[  148.186952][   T24] usb 4-1: Manufacturer: syz
[  148.196732][   T24] usb 4-1: SerialNumber: syz
[  148.205733][   T24] usb 4-1: config 0 descriptor??
[  149.256609][ T1263] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  149.278696][ T3146] loop2: detected capacity change from 0 to 40427
[  149.285805][ T3146] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  149.292714][  T353] usbhid 5-1:0.0: can't add hid device: -71
[  149.299262][  T353] usbhid: probe of 5-1:0.0 failed with error -71
[  149.305792][ T3146] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  149.314688][  T353] usb 5-1: USB disconnect, device number 11
[  149.321544][ T3146] F2FS-fs (loop2): invalid crc value
[  149.344515][ T3146] F2FS-fs (loop2): Found nat_bits in checkpoint
[  149.388818][ T3146] F2FS-fs (loop2): Start checkpoint disabled!
[  149.416845][ T3146] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  149.423822][ T3146] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  149.474578][  T566] kworker/u4:7: attempt to access beyond end of device
[  149.474578][  T566] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  149.495654][ T3150] loop4: detected capacity change from 0 to 40427
[  149.512589][ T3150] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  149.519438][ T1263] usb 1-1: Using ep0 maxpacket: 32
[  149.531275][ T3150] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  149.547643][ T3150] F2FS-fs (loop4): invalid crc value
[  149.561168][ T3150] F2FS-fs (loop4): Found nat_bits in checkpoint
[  149.607652][ T3158] loop1: detected capacity change from 0 to 40427
[  149.622774][ T3158] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  149.632334][ T3158] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  149.636681][ T1263] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.651223][ T1263] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.660933][ T1263] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  149.660986][ T3150] F2FS-fs (loop4): Start checkpoint disabled!
[  149.679831][ T3158] F2FS-fs (loop1): invalid crc value
[  149.683847][ T1263] usb 1-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  149.694046][ T1263] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.702986][ T3150] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  149.706788][ T1263] usb 1-1: config 0 descriptor??
[  149.709915][ T3158] F2FS-fs (loop1): Found nat_bits in checkpoint
[  149.714750][ T3150] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  149.756074][ T1589] syz-executor: attempt to access beyond end of device
[  149.756074][ T1589] loop4: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  149.761994][ T3158] F2FS-fs (loop1): Start checkpoint disabled!
[  149.777008][ T1589] syz-executor: attempt to access beyond end of device
[  149.777008][ T1589] loop4: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  149.790853][ T3158] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  149.797837][ T3158] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  149.821749][ T3166] loop2: detected capacity change from 0 to 40427
[  149.829052][  T328] kworker/u4:4: attempt to access beyond end of device
[  149.829052][  T328] loop4: rw=2049, sector=40960, nr_sectors = 32 limit=40427
[  149.843964][ T3166] F2FS-fs (loop2): invalid crc value
[  149.853232][ T3166] F2FS-fs (loop2): Found nat_bits in checkpoint
[  149.907231][ T3166] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  150.045998][   T28] audit: type=1400 audit(1724166213.506:368): avc:  denied  { mounton } for  pid=3183 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  150.078860][ T3183] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.085700][ T3183] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.094405][ T3183] device bridge_slave_0 entered promiscuous mode
[  150.103552][ T3183] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.110606][ T3183] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.119238][ T3183] device bridge_slave_1 entered promiscuous mode
[  150.152549][   T28] audit: type=1400 audit(1724166213.616:369): avc:  denied  { bind } for  pid=3179 comm="syz.2.857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  150.173014][ T1203] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  150.173443][   T28] audit: type=1400 audit(1724166213.616:370): avc:  denied  { setopt } for  pid=3179 comm="syz.2.857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  150.202064][   T28] audit: type=1400 audit(1724166213.616:371): avc:  denied  { write } for  pid=3179 comm="syz.2.857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  150.202559][ T1263] ntrig 0003:1B96:000A.0017: unknown main item tag 0x0
[  150.229010][ T1263] ntrig 0003:1B96:000A.0017: unknown main item tag 0x0
[  150.235897][ T1263] ntrig 0003:1B96:000A.0017: unknown main item tag 0x0
[  150.242739][ T1263] ntrig 0003:1B96:000A.0017: unknown main item tag 0x0
[  150.249754][ T1263] ntrig 0003:1B96:000A.0017: unknown main item tag 0x0
[  150.263400][ T1263] ntrig 0003:1B96:000A.0017: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.0-1/input0
[  150.266242][   T24] usb 4-1: USB disconnect, device number 11
[  150.417841][ T3183] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.424790][ T3183] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.431890][ T3183] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.438809][ T3183] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.469668][  T328] device bridge_slave_1 left promiscuous mode
[  150.477356][  T328] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.486043][  T328] device bridge_slave_0 left promiscuous mode
[  150.487615][   T28] audit: type=1326 audit(1724166213.946:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3192 comm="syz.3.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a8d79e79 code=0x7ffc0000
[  150.515883][  T328] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.523484][   T28] audit: type=1326 audit(1724166213.976:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3192 comm="syz.3.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f82a8d79e79 code=0x7ffc0000
[  150.547682][   T28] audit: type=1326 audit(1724166213.976:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3192 comm="syz.3.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a8d79e79 code=0x7ffc0000
[  150.571791][   T28] audit: type=1326 audit(1724166213.976:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3192 comm="syz.3.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a8d79e79 code=0x7ffc0000
[  150.571825][  T328] device veth1_macvtap left promiscuous mode
[  150.571847][   T28] audit: type=1326 audit(1724166213.976:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3192 comm="syz.3.862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82a8d79e79 code=0x7ffc0000
[  150.624421][  T328] device veth0_vlan left promiscuous mode
[  150.641115][   T24] usb 1-1: USB disconnect, device number 13
[  150.656926][ T1203] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.668230][ T1203] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.679942][ T1203] usb 2-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  150.689019][ T1203] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.699311][ T1203] usb 2-1: config 0 descriptor??
[  150.790934][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  150.800120][ T1263] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.808101][ T1263] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.847390][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  150.855591][ T1263] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.862451][ T1263] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.869894][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  150.878592][ T1263] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.885461][ T1263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.892778][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  150.900969][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  150.921241][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  150.929702][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  150.937685][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  150.945080][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  150.953302][ T3183] device veth0_vlan entered promiscuous mode
[  150.966644][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  150.974966][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  150.987818][ T3183] device veth1_macvtap entered promiscuous mode
[  150.997932][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  151.005678][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  151.013725][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  151.021828][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  151.029999][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  151.265129][ T3206] loop4: detected capacity change from 0 to 512
[  151.273557][ T3206] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.859: invalid indirect mapped block 256 (level 2)
[  151.292948][ T3206] EXT4-fs (loop4): 2 truncates cleaned up
[  151.298709][ T3206] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  151.371566][ T3217] loop0: detected capacity change from 0 to 512
[  151.394377][ T3217] EXT4-fs (loop0): 1 orphan inode deleted
[  151.400438][ T3217] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  151.410123][ T3217] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038 (0x7fffffff)
[  151.616603][   T24] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  151.919269][ T1769] EXT4-fs (loop0): unmounting filesystem.
[  152.046693][   T24] usb 5-1: New USB device found, idVendor=0bda, idProduct=818a, bcdDevice=e2.d8
[  152.055610][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.063952][   T24] usb 5-1: config 0 descriptor??
[  152.206629][   T19] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  152.310049][  T353] usb 5-1: USB disconnect, device number 12
[  152.566838][   T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.577690][   T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.587212][   T19] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  152.596017][   T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.604216][   T19] usb 1-1: config 0 descriptor??
[  152.815548][ T3183] EXT4-fs (loop4): unmounting filesystem.
[  153.478818][   T19] hid (null): bogus close delimiter
[  153.516682][   T19] usb 1-1: string descriptor 0 read error: -22
[  153.599928][ T3241] syz.2.871 (3241) used greatest stack depth: 19808 bytes left
[  153.619441][ T3252] loop2: detected capacity change from 0 to 256
[  153.625926][ T3252] exfat: Deprecated parameter 'namecase'
[  153.648856][ T3252] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  153.686706][ T1203] usbhid 2-1:0.0: can't add hid device: -71
[  153.692613][ T1203] usbhid: probe of 2-1:0.0 failed with error -71
[  153.716342][ T1203] usb 2-1: USB disconnect, device number 13
[  153.836817][ T3254] loop1: detected capacity change from 0 to 256
[  153.874291][ T3254] FAT-fs (loop1): Unrecognized mount option "shoŠtname=mixed" or missing value
[  154.003678][   T19] uclogic 0003:256C:006D.0018: interface is invalid, ignoring
[  154.032506][   T24] usb 1-1: USB disconnect, device number 14
[  154.176789][  T353] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  154.217187][ T3266] syz.1.876[3266] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.217507][ T3266] syz.1.876[3266] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.246792][ T3266] netlink: 165 bytes leftover after parsing attributes in process `syz.1.876'.
[  154.466619][  T353] usb 3-1: Using ep0 maxpacket: 32
[  154.547978][ T3270] loop1: detected capacity change from 0 to 512
[  154.624716][ T3275] loop0: detected capacity change from 0 to 512
[  154.631099][  T353] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.639381][ T3275] EXT4-fs: Ignoring removed i_version option
[  154.642281][  T353] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.649364][ T3275] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a016c018, mo2=0002]
[  154.657861][  T353] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  154.665539][ T3275] System zones: 
[  154.678599][  T353] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  154.678804][ T3275] 1-12
[  154.681995][  T353] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.691867][ T3275] 
[  154.694108][  T353] usb 3-1: config 0 descriptor??
[  154.708448][ T3275] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.884: bg 0: block 131: padding at end of block bitmap is not set
[  154.723543][ T3275] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6171: Corrupt filesystem
[  154.733491][ T3275] EXT4-fs (loop0): 1 truncate cleaned up
[  154.739126][ T3275] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  154.923884][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  154.934643][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  154.945273][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  154.955873][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  154.966733][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  154.978599][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  154.989153][ T1203] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  154.996973][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  155.009043][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  155.019722][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  155.030721][ T1769] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  155.117960][ T1769] EXT4-fs (loop0): unmounting filesystem.
[  155.355399][  T353] ntrig 0003:1B96:000A.0019: unknown main item tag 0x0
[  155.370032][  T353] ntrig 0003:1B96:000A.0019: unknown main item tag 0x0
[  155.480081][  T353] ntrig 0003:1B96:000A.0019: unknown main item tag 0x0
[  155.489052][  T353] ntrig 0003:1B96:000A.0019: unknown main item tag 0x0
[  155.495809][  T353] ntrig 0003:1B96:000A.0019: unknown main item tag 0x0
[  155.503376][  T353] ntrig 0003:1B96:000A.0019: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.2-1/input0
[  155.586911][ T1203] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.597863][ T1203] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.607649][ T1203] usb 4-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  155.608185][ T3290] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.616766][ T1203] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.623671][ T3290] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.632194][ T1203] usb 4-1: config 0 descriptor??
[  155.639130][ T3290] device bridge_slave_0 entered promiscuous mode
[  155.652192][ T3290] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.659067][ T3290] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.666215][ T3290] device bridge_slave_1 entered promiscuous mode
[  155.708868][ T3290] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.715931][ T3290] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.722996][ T3290] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.729911][ T3290] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.750054][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  155.757459][ T1263] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.764589][ T1263] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.775959][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  155.776359][  T416] usb 3-1: USB disconnect, device number 14
[  155.784238][  T314] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.796642][  T314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.806710][  T353] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  155.814718][  T353] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.821728][  T353] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.835434][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  155.868311][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  155.892553][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  155.904068][ T3290] device veth0_vlan entered promiscuous mode
[  155.911191][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  155.919580][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  155.927204][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  155.956445][ T3290] device veth1_macvtap entered promiscuous mode
[  155.964206][ T2759] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  156.018098][ T1263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  156.047948][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  156.349706][  T345] device bridge_slave_1 left promiscuous mode
[  156.359239][  T345] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.368982][ T1203] elo 0003:04E7:0030.001A: item fetching failed at offset 5/7
[  156.376950][ T1203] elo 0003:04E7:0030.001A: parse failed
[  156.382451][ T1203] elo: probe of 0003:04E7:0030.001A failed with error -22
[  156.391397][ T1203] usb 4-1: USB disconnect, device number 12
[  156.397604][  T345] device bridge_slave_0 left promiscuous mode
[  156.403846][  T345] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.413666][  T345] device veth1_macvtap left promiscuous mode
[  156.435527][  T345] device veth0_vlan left promiscuous mode
[  156.554869][  T546] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  156.885482][ T3320] loop4: detected capacity change from 0 to 512
[  156.891824][ T3320] EXT4-fs: Ignoring removed i_version option
[  156.899319][ T3320] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a016c018, mo2=0002]
[  156.907938][ T3320] System zones: 1-12
[  156.912414][ T3320] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.896: bg 0: block 131: padding at end of block bitmap is not set
[  156.927052][ T3320] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6171: Corrupt filesystem
[  156.935858][ T3320] EXT4-fs (loop4): 1 truncate cleaned up
[  156.936827][ T3323] loop1: detected capacity change from 0 to 2048
[  156.948488][ T3320] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  156.959159][ T3323] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  156.971923][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  156.973745][ T3323] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  156.982907][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.007407][ T3323] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 28
[  157.010352][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.030278][ T3323] EXT4-fs (loop1): This should not happen!! Data will be lost
[  157.030278][ T3323] 
[  157.034495][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.039824][ T3323] EXT4-fs (loop1): Total free blocks count 0
[  157.050394][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.055890][ T3323] EXT4-fs (loop1): Free/Dirty block details
[  157.066461][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.083141][ T3323] EXT4-fs (loop1): free_blocks=2415919104
[  157.083179][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.088882][ T3323] EXT4-fs (loop1): dirty_blocks=48
[  157.099664][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.104135][ T3323] EXT4-fs (loop1): Block reservation details
[  157.115396][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.120786][ T3323] EXT4-fs (loop1): i_reserved_data_blocks=3
[  157.131460][ T3183] EXT4-fs error (device loop4): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  157.147122][  T546] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  157.149589][ T3322] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 32 with max blocks 1 with error 28
[  157.157907][  T546] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.180690][  T546] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.190650][  T546] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  157.203565][  T546] usb 1-1: New USB device found, idVendor=044f, idProduct=b653, bcdDevice= 0.00
[  157.212539][  T546] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.225657][  T546] usb 1-1: config 0 descriptor??
[  157.259295][ T3183] EXT4-fs (loop4): unmounting filesystem.
[  157.363878][  T416] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  157.411931][ T3339] loop2: detected capacity change from 0 to 512
[  157.877062][  T416] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.953841][  T416] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.012172][  T416] usb 4-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  158.053319][  T416] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.116926][  T416] usb 4-1: config 0 descriptor??
[  158.156650][  T546] usbhid 1-1:0.0: can't add hid device: -71
[  158.162694][  T546] usbhid: probe of 1-1:0.0 failed with error -71
[  158.170367][  T546] usb 1-1: USB disconnect, device number 15
[  158.446846][   T24] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  158.526682][  T416] usbhid 4-1:0.0: can't add hid device: -71
[  158.532620][  T416] usbhid: probe of 4-1:0.0 failed with error -71
[  158.539482][  T416] usb 4-1: USB disconnect, device number 13
[  158.599146][ T3354] loop0: detected capacity change from 0 to 512
[  158.622798][ T3357] loop2: detected capacity change from 0 to 2048
[  158.630632][ T3354] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  158.643273][ T3354] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038 (0x7fffffff)
[  158.654368][ T3357] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  158.670404][ T3290] EXT4-fs (loop0): unmounting filesystem.
[  158.676045][ T3357] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  158.696625][   T24] usb 2-1: Using ep0 maxpacket: 32
[  158.701686][ T3357] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 28
[  158.714449][ T3357] EXT4-fs (loop2): This should not happen!! Data will be lost
[  158.714449][ T3357] 
[  158.724306][ T3357] EXT4-fs (loop2): Total free blocks count 0
[  158.730217][ T3357] EXT4-fs (loop2): Free/Dirty block details
[  158.735869][ T3357] EXT4-fs (loop2): free_blocks=2415919104
[  158.741889][ T3357] EXT4-fs (loop2): dirty_blocks=48
[  158.747012][ T3357] EXT4-fs (loop2): Block reservation details
[  158.752848][ T3357] EXT4-fs (loop2): i_reserved_data_blocks=3
[  158.760434][ T3356] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 32 with max blocks 1 with error 28
[  158.777560][  T345] device bridge_slave_1 left promiscuous mode
[  158.783528][  T345] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.790911][  T345] device bridge_slave_0 left promiscuous mode
[  158.797115][  T345] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.805118][  T345] device veth1_macvtap left promiscuous mode
[  158.810980][  T345] device veth0_vlan left promiscuous mode
[  158.836687][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.847934][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.857822][   T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  158.870428][   T24] usb 2-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  158.879413][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.887972][   T24] usb 2-1: config 0 descriptor??
[  159.502272][   T24] ntrig 0003:1B96:000A.001B: unknown main item tag 0x0
[  159.509743][   T24] ntrig 0003:1B96:000A.001B: unknown main item tag 0x0
[  159.516725][   T24] ntrig 0003:1B96:000A.001B: unknown main item tag 0x0
[  159.523597][   T24] ntrig 0003:1B96:000A.001B: unknown main item tag 0x0
[  159.530784][   T24] ntrig 0003:1B96:000A.001B: unknown main item tag 0x0
[  159.541541][   T24] ntrig 0003:1B96:000A.001B: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.1-1/input0
[  159.841502][ T3378] rtc_cmos 00:00: Alarms can be up to one day in the future
[  159.868492][ T1263] usb 2-1: USB disconnect, device number 14
[  160.667987][ T1263] rtc_cmos 00:00: Alarms can be up to one day in the future
[  160.675868][ T1263] rtc_cmos 00:00: Alarms can be up to one day in the future
[  160.676613][  T353] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  160.683983][ T1263] rtc_cmos 00:00: Alarms can be up to one day in the future
[  160.698531][ T1263] rtc_cmos 00:00: Alarms can be up to one day in the future
[  160.705614][ T1263] rtc rtc0: __rtc_set_alarm: err=-22
[  160.926656][  T353] usb 4-1: Using ep0 maxpacket: 32
[  161.046670][  T353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  161.057681][  T353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  161.068602][  T353] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  161.077462][  T353] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.085986][  T353] usb 4-1: config 0 descriptor??
[  161.106763][ T3396] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  161.126991][  T353] hub 4-1:0.0: USB hub found
[  161.148483][ T3401] loop0: detected capacity change from 0 to 512
[  161.165573][   T28] kauditd_printk_skb: 7 callbacks suppressed
[  161.165586][   T28] audit: type=1400 audit(1724166224.626:384): avc:  denied  { map } for  pid=3404 comm="syz.1.927" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  161.227443][ T3405] BUG: kernel NULL pointer dereference, address: 0000000000000000
[  161.235077][ T3405] #PF: supervisor instruction fetch in kernel mode
[  161.241660][ T3405] #PF: error_code(0x0010) - not-present page
[  161.247496][ T3405] PGD 134a10067 P4D 134a10067 PUD 134a12067 PMD 0 
[  161.253915][ T3405] Oops: 0010 [#1] PREEMPT SMP KASAN
[  161.258948][ T3405] CPU: 0 PID: 3405 Comm: syz.1.927 Not tainted 6.1.90-syzkaller-00023-gedca080b95df #0
[  161.268936][ T3405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  161.279009][ T3405] RIP: 0010:0x0
[  161.282410][ T3405] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  161.290030][ T3405] RSP: 0018:ffffc900068eeff8 EFLAGS: 00010246
[  161.296063][ T3405] RAX: 1ffff92000d1deb8 RBX: dffffc0000000000 RCX: 0000000000040000
[  161.303948][ T3405] RDX: ffffc90001119000 RSI: ffffea00051acc00 RDI: ffff888112095b00
[  161.311845][ T3405] RBP: ffffc900068ef150 R08: ffffffff81a46b68 R09: fffff94000a35987
[  161.319838][ T3405] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffc900068ef5c0
[  161.327691][ T3405] R13: ffffea00051acc00 R14: ffffc900068ef5d8 R15: 0000000000000000
[  161.335578][ T3405] FS:  00007fdaec98c6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  161.345187][ T3405] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  161.351772][ T3405] CR2: ffffffffffffffd6 CR3: 0000000116e33000 CR4: 00000000003506b0
[  161.359673][ T3405] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  161.367502][ T3405] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  161.375386][ T3405] Call Trace:
[  161.378544][ T3405]  <TASK>
[  161.381581][ T3405]  ? __die_body+0x62/0xb0
[  161.385833][ T3405]  ? __die+0x7e/0x90
[  161.389648][ T3405]  ? page_fault_oops+0x7f9/0xa90
[  161.394419][ T3405]  ? kernelmode_fixup_or_oops+0x270/0x270
[  161.400141][ T3405]  ? cgroup_rstat_updated+0xe5/0x370
[  161.405281][ T3405]  ? is_errata93+0xc7/0x240
[  161.409620][ T3405]  ? exc_page_fault+0x537/0x700
[  161.414302][ T3405]  ? asm_exc_page_fault+0x27/0x30
[  161.419145][ T3405]  ? read_pages+0x838/0xd40
[  161.423503][ T3405]  read_pages+0x89c/0xd40
[  161.428007][ T3405]  ? workingset_activation+0x430/0x430
[  161.433388][ T3405]  ? folio_add_lru+0x280/0x3f0
[  161.438006][ T3405]  ? page_cache_ra_unbounded+0x690/0x690
[  161.443466][ T3405]  ? filemap_add_folio+0x18f/0x200
[  161.448414][ T3405]  ? __filemap_add_folio+0xd10/0xd10
[  161.453739][ T3405]  page_cache_ra_order+0x7fd/0xb30
[  161.458683][ T3405]  ? do_page_cache_ra+0x110/0x110
[  161.463535][ T3405]  ? xas_create+0xf3a/0x1630
[  161.467961][ T3405]  ondemand_readahead+0x91a/0xee0
[  161.472817][ T3405]  ? cgroup_rstat_updated+0xe5/0x370
[  161.477944][ T3405]  ? page_cache_sync_ra+0x450/0x450
[  161.482976][ T3405]  ? blk_cgroup_congested+0x132/0x150
[  161.488183][ T3405]  page_cache_sync_ra+0x3d6/0x450
[  161.493057][ T3405]  hpage_collapse_scan_file+0x19ba/0x46e0
[  161.498612][ T3405]  ? __kasan_check_write+0x14/0x20
[  161.503570][ T3405]  ? wake_up_q+0x11c/0x1d0
[  161.507857][ T3405]  ? hugepage_vma_revalidate+0x310/0x310
[  161.513390][ T3405]  ? mutex_unlock+0x17b/0x260
[  161.517886][ T3405]  ? __lru_add_drain_all+0x714/0x770
[  161.522998][ T3405]  madvise_collapse+0x639/0xcf0
[  161.527681][ T3405]  ? khugepaged_min_free_kbytes_update+0x90/0x90
[  161.533839][ T3405]  ? memset+0x35/0x40
[  161.537655][ T3405]  ? blk_start_plug+0x9c/0x130
[  161.542268][ T3405]  do_madvise+0x1604/0x40b0
[  161.546596][ T3405]  ? schedule_preempt_disabled+0x20/0x20
[  161.552080][ T3405]  ? madvise_set_anon_name+0x4c0/0x4c0
[  161.557360][ T3405]  ? __kasan_check_write+0x14/0x20
[  161.562303][ T3405]  ? wake_up_q+0x11c/0x1d0
[  161.566560][ T3405]  ? futex_wake+0x758/0xb60
[  161.570902][ T3405]  ? futex_wake_mark+0x170/0x170
[  161.575670][ T3405]  ? ____kasan_slab_free+0x13c/0x180
[  161.580792][ T3405]  ? __kasan_slab_free+0x11/0x20
[  161.585790][ T3405]  ? putname+0xfa/0x150
[  161.589783][ T3405]  ? putname+0xfa/0x150
[  161.593775][ T3405]  ? getname_flags+0x3a2/0x520
[  161.598374][ T3405]  ? do_futex+0x501/0x9a0
[  161.602543][ T3405]  ? __this_cpu_preempt_check+0x13/0x20
[  161.608464][ T3405]  ? xfd_validate_state+0x6f/0x170
[  161.613389][ T3405]  ? restore_fpregs_from_fpstate+0xfc/0x230
[  161.619118][ T3405]  ? save_fpregs_to_fpstate+0x220/0x220
[  161.624740][ T3405]  ? fpregs_restore_userregs+0x130/0x290
[  161.630887][ T3405]  __x64_sys_madvise+0xa8/0xc0
[  161.635759][ T3405]  x64_sys_call+0xec/0x9a0
[  161.639999][ T3405]  do_syscall_64+0x3b/0xb0
[  161.644251][ T3405]  ? clear_bhb_loop+0x55/0xb0
[  161.648940][ T3405]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  161.654666][ T3405] RIP: 0033:0x7fdaebb79e79
[  161.658924][ T3405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.678360][ T3405] RSP: 002b:00007fdaec98c038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  161.686829][ T3405] RAX: ffffffffffffffda RBX: 00007fdaebd15f80 RCX: 00007fdaebb79e79
[  161.694647][ T3405] RDX: 0000000000000019 RSI: 0000000000600707 RDI: 0000000020000000
[  161.702444][ T3405] RBP: 00007fdaebbe7916 R08: 0000000000000000 R09: 0000000000000000
[  161.710254][ T3405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.718178][ T3405] R13: 0000000000000000 R14: 00007fdaebd15f80 R15: 00007ffe40c88a98
[  161.725988][ T3405]  </TASK>
[  161.728845][ T3405] Modules linked in:
[  161.732576][ T3405] CR2: 0000000000000000
[  161.736564][ T3405] ---[ end trace 0000000000000000 ]---
[  161.741850][ T3405] RIP: 0010:0x0
[  161.745159][ T3405] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  161.752366][ T3405] RSP: 0018:ffffc900068eeff8 EFLAGS: 00010246
[  161.758261][ T3405] RAX: 1ffff92000d1deb8 RBX: dffffc0000000000 RCX: 0000000000040000
[  161.766063][ T3405] RDX: ffffc90001119000 RSI: ffffea00051acc00 RDI: ffff888112095b00
[  161.774080][ T3405] RBP: ffffc900068ef150 R08: ffffffff81a46b68 R09: fffff94000a35987
[  161.782028][ T3405] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffc900068ef5c0
[  161.789840][ T3405] R13: ffffea00051acc00 R14: ffffc900068ef5d8 R15: 0000000000000000
[  161.797740][ T3405] FS:  00007fdaec98c6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  161.806497][ T3405] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  161.813269][ T3405] CR2: ffffffffffffffd6 CR3: 0000000116e33000 CR4: 00000000003506b0
[  161.821090][ T3405] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  161.828989][ T3405] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  161.837052][ T3405] Kernel panic - not syncing: Fatal exception
[  161.843252][ T3405] Kernel Offset: disabled
[  161.847439][ T3405] Rebooting in 86400 seconds..