last executing test programs:

3m36.710700313s ago: executing program 0 (id=76):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000340), 0x2931890e, r0}, 0x33)
openat$procfs(0xffffffffffffff9c, &(0x7f0000002d80)='/proc/cgroups\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000640)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file0\x00', 0x1000801, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0], 0x0, 0x1ca, &(0x7f00000004c0)="$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")
chdir(&(0x7f0000000040)='./file0\x00')
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x48040, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1ccca000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = userfaultfd(0x80801)
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00003cd000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000c9a000/0x2000)=nil)
bind$unix(r1, &(0x7f0000000f80)=@file={0x1, './file0\x00'}, 0x6e)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)

3m34.543619334s ago: executing program 1 (id=78):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$key(0xffffffffffffffff, 0x0, 0x44884)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

3m34.532981915s ago: executing program 0 (id=79):
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080), 0x8002, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
r1 = socket(0x1, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000100)={0xa0179e1d})
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r1, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
gettid()
inotify_init1(0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
connect$unix(r5, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(0xffffffffffffffff, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6, 0x0, 0x8000000000000000}, 0x18)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r7, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
fadvise64(r7, 0x7f, 0x0, 0x4)

3m34.466929716s ago: executing program 1 (id=81):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000840)={[{@mblk_io_submit}, {@min_batch_time={'min_batch_time', 0x3d, 0xffd}}, {@nolazytime}, {@jqfmt_vfsold}, {@errors_remount}, {@minixdf}, {@errors_remount}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105942, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0}, 0x18)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x2000004)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x7, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000002dc0))
write$cgroup_subtree(r0, &(0x7f0000000800)=ANY=[], 0x32600)

3m34.145970472s ago: executing program 1 (id=83):
r0 = socket$inet6(0xa, 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0xd, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x80000}, [@alu={0x4, 0x1, 0x3, 0x9, 0x4, 0x8, 0x10}, @ringbuf_query, @btf_id={0x18, 0x7, 0x3, 0x0, 0x2}, @generic={0xe, 0x2, 0xa, 0x7, 0x7ff}, @map_fd={0x18, 0xd}]}, &(0x7f0000000180)='syzkaller\x00', 0x101, 0x75, &(0x7f0000000440)=""/117, 0x40f00, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0x4, 0xdb62, 0x9c8f}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000500)=[0xffffffffffffffff], &(0x7f0000000540)=[{0x3, 0x1, 0x10, 0x2cb9d5e8e3ab34a9}, {0x3, 0x5, 0xc, 0x7}, {0x2, 0x4, 0x7, 0xa}, {0x3, 0x3, 0x1, 0x6}], 0x10, 0x166}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r4, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000005d, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x0, 0x0, &(0x7f0000000380), 0x8, 0x2a, 0x8, 0x0, 0x0}}, 0x10)
bind$inet6(r0, &(0x7f0000000640)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)

3m34.120091622s ago: executing program 0 (id=84):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0)

3m33.992691765s ago: executing program 0 (id=85):
socketpair(0x25, 0xa, 0xc2, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$eJzs3M1vFOUfAPDv7G7hx2v3h/gCoqJoJL60tKBy8KKJiQdNTPSAx1oKQRZqaE2ENLYYghcTJeFuTLyY+Bd48kTUk4lXvBsSYriAelkz3dllu91tt91tt3U/n2To83Sf3ef7nZln55kZpgH0rYPpP0nEzoi4GRGDEZGrb7CtsqTt7t2ZGf/rzsx4EuXyu38m6dvi7p2Z8WrTJPu5o1IppB+Uu5JEsUm/UxcvnR0rlSYuZPXh6XMfDU9dvPTimXNjpydOT5wfPX782NGRV14efakreaYx3d3/6eSBfW++f+3t8RPXPvj5+0q85fL1G0cW5NEdAxExU1snjZ7pbmc9t6uunBR6GAgrsjUiCtneejMGI39ld+21wXjjs54GB6ypcrlcHm398lwZ+A9LotcRAL1RPdCn57/VpX4C8M/aTj967vZrlROgNO972VJ5pRCXszYDDee33XQwIk7M/f11ukTD9RQAgLXwYzr/eaHJ/K8Y8VBdu93ZvaFiRPw/IvZExAMRsTciHoxK24cj4pEV9n+wob54/pO7tbrM2pPO/17N7m0tnP/V7oIV81lt13z+A8mpM6WJI9k6ORwDW9P6SNNPTyLm0p+/fdmq//r5X7qk/VfnglkctwpbF77n5Nj0WMeJZ25fjthfaJZ/EoX7WcS+iNi/yj7OPPfdgYW/yddKy+e/hC7cZyp/E/FsZfvPRUP+VcnS9yeH/xeliSPD1b1isV9+vfpOq/47yr8L0u2/ven+X8u/mNTfr51a9BFbluvj6u+ftzynWe3+vyV5b0Hnn4xNT18YidiSvLX493UXuKv1avs0/8OHmo//PXF/TTwaEelO/FhEPB4RT2SxPxkRT0XEoSXy/+n1pz9cff5rK81/dkXbf+WF/NkbP7Tqv73tf6xamQ+qne+/dgPsZN0BAADAZpGLiJ2R5IZq5VxuaKjy/+X3xvZcaXJq+vlTkx+fP1l5RqAYA7nqla7BuuuhI9m14Wp9NKvPZvWj2XXj6/lt8/Wh8cnSyV4nD31uR4vxn/oj3+vogDXneS3oX8Y/9K/Vj3/fHLDZLTOKc+sVB7D+HMWhfzUb/7M9iANYf47/0L9q4/+rNhrXPe7V+PAmsPk4/kP/Mv6hL3XyXP+GKMS3EUu3STZKqCsqfNHJ2wvrEGHkNsaKWsfCaD6ih2EU2v2rFnGxPNtxp73+ZgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOiOfwMAAP//Oyno9g==")
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
r3 = openat$full(0xffffffffffffff9c, 0x0, 0x40201, 0x0)
connect$unix(r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
setns(r1, 0x24020000)
syz_clone3(&(0x7f0000000000)={0x170e4000, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0}, 0x58)

3m32.481779204s ago: executing program 1 (id=88):
socketpair(0x25, 0xa, 0xc2, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$eJzs3M1vFOUfAPDv7G7hx2v3h/gCoqJoJL60tKBy8KKJiQdNTPSAx1oKQRZqaE2ENLYYghcTJeFuTLyY+Bd48kTUk4lXvBsSYriAelkz3dllu91tt91tt3U/n2To83Sf3ef7nZln55kZpgH0rYPpP0nEzoi4GRGDEZGrb7CtsqTt7t2ZGf/rzsx4EuXyu38m6dvi7p2Z8WrTJPu5o1IppB+Uu5JEsUm/UxcvnR0rlSYuZPXh6XMfDU9dvPTimXNjpydOT5wfPX782NGRV14efakreaYx3d3/6eSBfW++f+3t8RPXPvj5+0q85fL1G0cW5NEdAxExU1snjZ7pbmc9t6uunBR6GAgrsjUiCtneejMGI39ld+21wXjjs54GB6ypcrlcHm398lwZ+A9LotcRAL1RPdCn57/VpX4C8M/aTj967vZrlROgNO972VJ5pRCXszYDDee33XQwIk7M/f11ukTD9RQAgLXwYzr/eaHJ/K8Y8VBdu93ZvaFiRPw/IvZExAMRsTciHoxK24cj4pEV9n+wob54/pO7tbrM2pPO/17N7m0tnP/V7oIV81lt13z+A8mpM6WJI9k6ORwDW9P6SNNPTyLm0p+/fdmq//r5X7qk/VfnglkctwpbF77n5Nj0WMeJZ25fjthfaJZ/EoX7WcS+iNi/yj7OPPfdgYW/yddKy+e/hC7cZyp/E/FsZfvPRUP+VcnS9yeH/xeliSPD1b1isV9+vfpOq/47yr8L0u2/ven+X8u/mNTfr51a9BFbluvj6u+ftzynWe3+vyV5b0Hnn4xNT18YidiSvLX493UXuKv1avs0/8OHmo//PXF/TTwaEelO/FhEPB4RT2SxPxkRT0XEoSXy/+n1pz9cff5rK81/dkXbf+WF/NkbP7Tqv73tf6xamQ+qne+/dgPsZN0BAADAZpGLiJ2R5IZq5VxuaKjy/+X3xvZcaXJq+vlTkx+fP1l5RqAYA7nqla7BuuuhI9m14Wp9NKvPZvWj2XXj6/lt8/Wh8cnSyV4nD31uR4vxn/oj3+vogDXneS3oX8Y/9K/Vj3/fHLDZLTOKc+sVB7D+HMWhfzUb/7M9iANYf47/0L9q4/+rNhrXPe7V+PAmsPk4/kP/Mv6hL3XyXP+GKMS3EUu3STZKqCsqfNHJ2wvrEGHkNsaKWsfCaD6ih2EU2v2rFnGxPNtxp73+ZgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOiOfwMAAP//Oyno9g==")
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
r3 = openat$full(0xffffffffffffff9c, 0x0, 0x40201, 0x0)
connect$unix(r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
setns(r1, 0x24020000)
syz_clone3(&(0x7f0000000000)={0x170e4000, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0}, 0x58)

3m31.721293339s ago: executing program 0 (id=89):
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

3m30.459606373s ago: executing program 1 (id=92):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x8c67)
unshare(0x20000400)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000040)={0x27800000000, 0x0, 0x1, r2, 0x5})

3m29.953354962s ago: executing program 0 (id=97):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000040)={0x0, 0x84, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c00028005000100000009002400028014000180080001000000010908000200ac1e00010c000280050001000000000044000f800800014000000006080003400000002b080003400000000808000240000000400800014000000000fb0001400000000708000140000044f10800034000000003080007"], 0xa8}}, 0x0)

3m29.867995175s ago: executing program 32 (id=97):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000040)={0x0, 0x84, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="a800000000010904000500000000000002000000240001801400018008000100e000000108000200ac1e01010c00028005000100000009002400028014000180080001000000010908000200ac1e00010c000280050001000000000044000f800800014000000006080003400000002b080003400000000808000240000000400800014000000000fb0001400000000708000140000044f10800034000000003080007"], 0xa8}}, 0x0)

3m29.59597338s ago: executing program 1 (id=103):
socketpair(0x25, 0xa, 0xc2, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$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")
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
r3 = openat$full(0xffffffffffffff9c, 0x0, 0x40201, 0x0)
connect$unix(r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
setns(r1, 0x24020000)
syz_clone3(&(0x7f0000000000)={0x170e4000, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0}, 0x58)

3m29.500131591s ago: executing program 33 (id=103):
socketpair(0x25, 0xa, 0xc2, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$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")
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
r3 = openat$full(0xffffffffffffff9c, 0x0, 0x40201, 0x0)
connect$unix(r3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
setns(r1, 0x24020000)
syz_clone3(&(0x7f0000000000)={0x170e4000, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0}, 0x58)

7.023165215s ago: executing program 6 (id=1499):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)

7.022599635s ago: executing program 2 (id=1500):
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000001080)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x41, 0x0, @multicast2}, 0x20020003}}, 0x2e)
getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f00000000c0))

6.063789263s ago: executing program 6 (id=1505):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0xa000000d})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000000), 0x200, 0x80)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$EVIOCSREP(r5, 0x40084503, &(0x7f0000000180)=[0xb, 0x9])
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000400)={0xa})
syz_usb_connect(0x4, 0x24, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
epoll_pwait(r1, &(0x7f0000000080)=[{}], 0x1, 0x4c6, 0x0, 0x0)

5.328726018s ago: executing program 2 (id=1508):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xfa, 0xce, 0x74, 0x40, 0x403, 0x6010, 0xfd6, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x75, 0x0, 0x0, 0xfa, 0x38, 0x5c}}]}}]}}, 0x0)

3.976091874s ago: executing program 3 (id=1515):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x7, 0x8000, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000001480)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040080010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io$hid(r3, &(0x7f0000001440)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x5, "741cb976"}]}}, 0x0}, 0x0)
syz_usb_control_io$hid(r3, &(0x7f00000000c0)={0x24, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="000356000000"], 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r3, &(0x7f0000000880)={0x24, 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="0003"], 0x0, 0x0}, 0x0)

3.66468015s ago: executing program 6 (id=1516):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r4 = dup3(r3, r2, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

3.64457075s ago: executing program 6 (id=1517):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$inet6(0xa, 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0xd, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x80000}, [@alu={0x4, 0x1, 0x3, 0x9, 0x4, 0x8, 0x10}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x2}, @generic={0xe, 0x2, 0xa, 0x7, 0x7ff}, @map_fd={0x18, 0xd, 0x1, 0x0, r0}]}, &(0x7f0000000180)='syzkaller\x00', 0x101, 0x75, &(0x7f0000000440)=""/117, 0x40f00, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000003c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0x4, 0xdb62, 0x9c8f}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000500)=[r0], &(0x7f0000000540)=[{0x3, 0x1, 0x10, 0x2cb9d5e8e3ab34a9}, {0x3, 0x5, 0xc, 0x7}, {0x2, 0x4, 0x7, 0xa}, {0x3, 0x3, 0x1, 0x6}], 0x10, 0x166}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r6, 0xe0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000005d, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x0, 0x0, &(0x7f0000000380), 0x8, 0x2a, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x1, 0x4b4, &(0x7f0000000c80)="$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")
setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)

2.412877504s ago: executing program 2 (id=1518):
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000001080)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x41, 0x0, @multicast2}, 0x20020003}}, 0x2e)
getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f00000000c0))

2.411188554s ago: executing program 5 (id=1519):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000ffffffff00000000000000001801000011646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x18)
setitimer(0x2, 0x0, 0x0)

2.410880924s ago: executing program 5 (id=1520):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f00000021c0), 0x2000, &(0x7f00000041c0)={&(0x7f0000000140)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x0, 0x40, 0x0, 0x0, 0x57, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000008c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x78, 0x0, 0x7, {0xe, 0xcbff, 0x0, {0x5, 0xfffffffffffffff9, 0x1, 0x9, 0xa, 0x80000006, 0x5, 0x6, 0x101, 0xc000, 0x4, 0xffffffffffffffff, 0x0, 0x3, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x2)

2.410690694s ago: executing program 5 (id=1521):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x12, 0xf, 0x4, 0x2}, 0x48)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r6}, &(0x7f0000000440), &(0x7f0000000480)=r5}, 0x20)

2.405798484s ago: executing program 6 (id=1523):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)

2.253126307s ago: executing program 4 (id=1524):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000600)={0x2, {{0x2, 0x0, @multicast2}}}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000005000000000400000d00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000008000080000000000ff000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x0, &(0x7f0000000280)={[{@lazytime}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5e9, &(0x7f0000001200)="$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")
setpriority(0x1, 0x0, 0x4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000020300000000000000fff703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r5, &(0x7f0000000340), &(0x7f0000000700)=""/154}, 0x20)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x400, 0x0)
close(r7)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
writev(r6, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec9", 0xc}, {&(0x7f0000000440)="9c74", 0x2}], 0x2)

2.136151709s ago: executing program 4 (id=1525):
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000000)={0x5c, 0x5, 0x0, {0x0, 0x0, 0x9, 0x4}}, 0x30)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000070000000100010009"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x13c)

2.08682534s ago: executing program 4 (id=1526):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
syz_btf_id_by_name$bpf_lsm(&(0x7f0000000980)='bpf_lsm_locked_down\x00')

1.751921497s ago: executing program 2 (id=1527):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000600)=[@text32={0x20, &(0x7f0000000080)="66baf80cb8b392888bef66bafc0cec0f20dc0f06670f32640fc7bb06000000c4e2fd29b70700000066b804018ee0b9800000c00f3235004000000f303aaa00900000c4c1f9e6e5", 0x47}], 0x1, 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x1a5000, 0x0, 0x0, 0x0, 0x0)
getpgid(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x15)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2, 0x4}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000008840)=[{{0x0, 0x0, &(0x7f0000000240)}, 0xffffffff}], 0x1, 0x40000001, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
r4 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000180)="5e73663bf4082f7c6cbecbf09d6dd7be5a06dfd64563f329c16f799d1836bfc45a7badc8faed24bb77c848723a43602d1fe0d236c062e105ec77ffd00fb243c3111dda42112650cc", 0x0, 0xfe2a)
socket(0x10, 0x4, 0x0)

1.56128611s ago: executing program 5 (id=1528):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0}, &(0x7f00000001c0), &(0x7f0000000200)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x19, 0x4, 0x4, 0x20002, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

1.468016472s ago: executing program 5 (id=1529):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket(0x10, 0x3, 0x0)
getsockname$packet(r5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r6 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000001040)=@raw={'raw\x00', 0x3c1, 0x3, 0x360, 0x0, 0x12, 0x600, 0x1c0, 0x202, 0x290, 0x2e8, 0x2e8, 0x290, 0x2c0, 0x4, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth1_to_bond\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1c0, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "0000000000000019b5115c2aee68d23a465cd431e150c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baeb8989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b500", 0x2}}, @common=@inet=@socket2={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3c0)

1.153727218s ago: executing program 6 (id=1530):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab1204000000000000010902240001b30000040904410c17ff5d810009050f1f050440000009058303"], 0x0)

1.032359331s ago: executing program 4 (id=1531):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000ffffffff00000000000000001801000011646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x18)
setitimer(0x2, 0x0, 0x0)

991.089211ms ago: executing program 4 (id=1532):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = getpid()
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$incfs(&(0x7f00000007c0)='.\x00', &(0x7f0000000800)='./bus\x00', &(0x7f0000000840), 0x1004002, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000200)='./bus/file0\x00', 0x0)
syz_pidfd_open(r3, 0x0)
syz_clone3(0x0, 0x0)

989.883971ms ago: executing program 3 (id=1533):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f00000021c0), 0x2000, &(0x7f00000041c0)={&(0x7f0000000140)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x0, 0x40, 0x0, 0x0, 0x57, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000008c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x78, 0x0, 0x7, {0xe, 0xcbff, 0x0, {0x5, 0xfffffffffffffff9, 0x1, 0x9, 0xa, 0x80000006, 0x5, 0x6, 0x101, 0xc000, 0x4, 0xffffffffffffffff, 0x0, 0x3, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x2)

932.714623ms ago: executing program 2 (id=1534):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getrlimit(0xc, &(0x7f0000000000))
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0xffffffffffffffff, 0x5, &(0x7f0000000240)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
timerfd_settime(0xffffffffffffffff, 0x2, &(0x7f00000000c0)={{}, {0x0, 0x989680}}, &(0x7f0000000600))
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r8)
getsockname$packet(r8, &(0x7f00000001c0)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4004000}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@newtfilter={0x6c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x2}, {0xfffe}}}]}}]}]}]}}]}, 0x6c}}, 0x0)

911.160103ms ago: executing program 3 (id=1535):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000f3ff00"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x45, 0x1000}, 0x48)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000373010b000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14}, 0x94)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r4, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)

653.663378ms ago: executing program 3 (id=1536):
mkdir(&(0x7f0000000200)='./file0\x00', 0x50)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000000)={0x5c, 0x5, 0x0, {0x0, 0x0, 0x9, 0x4}}, 0x30)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000070000000100010009"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x13c)

625.926759ms ago: executing program 3 (id=1537):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
listen(0xffffffffffffffff, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='percpu_create_chunk\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

578.18409ms ago: executing program 5 (id=1538):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x12, 0xf, 0x4, 0x2}, 0x48)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r6}, &(0x7f0000000440), &(0x7f0000000480)=r5}, 0x20)

521.567431ms ago: executing program 3 (id=1539):
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000480))
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x9031, 0xffffffffffffffff, 0xe75f0000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
fsmount(0xffffffffffffffff, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

34.28781ms ago: executing program 4 (id=1540):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)

0s ago: executing program 2 (id=1541):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x1c0002, 0x0)
add_key$user(&(0x7f0000000000), &(0x7f0000000240)={'syz', 0x3}, &(0x7f0000000440)="98ff464bc9b091653a17abe8df0f7825aef97d9a7d2ef0185c59e60d0916a08fa3199b2a7e74032af4661cd2ff4400a58bdd0470cc8da9253bb9312908666810bac2a5c84ca3a958984a3a3666", 0x4d, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))

kernel console output (not intermixed with test programs):

 usbhid 5-1:0.0: can't add hid device: -71
[  135.454378][  T309] usbhid: probe of 5-1:0.0 failed with error -71
[  135.462323][ T2538] loop5: detected capacity change from 0 to 1024
[  135.476419][ T2538] EXT4-fs: Ignoring removed nobh option
[  135.482680][ T2538] EXT4-fs: Ignoring removed bh option
[  135.488958][ T2538] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  135.497640][  T309] usb 5-1: USB disconnect, device number 8
[  135.553009][ T2538] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  135.614674][   T28] audit: type=1400 audit(1757736120.366:399): avc:  denied  { write } for  pid=2550 comm="syz.6.721" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  135.630125][ T2538] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3841: comm syz.5.714: Allocating blocks 497-513 which overlap fs metadata
[  135.639335][ T2553] loop2: detected capacity change from 0 to 128
[  135.650271][ T2538] EXT4-fs (loop5): pa ffff8881178e71f8: logic 256, phys. 385, len 8
[  135.655606][ T2551] netlink: 44 bytes leftover after parsing attributes in process `syz.6.721'.
[  135.663749][ T2538] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1
[  135.673227][ T2551] netlink: 59 bytes leftover after parsing attributes in process `syz.6.721'.
[  135.696738][ T2551] netlink: 59 bytes leftover after parsing attributes in process `syz.6.721'.
[  135.911363][ T2553] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  135.984379][ T2553] ext4 filesystem being mounted at /154/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  136.016940][  T285] EXT4-fs (loop2): unmounting filesystem.
[  136.021582][  T658] EXT4-fs (loop5): unmounting filesystem.
[  136.491514][ T1680] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  136.592807][ T2576] loop3: detected capacity change from 0 to 2048
[  136.626536][ T2576] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  136.635378][ T2576] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.701574][ T1680] usb 7-1: Using ep0 maxpacket: 32
[  136.709842][ T1680] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  136.734810][ T2581] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.729: bg 0: block 345: padding at end of block bitmap is not set
[  136.749206][ T1680] usb 7-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00
[  136.758581][ T1680] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.767775][ T2581] EXT4-fs (loop3): Remounting filesystem read-only
[  136.784108][ T1680] usb 7-1: config 0 descriptor??
[  136.954838][  T283] EXT4-fs (loop3): unmounting filesystem.
[  137.049963][ T2591] loop4: detected capacity change from 0 to 1024
[  137.085808][ T2591] EXT4-fs: Ignoring removed nobh option
[  137.756776][ T1680] steelseries_srws1 0003:1038:1410.000D: not enough fields in HID_OUTPUT_REPORT 0
[  138.176073][ T2591] EXT4-fs: Ignoring removed bh option
[  138.215251][ T2591] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  138.327211][ T2591] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  138.367909][ T1680] usb 7-1: USB disconnect, device number 7
[  138.391563][   T28] audit: type=1400 audit(1757736123.126:400): avc:  denied  { ioctl } for  pid=2590 comm="syz.4.734" path="/150/file1/file1" dev="loop4" ino=15 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  138.443701][ T2614] syz.5.740 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  138.455785][  T287] EXT4-fs (loop4): unmounting filesystem.
[  138.770922][ T2631] loop4: detected capacity change from 0 to 256
[  138.815079][ T2631] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  139.048746][ T2639] loop6: detected capacity change from 0 to 128
[  139.118563][ T2639] FAT-fs (loop6): Unrecognized mount option "0xffffffffffffffffÿ01777777777777777777777¬‚ú=¨ËdÌž¬·Y ýS«38`¿·˜�›‚" or missing value
[  139.472047][ T2647] loop4: detected capacity change from 0 to 1024
[  139.488835][ T2647] EXT4-fs: Ignoring removed nobh option
[  139.664174][ T2647] EXT4-fs: Ignoring removed bh option
[  139.674920][ T2647] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  139.745107][ T2647] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  139.801182][  T287] EXT4-fs (loop4): unmounting filesystem.
[  139.880922][ T2656] loop4: detected capacity change from 0 to 1024
[  139.891967][ T2656] EXT4-fs: Ignoring removed nomblk_io_submit option
[  140.105437][ T2667] netlink: 8 bytes leftover after parsing attributes in process `syz.5.760'.
[  140.198976][ T2656] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  140.253330][ T2667] loop5: detected capacity change from 0 to 16
[  140.396203][ T2667] erofs: (device loop5): mounted with root inode @ nid 36.
[  140.406133][ T2671] loop6: detected capacity change from 0 to 256
[  140.594878][ T2671] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  141.022093][ T2683] loop3: detected capacity change from 0 to 256
[  141.068899][   T28] audit: type=1400 audit(1757736125.816:401): avc:  denied  { mounton } for  pid=2682 comm="syz.3.766" path="/147/file0" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  141.088339][ T2685] loop2: detected capacity change from 0 to 1024
[  141.093528][ T2683] incfs: Can't find or create .index dir in ./file0
[  141.118080][ T2683] incfs: mount failed -30
[  141.123394][ T2685] EXT4-fs: Ignoring removed nobh option
[  141.129022][ T2685] EXT4-fs: Ignoring removed bh option
[  141.151906][ T2685] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  141.220042][ T2687] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  141.411696][  T287] EXT4-fs (loop4): unmounting filesystem.
[  141.418487][ T2685] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  141.471212][  T285] EXT4-fs (loop2): unmounting filesystem.
[  141.749074][   T28] audit: type=1326 audit(1757736126.406:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2688 comm="syz.3.768" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f420738eba9 code=0x0
[  141.789730][ T2699] loop2: detected capacity change from 0 to 128
[  141.841341][ T2699] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  141.853279][ T2702] fuse: Unknown parameter 'grou00000000000000000000'
[  141.899326][ T2699] ext4 filesystem being mounted at /166/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  142.016477][ T2716] loop4: detected capacity change from 0 to 256
[  142.029318][ T2716] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  142.406440][ T2722] loop3: detected capacity change from 0 to 1024
[  142.413334][ T2722] EXT4-fs: Ignoring removed nomblk_io_submit option
[  142.432648][ T2724] loop6: detected capacity change from 0 to 512
[  142.442350][ T2722] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  142.467028][ T2724] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.780: casefold flag without casefold feature
[  142.489425][ T2728] loop4: detected capacity change from 0 to 256
[  142.509134][ T2728] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  142.539941][ T2724] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.780: couldn't read orphan inode 15 (err -117)
[  142.547194][ T2728] exFAT-fs (loop4): error, invalid access to FAT free cluster (entry 0x00000008)
[  142.552590][ T2724] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  142.595384][  T671] EXT4-fs (loop6): unmounting filesystem.
[  142.672328][  T285] EXT4-fs (loop2): unmounting filesystem.
[  142.679812][ T2735] loop6: detected capacity change from 0 to 256
[  142.690618][ T2735] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  142.701575][ T2735] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  142.738782][ T2735] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  142.755905][ T2739] netlink: 8 bytes leftover after parsing attributes in process `syz.4.785'.
[  142.769023][ T2739] loop4: detected capacity change from 0 to 16
[  142.783719][ T2739] erofs: (device loop4): mounted with root inode @ nid 36.
[  143.288566][  T283] EXT4-fs (loop3): unmounting filesystem.
[  143.366139][ T2766] loop3: detected capacity change from 0 to 512
[  143.390263][ T2766] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.794: casefold flag without casefold feature
[  143.436782][ T2766] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.794: couldn't read orphan inode 15 (err -117)
[  143.451553][ T2766] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  143.490208][  T283] EXT4-fs (loop3): unmounting filesystem.
[  143.673874][ T2785] loop2: detected capacity change from 0 to 1024
[  143.683981][ T2785] EXT4-fs: Ignoring removed nomblk_io_submit option
[  143.708668][ T2785] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  144.168504][ T2799] input: syz1 as /devices/virtual/input/input21
[  144.334215][ T2752] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  144.798141][ T2808] loop4: detected capacity change from 0 to 512
[  144.865458][ T2808] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.808: casefold flag without casefold feature
[  144.901688][ T2808] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.808: couldn't read orphan inode 15 (err -117)
[  144.933636][ T2808] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  144.982625][ T2752] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  145.001093][  T287] EXT4-fs (loop4): unmounting filesystem.
[  145.009044][ T2752] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  145.020618][   T28] audit: type=1400 audit(1757736129.696:403): avc:  denied  { ioctl } for  pid=2815 comm="syz.6.811" path="/dev/binderfs/binder0" dev="binder" ino=10 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  145.021394][ T2752] usb 4-1: config 1 has no interface number 0
[  145.071588][ T2752] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  145.091496][ T2752] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  145.500865][   T28] audit: type=1400 audit(1757736129.696:404): avc:  denied  { set_context_mgr } for  pid=2815 comm="syz.6.811" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  145.521250][ T2752] usb 4-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  145.536625][  T285] EXT4-fs (loop2): unmounting filesystem.
[  145.542663][ T2752] usb 4-1: config 1 interface 1 has no altsetting 0
[  145.549420][   T28] audit: type=1400 audit(1757736129.696:405): avc:  denied  { map } for  pid=2815 comm="syz.6.811" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  145.576893][   T28] audit: type=1400 audit(1757736129.706:406): avc:  denied  { call } for  pid=2815 comm="syz.6.811" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  145.597686][ T2752] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  145.607146][ T2752] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.615455][ T2752] usb 4-1: Product: syz
[  145.619800][ T2752] usb 4-1: Manufacturer: syz
[  145.625356][ T2752] usb 4-1: SerialNumber: syz
[  145.892837][ T2836] loop4: detected capacity change from 0 to 256
[  145.922278][ T2836] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  146.165628][ T2836] exFAT-fs (loop4): error, invalid access to FAT free cluster (entry 0x00000008)
[  146.198144][ T2752] usb 4-1: USB disconnect, device number 9
[  146.255400][ T2851] loop4: detected capacity change from 0 to 128
[  146.279321][ T2851] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  146.288657][ T2851] ext4 filesystem being mounted at /173/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  146.869170][ T2862] loop2: detected capacity change from 0 to 256
[  146.885246][ T2862] exFAT-fs (loop2): failed to load upcase table (idx : 0x000106cd, chksum : 0x3aeaf2c0, utbl_chksum : 0xe619d30d)
[  147.066734][ T2886] loop6: detected capacity change from 0 to 2048
[  147.085697][   T28] audit: type=1400 audit(1757736131.836:407): avc:  denied  { watch } for  pid=2876 comm="syz.5.836" path="/165/control" dev="tmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  147.800082][  T287] EXT4-fs (loop4): unmounting filesystem.
[  147.806437][   T28] audit: type=1400 audit(1757736132.516:408): avc:  denied  { shutdown } for  pid=2861 comm="syz.2.829" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  147.844080][ T2886] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  147.853584][ T2886] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.866045][   T28] audit: type=1400 audit(1757736132.526:409): avc:  denied  { write } for  pid=2861 comm="syz.2.829" name="ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  147.989509][   T28] audit: type=1400 audit(1757736132.526:410): avc:  denied  { open } for  pid=2861 comm="syz.2.829" path="/dev/ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  148.020369][   T28] audit: type=1400 audit(1757736132.526:411): avc:  denied  { ioctl } for  pid=2861 comm="syz.2.829" path="/dev/ppp" dev="devtmpfs" ino=158 ioctlcmd=0x743d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  148.146993][  T671] EXT4-fs (loop6): unmounting filesystem.
[  148.352108][ T2898] loop2: detected capacity change from 0 to 40427
[  148.359541][ T2898] F2FS-fs (loop2): fault_injection options not supported
[  148.367667][ T2898] F2FS-fs (loop2): invalid crc value
[  148.370062][ T2922] loop3: detected capacity change from 0 to 128
[  148.386020][ T2898] F2FS-fs (loop2): Found nat_bits in checkpoint
[  148.403083][ T2922] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  148.422745][ T2922] ext4 filesystem being mounted at /157/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  148.546381][ T2898] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  148.683171][ T1680] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  148.700597][   T28] audit: type=1400 audit(1757736133.446:412): avc:  denied  { rename } for  pid=2897 comm="syz.2.844" name="file0" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  148.723134][   T28] audit: type=1400 audit(1757736133.446:413): avc:  denied  { unlink } for  pid=2897 comm="syz.2.844" name="file0" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  149.110922][  T285] syz-executor: attempt to access beyond end of device
[  149.110922][  T285] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  149.173877][ T2933] fuse: Bad value for 'fd'
[  149.204774][ T1680] usb 5-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.223088][ T1680] usb 5-1: config 0 interface 0 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.235075][ T2937] overlayfs: failed to resolve './file0': -2
[  149.241586][ T1680] usb 5-1: config 0 interface 0 has no altsetting 0
[  149.254767][  T283] EXT4-fs (loop3): unmounting filesystem.
[  149.260856][ T1680] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  149.271232][ T1680] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.283684][ T1680] usb 5-1: config 0 descriptor??
[  150.229348][ T2949] loop3: detected capacity change from 0 to 2048
[  150.283113][ T2949] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  150.296353][ T2949] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.385400][ T2950] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.861: bg 0: block 345: padding at end of block bitmap is not set
[  150.431768][ T2961] loop2: detected capacity change from 0 to 128
[  150.440958][ T2950] EXT4-fs (loop3): Remounting filesystem read-only
[  150.467334][ T2961] FAT-fs (loop2): Unrecognized mount option "0xffffffffffffffffÿ01777777777777777777777¬‚ú=¨ËdÌž¬·Y ýS«38`¿·˜�›‚" or missing value
[  150.620529][ T1680] usbhid 5-1:0.0: can't add hid device: -71
[  150.629722][ T1680] usbhid: probe of 5-1:0.0 failed with error -71
[  150.647953][ T1680] usb 5-1: USB disconnect, device number 9
[  151.089940][ T2972] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  151.127871][  T283] EXT4-fs (loop3): unmounting filesystem.
[  151.454265][ T2974] loop3: detected capacity change from 0 to 4096
[  151.461883][ T2974] EXT4-fs (loop3): Test dummy encryption mode enabled
[  151.482895][ T2974] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  151.520543][ T2974] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  151.546059][   T28] audit: type=1400 audit(1757736136.296:414): avc:  denied  { remount } for  pid=2973 comm="syz.3.867" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  151.621828][ T2981] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  151.848354][   T28] audit: type=1400 audit(1757736136.296:415): avc:  denied  { write } for  pid=2973 comm="syz.3.867" name="/" dev="overlay" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  151.887397][  T283] EXT4-fs (loop3): unmounting filesystem.
[  151.890052][ T2983] loop2: detected capacity change from 0 to 256
[  151.899587][   T28] audit: type=1400 audit(1757736136.296:416): avc:  denied  { add_name } for  pid=2973 comm="syz.3.867" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  151.999975][ T2983] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  152.024542][ T2985] loop3: detected capacity change from 0 to 1024
[  152.063307][ T2985] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  152.121184][  T283] EXT4-fs (loop3): unmounting filesystem.
[  152.234048][ T3005] loop6: detected capacity change from 0 to 512
[  152.242645][ T3003] overlayfs: failed to resolve './file0': -2
[  152.323962][  T335] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  152.786592][ T3013] xt_CT: No such helper "pptp"
[  153.468273][ T3025] loop2: detected capacity change from 0 to 8192
[  153.707378][ T3035] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  153.977887][  T336] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  153.999032][ T3025] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  154.022830][ T3025] FAT-fs (loop2): error, clusters badly computed (1 != 0)
[  154.035436][ T3025] FAT-fs (loop2): Filesystem has been set read-only
[  154.043725][ T3025] FAT-fs (loop2): error, clusters badly computed (2 != 1)
[  154.050984][ T3025] FAT-fs (loop2): error, clusters badly computed (3 != 2)
[  154.058760][ T3025] FAT-fs (loop2): error, clusters badly computed (4 != 3)
[  154.191514][  T336] usb 5-1: Using ep0 maxpacket: 16
[  154.197851][  T336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.209004][  T336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.219201][  T336] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  154.232426][  T336] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  154.241724][  T336] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.253735][  T336] usb 5-1: config 0 descriptor??
[  154.560271][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  154.560287][   T28] audit: type=1400 audit(1757736139.306:426): avc:  denied  { name_bind } for  pid=3060 comm="syz.5.899" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  154.620908][ T3065] loop5: detected capacity change from 0 to 512
[  154.642562][  T426] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  154.664403][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.678597][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.688578][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.701580][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.718578][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.731520][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.746418][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.754304][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.761686][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.768935][  T336] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  154.779112][  T336] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.000E/input/input22
[  154.852756][  T336] microsoft 0003:045E:07DA.000E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  154.890216][  T336] usb 5-1: USB disconnect, device number 10
[  154.966575][ T3068] fido_id[3068]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  155.005291][ T3070] loop3: detected capacity change from 0 to 1024
[  155.033796][ T3072] overlayfs: failed to get inode (-116)
[  155.041873][ T3070] EXT4-fs: Ignoring removed nobh option
[  155.048915][ T3072] overlayfs: failed to look up (bus) for ino (-116)
[  155.056359][ T3070] EXT4-fs: Ignoring removed bh option
[  155.068961][ T3070] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  155.136056][ T3070] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  155.158096][  T283] EXT4-fs (loop3): unmounting filesystem.
[  155.189857][ T3085] netlink: 8 bytes leftover after parsing attributes in process `syz.3.907'.
[  155.240764][ T3085] loop3: detected capacity change from 0 to 16
[  155.269282][ T3085] erofs: (device loop3): mounted with root inode @ nid 36.
[  155.615476][   T28] audit: type=1400 audit(1757736140.366:427): avc:  denied  { read } for  pid=3094 comm="syz.5.911" name="ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  155.767580][ T3103] loop4: detected capacity change from 0 to 128
[  155.797678][ T3103] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  155.830930][ T3103] ext4 filesystem being mounted at /185/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  156.079928][ T3117] netlink: 4 bytes leftover after parsing attributes in process `syz.6.918'.
[  156.091214][ T3117] netlink: 12 bytes leftover after parsing attributes in process `syz.6.918'.
[  156.371501][    T6] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  156.551963][    T6] usb 4-1: Using ep0 maxpacket: 16
[  156.558687][    T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.569609][    T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.611454][    T6] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  156.624946][    T6] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  156.624992][  T287] EXT4-fs (loop4): unmounting filesystem.
[  156.634404][    T6] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.658456][    T6] usb 4-1: config 0 descriptor??
[  156.822488][ T3127] xt_socket: unknown flags 0xc
[  157.070912][  T386] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  157.120397][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.127730][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.135190][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.142616][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.149947][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.157831][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.165959][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.173329][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.180726][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.188053][    T6] microsoft 0003:045E:07DA.000F: unknown main item tag 0x0
[  157.199609][    T6] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.000F/input/input23
[  157.221529][ T2599] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  157.251593][ T3131] loop6: detected capacity change from 0 to 512
[  157.252620][  T386] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  157.273163][    T6] microsoft 0003:045E:07DA.000F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  157.285907][  T386] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  157.302543][ T3131] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.923: bg 0: block 393: padding at end of block bitmap is not set
[  157.331562][    T6] usb 4-1: USB disconnect, device number 10
[  157.341766][  T386] usb 3-1: config 1 has no interface number 0
[  157.364505][  T386] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  157.384890][  T386] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  157.395790][ T3134] fido_id[3134]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  157.410631][ T2599] usb 6-1: Using ep0 maxpacket: 16
[  157.417980][ T3131] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  157.430135][ T2599] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.445198][  T386] usb 3-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  157.459257][ T2599] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.473296][ T3131] EXT4-fs (loop6): 2 truncates cleaned up
[  157.479121][  T386] usb 3-1: config 1 interface 1 has no altsetting 0
[  157.492786][ T2599] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  157.506336][ T3131] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  157.515891][ T2599] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  157.527400][ T2599] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.536782][  T386] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  157.547699][ T3136] loop4: detected capacity change from 0 to 256
[  157.556164][  T386] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.565902][  T386] usb 3-1: Product: syz
[  157.570559][ T2599] usb 6-1: config 0 descriptor??
[  157.587424][  T386] usb 3-1: Manufacturer: syz
[  157.592324][  T386] usb 3-1: SerialNumber: syz
[  157.597357][ T3136] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF
[  157.819482][  T386] cdc_mbim: probe of 3-1:1.1 failed with error -71
[  157.841952][  T386] usb 3-1: USB disconnect, device number 9
[  158.368617][ T2599] usbhid 6-1:0.0: can't add hid device: -71
[  158.374913][ T2599] usbhid: probe of 6-1:0.0 failed with error -71
[  158.382791][ T2599] usb 6-1: USB disconnect, device number 7
[  158.447009][ T3153] loop2: detected capacity change from 0 to 128
[  158.469535][ T3153] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  158.478434][ T3153] ext4 filesystem being mounted at /195/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  158.706838][  T671] EXT4-fs (loop6): unmounting filesystem.
[  158.741515][  T945] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  158.953735][  T945] usb 4-1: New USB device found, idVendor=1e7d, idProduct=3264, bcdDevice= 0.00
[  159.182642][  T945] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.217991][  T945] usb 4-1: config 0 descriptor??
[  159.445663][  T285] EXT4-fs (loop2): unmounting filesystem.
[  159.671967][  T945] usbhid 4-1:0.0: can't add hid device: -71
[  159.681230][  T945] usbhid: probe of 4-1:0.0 failed with error -71
[  159.709404][  T945] usb 4-1: USB disconnect, device number 11
[  159.909068][ T3193] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  160.145226][ T3195] loop5: detected capacity change from 0 to 256
[  160.154796][ T3195] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  160.169277][ T3195] exFAT-fs (loop5): error, invalid access to FAT free cluster (entry 0x00000008)
[  160.200200][ T3198] fuse: Bad value for 'fd'
[  160.274533][ T3199] loop4: detected capacity change from 0 to 512
[  160.305973][ T3199] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.943: bg 0: block 393: padding at end of block bitmap is not set
[  160.323247][ T3199] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  160.334767][ T3199] EXT4-fs (loop4): 2 truncates cleaned up
[  160.340773][ T3199] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  161.937338][ T3223] fuse: Bad value for 'rootmode'
[  162.049620][ T3230] fuse: Bad value for 'fd'
[  162.155561][ T3234] loop3: detected capacity change from 0 to 2048
[  162.204952][ T3234] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  162.222075][ T3234] ext4 filesystem being mounted at /175/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.292658][  T336] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  162.294084][ T3245] input: syz1 as /devices/virtual/input/input24
[  162.446682][ T3246] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.959: bg 0: block 345: padding at end of block bitmap is not set
[  162.541379][ T3246] EXT4-fs (loop3): Remounting filesystem read-only
[  163.251934][  T283] EXT4-fs (loop3): unmounting filesystem.
[  163.482617][  T336] usb 6-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  163.501491][  T336] usb 6-1: config 0 interface 0 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[  163.528655][  T336] usb 6-1: config 0 interface 0 has no altsetting 0
[  163.548808][  T336] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  163.572238][  T336] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.646300][   T28] audit: type=1400 audit(1757736148.376:428): avc:  denied  { read write } for  pid=3251 comm="syz.3.964" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  163.836198][  T336] usb 6-1: config 0 descriptor??
[  163.928383][   T28] audit: type=1400 audit(1757736148.386:429): avc:  denied  { open } for  pid=3251 comm="syz.3.964" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  164.065638][  T287] EXT4-fs (loop4): unmounting filesystem.
[  164.563231][    C1] raw-gadget.0 gadget.5: ignoring, device is not running
[  164.570387][  T336] usbhid 6-1:0.0: can't add hid device: -32
[  164.576685][  T336] usbhid: probe of 6-1:0.0 failed with error -32
[  164.584947][ T3269] overlayfs: failed to resolve './file1': -2
[  164.586555][  T336] usb 6-1: USB disconnect, device number 8
[  165.112351][   T60] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  166.388905][   T60] usb 7-1: Using ep0 maxpacket: 8
[  166.408474][   T60] usb 7-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  166.430799][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.505934][   T60] usb 7-1: config 0 descriptor??
[  166.926179][   T60] logitech 0003:046D:C294.0010: unknown main item tag 0x0
[  166.933523][   T60] logitech 0003:046D:C294.0010: item fetching failed at offset 3/5
[  166.942507][   T60] logitech 0003:046D:C294.0010: parse failed
[  166.948940][   T60] logitech: probe of 0003:046D:C294.0010 failed with error -22
[  167.131500][ T2599] usb 7-1: USB disconnect, device number 8
[  167.452066][ T3318] loop3: detected capacity change from 0 to 128
[  167.458843][ T3318] FAT-fs (loop3): Unrecognized mount option "0xffffffffffffffffÿ01777777777777777777777¬‚ú=¨ËdÌž¬·Y ýS«38`¿·˜�›‚" or missing value
[  168.284584][ T3333] loop2: detected capacity change from 0 to 256
[  168.447989][ T3333] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  168.484286][ T3339] fuse: Invalid rootmode
[  168.586837][ T3333] exFAT-fs (loop2): error, invalid access to FAT free cluster (entry 0x00000008)
[  168.757872][   T28] audit: type=1400 audit(1757736153.506:430): avc:  denied  { bind } for  pid=3353 comm="syz.2.1000" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  168.911780][   T60] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  169.111688][   T60] usb 4-1: Using ep0 maxpacket: 16
[  169.121309][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.157663][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  169.167758][   T60] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  169.173886][ T3370] fuse: Bad value for 'rootmode'
[  169.188157][   T60] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  169.206702][   T60] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.215706][ T3372] loop4: detected capacity change from 0 to 256
[  169.221276][   T60] usb 4-1: config 0 descriptor??
[  169.226638][ T3372] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  169.243857][ T3372] exFAT-fs (loop4): error, invalid access to FAT free cluster (entry 0x00000008)
[  169.728033][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  169.818303][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  169.907404][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.000992][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.158725][ T3386] loop6: detected capacity change from 0 to 1024
[  170.175467][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.187407][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.195439][ T3386] EXT4-fs: Ignoring removed orlov option
[  170.202005][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.211305][ T3386] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  170.221127][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.233382][ T3386] overlayfs: './bus' not a directory
[  170.239470][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.308087][   T28] audit: type=1400 audit(1757736154.986:431): avc:  denied  { read } for  pid=3384 comm="syz.6.1013" path="/156/bus/bus" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  170.316838][   T60] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  170.340471][   T28] audit: type=1400 audit(1757736154.986:432): avc:  denied  { mounton } for  pid=3384 comm="syz.6.1013" path="/156/bus/bus" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  170.351276][   T60] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0011/input/input25
[  170.702877][   T60] microsoft 0003:045E:07DA.0011: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  170.730711][   T60] usb 4-1: USB disconnect, device number 12
[  170.780568][ T3396] fido_id[3396]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  170.873298][  T336] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  171.168859][  T671] EXT4-fs (loop6): unmounting filesystem.
[  171.177079][  T336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  171.206447][  T336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  171.222037][  T336] usb 5-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  171.232610][  T336] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.241384][  T336] usb 5-1: config 0 descriptor??
[  171.625777][ T3418] loop2: detected capacity change from 0 to 128
[  171.637385][ T3418] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  171.646285][ T3418] ext4 filesystem being mounted at /224/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  171.706978][  T336] hid-steam 0003:28DE:1142.0012: unknown main item tag 0x0
[  171.714883][  T336] hid-steam 0003:28DE:1142.0012: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.4-1/input0
[  171.727833][  T336] hid-steam 0003:28DE:1142.0013: unknown main item tag 0x0
[  171.736036][  T336] hid-steam 0003:28DE:1142.0013: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.4-1/input0
[  171.821232][  T336] hid-steam 0003:28DE:1142.0012: Steam wireless receiver connected
[  171.835080][  T336] hid-steam 0003:28DE:1142.0012: No HID_FEATURE_REPORT submitted -  nothing to read
[  171.892083][  T309] usb 5-1: USB disconnect, device number 11
[  171.910293][  T309] hid-steam 0003:28DE:1142.0012: Steam wireless receiver disconnected
[  171.979503][ T3434] loop5: detected capacity change from 0 to 512
[  172.004521][ T3434] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1027: bg 0: block 393: padding at end of block bitmap is not set
[  172.020233][ T3434] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  172.029998][ T3434] EXT4-fs (loop5): 2 truncates cleaned up
[  172.035881][ T3434] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  172.198699][ T3437] fuse: Unknown parameter 'user_i00000000000000000000'
[  172.517059][  T285] EXT4-fs (loop2): unmounting filesystem.
[  173.303138][  T658] EXT4-fs (loop5): unmounting filesystem.
[  173.558049][ T3467] input: syz1 as /devices/virtual/input/input26
[  173.691613][ T1680] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  173.901547][ T1680] usb 4-1: Using ep0 maxpacket: 16
[  173.909766][ T1680] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  173.963931][ T1680] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  174.024875][ T1680] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 32
[  174.141849][ T1680] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  174.197604][ T1680] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  174.239093][ T3470] fuse: Unknown parameter 'user_i00000000000000000000'
[  174.280823][ T1680] usb 4-1: SerialNumber: syz
[  174.420932][ T3461] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  174.440278][ T1680] cdc_acm 4-1:1.0: skipping garbage
[  174.460885][ T1680] cdc_acm: probe of 4-1:1.0 failed with error -12
[  174.536302][ T3479] netlink: 'syz.5.1046': attribute type 2 has an invalid length.
[  174.671016][ T1680] usb 4-1: USB disconnect, device number 13
[  174.828583][ T3487] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1048'.
[  174.927409][ T3487] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1048'.
[  175.060649][ T3479] loop5: detected capacity change from 0 to 40427
[  175.071762][ T3479] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  175.080122][ T3479] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  175.091531][ T3479] F2FS-fs (loop5): Found nat_bits in checkpoint
[  175.125612][ T3479] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  175.133138][ T3479] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  175.151546][  T309] usb 7-1: new full-speed USB device number 9 using dummy_hcd
[  175.358811][ T3503] syz.5.1046[3503] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.358967][ T3503] syz.5.1046[3503] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.372053][ T3503] fuse: Bad value for 'group_id'
[  175.462346][ T3504] xt_CT: No such helper "pptp"
[  176.063834][ T3503] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  176.983837][  T309] usb 7-1: New USB device found, idVendor=1e7d, idProduct=3264, bcdDevice= 0.00
[  177.002554][  T309] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.016972][  T309] usb 7-1: config 0 descriptor??
[  177.175480][ T3526] loop5: detected capacity change from 0 to 4096
[  177.195068][ T3526] EXT4-fs (loop5): Test dummy encryption mode enabled
[  177.212255][ T3526] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  177.245768][  T658] EXT4-fs (loop5): unmounting filesystem.
[  177.699017][  T309] isku 0003:1E7D:3264.0014: unbalanced delimiter at end of report description
[  177.708201][  T309] isku 0003:1E7D:3264.0014: parse failed
[  177.719737][  T309] isku: probe of 0003:1E7D:3264.0014 failed with error -22
[  177.794647][  T336] usb 7-1: USB disconnect, device number 9
[  177.918943][ T3544] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1066'.
[  177.929541][ T3544] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1066'.
[  178.469394][ T3552] xt_CT: No such helper "pptp"
[  178.736195][ T3554] loop5: detected capacity change from 0 to 512
[  178.771756][ T3554] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  178.781502][ T3554] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.800406][  T658] EXT4-fs (loop5): unmounting filesystem.
[  178.861098][ T3562] fuse: Unknown parameter 'user_i00000000000000000000'
[  179.661718][ T3581] input: syz1 as /devices/virtual/input/input27
[  181.125330][ T3599] loop2: detected capacity change from 0 to 512
[  181.175341][ T3599] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1083: iget: bad extra_isize 50264 (inode size 256)
[  181.189094][ T3599] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1083: couldn't read orphan inode 15 (err -117)
[  181.204124][ T3599] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  181.248306][  T285] EXT4-fs (loop2): unmounting filesystem.
[  181.255346][   T28] audit: type=1326 audit(1757736165.986:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.279126][   T28] audit: type=1326 audit(1757736165.986:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.309112][   T28] audit: type=1326 audit(1757736165.986:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.371504][   T28] audit: type=1326 audit(1757736165.986:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.396808][ T3608] fuse: Unknown parameter 'user_i00000000000000000000'
[  181.403806][   T28] audit: type=1326 audit(1757736165.986:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.455511][   T28] audit: type=1326 audit(1757736165.986:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.480204][   T28] audit: type=1326 audit(1757736165.986:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.512293][   T28] audit: type=1326 audit(1757736165.986:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.551859][   T28] audit: type=1326 audit(1757736165.986:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  181.585469][   T28] audit: type=1326 audit(1757736165.986:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3597 comm="syz.2.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fec2938eba9 code=0x7ffc0000
[  182.101848][ T3616] xt_CT: No such helper "pptp"
[  182.340819][ T3613] loop2: detected capacity change from 0 to 1024
[  183.385680][ T3613] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  183.451678][  T285] EXT4-fs (loop2): unmounting filesystem.
[  183.657804][ T3632] loop2: detected capacity change from 0 to 512
[  183.712425][ T3637] fuse: Unknown parameter '0x0000000000000003'
[  184.013812][ T3643] input: syz1 as /devices/virtual/input/input28
[  184.341378][  T335] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  185.346861][ T3653] binder: BINDER_SET_CONTEXT_MGR already set
[  185.927882][ T3653] binder: 3652:3653 ioctl 4018620d 200000000040 returned -16
[  187.015852][ T3667] loop4: detected capacity change from 0 to 1024
[  187.078679][ T3667] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  187.081161][ T3674] fuse: Unknown parameter '0x0000000000000003'
[  187.134384][  T287] EXT4-fs (loop4): unmounting filesystem.
[  188.450902][ T3693] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1112'.
[  188.500178][ T3698] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3698 comm=syz.4.1113
[  188.568749][ T3699] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1112'.
[  188.611382][ T3701] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1115'.
[  188.642815][ T3701] loop2: detected capacity change from 0 to 16
[  188.672314][ T3701] erofs: (device loop2): mounted with root inode @ nid 36.
[  188.804007][ T3706] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  189.218540][ T3711] input: syz1 as /devices/virtual/input/input29
[  190.408755][ T3720] loop3: detected capacity change from 0 to 1024
[  190.487767][ T3734] loop6: detected capacity change from 0 to 128
[  190.491704][ T3720] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  190.509463][ T3734] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  190.518548][ T3734] ext4 filesystem being mounted at /175/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  190.554513][  T283] EXT4-fs (loop3): unmounting filesystem.
[  190.564062][ T3737] loop4: detected capacity change from 0 to 512
[  190.597580][ T3737] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1124: bg 0: block 393: padding at end of block bitmap is not set
[  190.612297][ T3737] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  190.628611][ T3737] EXT4-fs (loop4): 2 truncates cleaned up
[  190.634636][ T3737] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  190.711513][ T1680] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  190.727856][  T671] EXT4-fs (loop6): unmounting filesystem.
[  190.861461][ T1680] usb 6-1: device descriptor read/64, error -71
[  190.930707][ T3748] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  191.287781][ T1680] usb 6-1: device descriptor read/64, error -71
[  191.295029][  T287] EXT4-fs (loop4): unmounting filesystem.
[  191.317406][ T3753] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1129'.
[  191.519420][ T3759] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1131'.
[  191.765686][ T3761] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1131'.
[  191.801452][ T1680] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  191.882649][ T3767] input: syz1 as /devices/virtual/input/input30
[  191.961539][ T1680] usb 6-1: device descriptor read/64, error -71
[  192.281556][ T1680] usb 6-1: device descriptor read/64, error -71
[  192.411740][ T1680] usb usb6-port1: attempt power cycle
[  193.152515][ T3776] loop3: detected capacity change from 0 to 512
[  193.159279][ T3776] EXT4-fs: Ignoring removed mblk_io_submit option
[  193.165890][ T3776] EXT4-fs: Ignoring removed mblk_io_submit option
[  193.174273][ T3776] EXT4-fs (loop3): Test dummy encryption mode enabled
[  193.181239][ T3776] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  193.237649][ T3776] EXT4-fs (loop3): 1 truncate cleaned up
[  193.243645][ T3776] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  193.671506][ T1680] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  193.751479][  T374] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  193.941526][  T374] usb 3-1: Using ep0 maxpacket: 16
[  193.948274][  T374] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  193.958405][  T374] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  193.972540][  T283] EXT4-fs (loop3): unmounting filesystem.
[  193.974003][ T3785] loop4: detected capacity change from 0 to 512
[  193.978800][  T374] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 32
[  193.996847][  T374] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  194.006199][  T374] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  194.014703][  T374] usb 3-1: SerialNumber: syz
[  194.024301][ T3779] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  194.033999][  T374] cdc_acm 3-1:1.0: skipping garbage
[  194.039490][  T374] cdc_acm: probe of 3-1:1.0 failed with error -12
[  194.050454][ T3787] loop5: detected capacity change from 0 to 512
[  194.078903][ T3787] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1139: bg 0: block 393: padding at end of block bitmap is not set
[  194.093634][ T3787] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  194.103374][ T3787] EXT4-fs (loop5): 2 truncates cleaned up
[  194.109177][ T3787] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  194.130220][ T1680] usb 6-1: device not accepting address 11, error -71
[  194.173653][  T335] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  194.225567][  T658] EXT4-fs (loop5): unmounting filesystem.
[  194.261038][ T3798] binder: BINDER_SET_CONTEXT_MGR already set
[  194.267319][ T3798] binder: 3797:3798 ioctl 4018620d 200000000040 returned -16
[  197.287205][  T309] usb 3-1: USB disconnect, device number 10
[  197.957143][  T374] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  198.085996][ T1680] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  198.150941][ T1680] usb 6-1: Using ep0 maxpacket: 16
[  198.165687][ T1680] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 11
[  198.179275][ T1680] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  198.204095][ T1680] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  198.257884][ T1680] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  198.343979][  T374] usb 5-1: Using ep0 maxpacket: 16
[  198.349463][ T1680] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  198.362726][ T1680] usb 6-1: config 1 interface 0 has no altsetting 0
[  198.369754][ T1680] usb 6-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  198.380329][ T1680] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.396737][  T374] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  198.410988][ T1680] ums-sddr09 6-1:1.0: USB Mass Storage device detected
[  198.431635][  T374] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.447751][  T374] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  198.460946][  T374] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  198.470553][  T374] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.479639][  T374] usb 5-1: config 0 descriptor??
[  198.530060][ T3842] binder: BINDER_SET_CONTEXT_MGR already set
[  198.536197][ T3842] binder: 3841:3842 ioctl 4018620d 200000000040 returned -16
[  198.553901][ T3836] loop6: detected capacity change from 0 to 512
[  198.571838][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  198.571855][   T28] audit: type=1326 audit(1757736183.326:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f420738eba9 code=0x7ffc0000
[  198.601864][   T28] audit: type=1326 audit(1757736183.326:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f420738eba9 code=0x7ffc0000
[  198.625557][   T28] audit: type=1326 audit(1757736183.326:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f420738eba9 code=0x7ffc0000
[  198.649722][   T28] audit: type=1326 audit(1757736183.326:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f420738eba9 code=0x7ffc0000
[  198.649999][ T3836] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1153: bg 0: block 393: padding at end of block bitmap is not set
[  198.673752][   T28] audit: type=1326 audit(1757736183.326:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f420738eba9 code=0x7ffc0000
[  198.690705][ T1680] ums-sddr09: probe of 6-1:1.0 failed with error -22
[  198.720613][ T1680] usb 6-1: USB disconnect, device number 12
[  198.726653][ T3836] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  198.733947][   T28] audit: type=1326 audit(1757736183.326:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f420738d510 code=0x7ffc0000
[  198.758931][ T3836] EXT4-fs (loop6): 2 truncates cleaned up
[  198.759023][   T28] audit: type=1326 audit(1757736183.326:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f420738e7ab code=0x7ffc0000
[  198.765004][ T3836] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  198.788976][   T28] audit: type=1326 audit(1757736183.326:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f420738e7ab code=0x7ffc0000
[  198.820256][   T28] audit: type=1326 audit(1757736183.326:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f420738e7ab code=0x7ffc0000
[  198.843731][   T28] audit: type=1326 audit(1757736183.326:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3846 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f420738e7ab code=0x7ffc0000
[  198.867203][  T309] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  198.911510][  T825] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  198.920837][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.928227][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.935535][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.943050][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.950336][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.957888][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.965352][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.972684][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.979935][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.987254][  T374] microsoft 0003:045E:07DA.0015: unknown main item tag 0x0
[  198.998067][  T374] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0015/input/input31
[  199.051447][  T309] usb 3-1: Using ep0 maxpacket: 16
[  199.057773][  T309] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  199.067704][  T309] usb 3-1: New USB device found, idVendor=056a, idProduct=0064, bcdDevice= 0.00
[  199.077093][  T309] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.086011][  T374] microsoft 0003:045E:07DA.0015: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  199.098753][  T309] usb 3-1: config 0 descriptor??
[  199.115452][  T825] usb 4-1: not running at top speed; connect to a high speed hub
[  199.137693][   T60] usb 5-1: USB disconnect, device number 12
[  199.153085][  T825] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  199.162303][  T825] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  199.178146][  T825] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  199.187553][  T825] usb 4-1: config 1 has no interface number 1
[  199.195921][  T825] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  199.207684][  T825] usb 4-1: config 1 interface 2 has no altsetting 0
[  199.216594][  T825] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  199.225718][  T825] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.233836][  T825] usb 4-1: Product: syz
[  199.238186][  T825] usb 4-1: Manufacturer: syz
[  199.269258][ T3853] fuse: Unknown parameter '00000000000000000003'
[  199.277710][  T671] EXT4-fs (loop6): unmounting filesystem.
[  199.283636][  T825] usb 4-1: SerialNumber: syz
[  199.525724][  T825] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[  199.555883][  T825] usb 4-1: 2:1 : format type 9 is not supported yet
[  199.563342][  T825] usb 4-1: selecting invalid altsetting 0
[  199.681621][  T825] usb 4-1: USB disconnect, device number 14
[  199.740361][  T309] wacom 0003:056A:0064.0016: Unknown device_type for 'HID 056a:0064'. Assuming pen.
[  199.759255][  T309] wacom 0003:056A:0064.0016: hidraw0: USB HID v0.00 Device [HID 056a:0064] on usb-dummy_hcd.2-1/input0
[  199.771290][  T309] input: Wacom PenPartner2 Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0064.0016/input/input32
[  199.791088][  T309] usb 3-1: USB disconnect, device number 11
[  199.822498][ T3863] fido_id[3863]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/3-1/report_descriptor': No such file or directory
[  199.994001][  T426] udevd[426]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  200.545923][ T3897] loop3: detected capacity change from 0 to 512
[  201.253955][ T3897] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1174: bg 0: block 393: padding at end of block bitmap is not set
[  201.270957][ T3897] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  201.282042][ T3897] EXT4-fs (loop3): 2 truncates cleaned up
[  201.287842][ T3897] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  201.660039][  T283] EXT4-fs (loop3): unmounting filesystem.
[  201.771456][  T374] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  201.951650][  T945] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  202.151487][  T945] usb 4-1: Using ep0 maxpacket: 16
[  202.160239][  T945] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.181456][  T374] usb 3-1: Using ep0 maxpacket: 16
[  202.187840][  T374] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.189855][  T945] usb 4-1: New USB device found, idVendor=056a, idProduct=0064, bcdDevice= 0.00
[  202.207982][  T374] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.215872][  T945] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.235376][  T374] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  202.239748][  T945] usb 4-1: config 0 descriptor??
[  202.261507][  T374] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  202.270668][  T374] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.282156][  T374] usb 3-1: config 0 descriptor??
[  202.659892][  T945] wacom 0003:056A:0064.0017: Unknown device_type for 'HID 056a:0064'. Assuming pen.
[  202.670519][  T945] wacom 0003:056A:0064.0017: hidraw0: USB HID v0.00 Device [HID 056a:0064] on usb-dummy_hcd.3-1/input0
[  202.682933][  T945] input: Wacom PenPartner2 Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:0064.0017/input/input35
[  202.698154][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.705872][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.713325][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.720724][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.728210][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.736199][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.743575][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.750923][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.758189][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.765503][  T374] microsoft 0003:045E:07DA.0018: unknown main item tag 0x0
[  202.776945][  T374] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0018/input/input38
[  202.791549][   T60] usb 7-1: new full-speed USB device number 10 using dummy_hcd
[  202.843284][ T3949] loop5: detected capacity change from 0 to 128
[  202.876722][ T3949] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  202.886641][ T3949] ext4 filesystem being mounted at /253/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  202.887013][  T374] microsoft 0003:045E:07DA.0018: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  202.911885][ T1680] usb 4-1: USB disconnect, device number 15
[  202.923345][  T374] usb 3-1: USB disconnect, device number 12
[  203.063667][   T60] usb 7-1: New USB device found, idVendor=1e7d, idProduct=3264, bcdDevice= 0.00
[  203.083826][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.678781][ T3957] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1201'.
[  204.244362][ T3953] loop4: detected capacity change from 0 to 512
[  204.256677][   T60] usb 7-1: config 0 descriptor??
[  204.318897][ T3953] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1198: bg 0: block 393: padding at end of block bitmap is not set
[  204.334614][ T3953] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  204.343706][ T3953] EXT4-fs (loop4): 2 truncates cleaned up
[  204.349478][ T3953] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  204.373231][ T3964] fido_id[3964]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  204.456921][  T658] EXT4-fs (loop5): unmounting filesystem.
[  205.174840][ T3970] loop5: detected capacity change from 0 to 1024
[  205.199682][   T60] isku 0003:1E7D:3264.0019: unbalanced delimiter at end of report description
[  205.209961][  T287] EXT4-fs (loop4): unmounting filesystem.
[  205.216785][ T3970] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  205.229599][   T60] isku 0003:1E7D:3264.0019: parse failed
[  205.270559][   T60] isku: probe of 0003:1E7D:3264.0019 failed with error -22
[  205.282010][  T658] EXT4-fs (loop5): unmounting filesystem.
[  205.401555][  T374] usb 7-1: USB disconnect, device number 10
[  206.110072][ T4001] loop6: detected capacity change from 0 to 2048
[  206.202684][ T4001] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  206.226874][ T4001] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.398244][ T4013] loop4: detected capacity change from 0 to 512
[  208.904111][ T4022] loop2: detected capacity change from 0 to 1024
[  208.911368][ T4020] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1214: bg 0: block 345: padding at end of block bitmap is not set
[  208.932190][ T4020] EXT4-fs (loop6): Remounting filesystem read-only
[  208.943617][ T4013] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1216: bg 0: block 393: padding at end of block bitmap is not set
[  208.964987][ T4013] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  208.974123][ T4013] EXT4-fs (loop4): 2 truncates cleaned up
[  208.974649][ T4022] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  208.979929][ T4013] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  209.046866][  T285] EXT4-fs (loop2): unmounting filesystem.
[  209.212086][  T287] EXT4-fs (loop4): unmounting filesystem.
[  209.411197][  T671] EXT4-fs (loop6): unmounting filesystem.
[  209.516253][ T4043] loop4: detected capacity change from 0 to 1024
[  209.528416][ T4043] EXT4-fs: Ignoring removed nomblk_io_submit option
[  209.562992][ T4043] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  210.576495][  T287] EXT4-fs (loop4): unmounting filesystem.
[  210.641519][ T1680] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  210.689359][ T4055] loop5: detected capacity change from 0 to 1024
[  210.997147][ T4055] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  211.118192][  T658] EXT4-fs (loop5): unmounting filesystem.
[  211.169986][ T4066] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1233'.
[  211.181867][ T4066] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4066 comm=syz.5.1233
[  211.197021][ T4066] sch_fq: defrate 4294967295 ignored.
[  211.251434][ T1680] usb 4-1: Using ep0 maxpacket: 16
[  211.260318][ T1680] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  211.281201][ T1680] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  211.296567][ T1680] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  211.303800][ T4079] 9pnet: Could not find request transport: fd0x0000000000000003
[  211.311636][ T1680] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  211.326303][ T1680] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.327467][ T4080] loop5: detected capacity change from 0 to 1024
[  211.335979][ T1680] usb 4-1: config 0 descriptor??
[  211.345629][ T4080] EXT4-fs: Ignoring removed nomblk_io_submit option
[  211.368209][ T4080] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  211.373732][ T4084] loop2: detected capacity change from 0 to 128
[  211.395974][ T4084] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  211.404967][ T4084] ext4 filesystem being mounted at /265/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  211.505544][  T658] EXT4-fs (loop5): unmounting filesystem.
[  211.731202][ T4094] xt_CT: No such helper "pptp"
[  211.894149][ T4098] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1245'.
[  211.928137][ T4098] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4098 comm=syz.4.1245
[  211.955770][ T4098] sch_fq: defrate 4294967295 ignored.
[  211.969334][ T4099] loop5: detected capacity change from 0 to 4096
[  212.027887][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.051984][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.062773][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.069097][ T4099] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  212.079297][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.086798][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.094334][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.102175][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.110050][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.117497][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.125092][ T1680] microsoft 0003:045E:07DA.001A: unknown main item tag 0x0
[  212.148112][ T1680] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.001A/input/input39
[  212.163936][ T4099] EXT4-fs error (device loop5): ext4_empty_dir:3154: inode #12: block 80: comm syz.5.1246: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  212.192601][ T4099] EXT4-fs warning (device loop5): ext4_empty_dir:3156: inode #12: comm syz.5.1246: directory missing '..'
[  212.236970][ T1680] microsoft 0003:045E:07DA.001A: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  212.250230][ T4110] 9pnet: Could not find request transport: fd0x0000000000000003
[  212.259542][ T1680] usb 4-1: USB disconnect, device number 16
[  212.287353][  T658] EXT4-fs (loop5): unmounting filesystem.
[  212.330564][ T4113] loop4: detected capacity change from 0 to 1024
[  212.349856][ T4111] fido_id[4111]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  212.382625][  T285] EXT4-fs (loop2): unmounting filesystem.
[  212.415666][ T4113] EXT4-fs: Ignoring removed nomblk_io_submit option
[  212.448799][ T4113] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  212.810656][   T24] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  212.812240][ T4130] xt_CT: No such helper "pptp"
[  213.032987][   T28] kauditd_printk_skb: 24 callbacks suppressed
[  213.033003][   T28] audit: type=1326 audit(1757736197.786:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4140 comm="syz.6.1262" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f823a38eba9 code=0x0
[  213.062313][   T24] usb 6-1: Using ep0 maxpacket: 8
[  213.068868][   T24] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  213.077279][   T24] usb 6-1: config 179 has no interface number 0
[  213.084375][   T24] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10
[  213.099017][   T24] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  213.106008][ T4143] loop3: detected capacity change from 0 to 1024
[  213.110459][   T24] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  213.125749][ T4143] EXT4-fs: Ignoring removed nomblk_io_submit option
[  213.129113][   T24] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  213.145891][   T28] audit: type=1400 audit(1757736197.896:481): avc:  denied  { append } for  pid=4140 comm="syz.6.1262" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  213.146168][   T24] usb 6-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  213.203162][ T4143] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  213.216304][  T287] EXT4-fs (loop4): unmounting filesystem.
[  213.222151][   T24] usb 6-1: config 179 interface 65 has no altsetting 0
[  213.229049][   T24] usb 6-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  213.298821][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.307912][ T4125] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  213.317361][   T24] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:179.65/input/input40
[  214.182419][   T24] usb 6-1: USB disconnect, device number 13
[  214.182468][    C1] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  214.275103][ T4166] xt_CT: No such helper "pptp"
[  214.352747][   T24] xpad 6-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  214.361094][  T283] EXT4-fs (loop3): unmounting filesystem.
[  214.463867][ T4178] loop2: detected capacity change from 0 to 1024
[  214.482517][ T4178] EXT4-fs: Ignoring removed nomblk_io_submit option
[  214.513331][ T4178] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  214.596638][ T4172] loop3: detected capacity change from 0 to 40427
[  214.603854][ T4172] F2FS-fs (loop3): Mismatch start address, segment0(0) cp_blkaddr(512)
[  214.622241][ T4172] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  214.638694][ T4172] F2FS-fs (loop3): heap/no_heap options were deprecated
[  214.646753][ T4172] F2FS-fs (loop3): invalid crc value
[  214.660236][ T4172] F2FS-fs (loop3): Found nat_bits in checkpoint
[  214.691687][ T1680] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  214.706176][ T4172] F2FS-fs (loop3): Start checkpoint disabled!
[  214.713485][ T4172] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  214.720711][ T4172] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  214.937063][ T4192] syz.4.1276[4192] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  214.937233][ T4192] syz.4.1276[4192] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.666569][ T4191] syz.3.1272: attempt to access beyond end of device
[  215.666569][ T4191] loop3: rw=2049, sector=77824, nr_sectors = 8 limit=40427
[  215.692133][ T4191] syz.3.1272: attempt to access beyond end of device
[  215.692133][ T4191] loop3: rw=2049, sector=77864, nr_sectors = 16 limit=40427
[  215.706645][ T4191] syz.3.1272: attempt to access beyond end of device
[  215.706645][ T4191] loop3: rw=2049, sector=77896, nr_sectors = 32 limit=40427
[  215.720864][ T4191] syz.3.1272: attempt to access beyond end of device
[  215.720864][ T4191] loop3: rw=2049, sector=77952, nr_sectors = 8 limit=40427
[  215.747574][   T28] audit: type=1400 audit(1757736200.406:482): avc:  denied  { write } for  pid=4171 comm="syz.3.1272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  215.768607][  T285] EXT4-fs (loop2): unmounting filesystem.
[  215.901436][ T1680] usb 7-1: Using ep0 maxpacket: 16
[  215.907716][ T1680] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.931471][ T1680] usb 7-1: New USB device found, idVendor=056a, idProduct=0064, bcdDevice= 0.00
[  215.940547][ T1680] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.951494][ T4190] loop5: detected capacity change from 0 to 40427
[  215.978949][ T4190] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  216.032147][ T4190] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  216.145196][ T4190] F2FS-fs (loop5): Found nat_bits in checkpoint
[  216.490741][   T43] kworker/u4:2: attempt to access beyond end of device
[  216.490741][   T43] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  216.517376][   T43] kworker/u4:2: attempt to access beyond end of device
[  216.517376][   T43] loop3: rw=2049, sector=41000, nr_sectors = 8 limit=40427
[  216.532656][ T1680] usb 7-1: config 0 descriptor??
[  216.539016][ T4190] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  216.546911][ T4190] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  216.817430][ T4210] syz.5.1277[4210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.817829][ T4210] syz.5.1277[4210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.890384][ T4211] loop3: detected capacity change from 0 to 512
[  216.952704][  T344] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  217.632482][ T4211] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1280: bg 0: block 393: padding at end of block bitmap is not set
[  217.647213][ T4211] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  217.662286][ T4211] EXT4-fs (loop3): 2 truncates cleaned up
[  217.668087][ T4211] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  217.750372][  T344] usb 5-1: Using ep0 maxpacket: 8
[  217.756681][  T344] usb 5-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  217.815959][  T283] EXT4-fs (loop3): unmounting filesystem.
[  217.822608][  T344] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.858549][  T344] usb 5-1: config 0 descriptor??
[  217.860082][ T1680] wacom 0003:056A:0064.001B: Unknown device_type for 'HID 056a:0064'. Assuming pen.
[  217.877641][ T4217] loop3: detected capacity change from 0 to 2048
[  217.896856][ T1680] wacom 0003:056A:0064.001B: hidraw0: USB HID v0.00 Device [HID 056a:0064] on usb-dummy_hcd.6-1/input0
[  217.920313][ T1680] input: Wacom PenPartner2 Pen as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:056A:0064.001B/input/input41
[  217.951538][ T1680] usb 7-1: USB disconnect, device number 11
[  217.954494][ T4219] xt_CT: No such helper "pptp"
[  217.968731][ T4217] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  217.981531][ T4217] ext4 filesystem being mounted at /240/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.008445][ T4222] fido_id[4222]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/7-1/report_descriptor': No such file or directory
[  218.061481][ T4223] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1283: bg 0: block 345: padding at end of block bitmap is not set
[  218.081750][ T4223] EXT4-fs (loop3): Remounting filesystem read-only
[  218.230283][ T4227] input: syz1 as /devices/virtual/input/input44
[  218.357862][  T283] EXT4-fs (loop3): unmounting filesystem.
[  218.641092][  T344] logitech 0003:046D:C294.001C: unknown main item tag 0x0
[  218.664209][  T344] logitech 0003:046D:C294.001C: item fetching failed at offset 3/5
[  218.712642][  T344] logitech 0003:046D:C294.001C: parse failed
[  218.721266][  T344] logitech: probe of 0003:046D:C294.001C failed with error -22
[  219.198948][ T4231] overlayfs: missing 'lowerdir'
[  220.501851][  T344] usb 5-1: USB disconnect, device number 13
[  220.899947][   T28] audit: type=1400 audit(1757736205.646:483): avc:  denied  { relabelfrom } for  pid=4237 comm="syz.3.1285" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  221.046005][   T28] audit: type=1400 audit(1757736205.676:484): avc:  denied  { relabelto } for  pid=4237 comm="syz.3.1285" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  221.103132][ T4242] loop4: detected capacity change from 0 to 1024
[  221.122104][ T4242] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  221.172559][  T287] EXT4-fs (loop4): unmounting filesystem.
[  221.309314][ T4261] loop6: detected capacity change from 0 to 2048
[  221.323552][ T4263] loop2: detected capacity change from 0 to 4096
[  221.334158][ T4263] EXT4-fs (loop2): Test dummy encryption mode enabled
[  221.343626][ T4263] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  221.348657][ T4261] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  221.665233][ T4261] ext4 filesystem being mounted at /207/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.667685][ T4268] overlayfs: missing 'lowerdir'
[  221.702528][  T285] EXT4-fs (loop2): unmounting filesystem.
[  221.752441][ T4274] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1295: bg 0: block 345: padding at end of block bitmap is not set
[  221.767293][ T4274] EXT4-fs (loop6): Remounting filesystem read-only
[  221.811558][    T6] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  221.837709][ T4278] input: syz1 as /devices/virtual/input/input45
[  222.003715][    T6] usb 5-1: config 0 has an invalid interface number: 117 but max is 0
[  222.021287][    T6] usb 5-1: config 0 has no interface number 0
[  222.228062][    T6] usb 5-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= f.d6
[  222.298623][    T6] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  222.360453][    T6] usb 5-1: Product: syz
[  222.393193][    T6] usb 5-1: Manufacturer: syz
[  222.468819][    T6] usb 5-1: SerialNumber: syz
[  222.504007][  T671] EXT4-fs (loop6): unmounting filesystem.
[  222.542792][    T6] usb 5-1: config 0 descriptor??
[  222.663790][    T6] ftdi_sio 5-1:0.117: FTDI USB Serial Device converter detected
[  222.690066][    T6] ftdi_sio ttyUSB0: unknown device type: 0xfd6
[  222.766315][  T344] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  223.078046][ T4288] loop6: detected capacity change from 0 to 1024
[  223.706434][ T4288] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  223.758003][  T671] EXT4-fs (loop6): unmounting filesystem.
[  223.781495][  T344] usb 6-1: Using ep0 maxpacket: 16
[  223.788692][  T344] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  223.816774][  T344] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  223.836909][  T344] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 32
[  223.858538][  T344] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  223.878421][  T344] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  223.891557][  T344] usb 6-1: SerialNumber: syz
[  223.905282][ T4276] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  223.918828][    T6] usb 5-1: USB disconnect, device number 14
[  223.925176][    T6] ftdi_sio 5-1:0.117: device disconnected
[  223.936330][  T344] cdc_acm 6-1:1.0: skipping garbage
[  224.008614][  T344] cdc_acm: probe of 6-1:1.0 failed with error -12
[  224.133852][  T344] usb 6-1: USB disconnect, device number 14
[  224.221467][ T4234] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  224.421477][ T4234] usb 7-1: Using ep0 maxpacket: 16
[  224.427991][ T4234] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 11
[  224.442243][ T4234] usb 7-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  224.452280][ T4234] usb 7-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  224.462263][ T4234] usb 7-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  224.472219][ T4234] usb 7-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  224.482487][ T4234] usb 7-1: config 1 interface 0 has no altsetting 0
[  224.489197][ T4234] usb 7-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  224.498944][ T4234] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.519121][ T4234] ums-sddr09 7-1:1.0: USB Mass Storage device detected
[  224.809717][ T4323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1315'.
[  224.819336][ T4323] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4323 comm=syz.3.1315
[  224.937523][ T4325] loop3: detected capacity change from 0 to 1024
[  224.967236][ T4325] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  225.027393][  T283] EXT4-fs (loop3): unmounting filesystem.
[  226.798530][ T4384] loop5: detected capacity change from 0 to 1024
[  226.806457][ T4384] EXT4-fs: Ignoring removed nomblk_io_submit option
[  226.832172][ T4384] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  227.021443][  T309] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  227.201442][  T309] usb 5-1: Using ep0 maxpacket: 16
[  227.208255][  T309] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  227.218139][  T309] usb 5-1: New USB device found, idVendor=056a, idProduct=0064, bcdDevice= 0.00
[  227.227374][  T309] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.236541][  T309] usb 5-1: config 0 descriptor??
[  227.663930][  T658] EXT4-fs (loop5): unmounting filesystem.
[  227.665135][  T309] wacom 0003:056A:0064.001D: Unknown device_type for 'HID 056a:0064'. Assuming pen.
[  227.692096][  T309] wacom 0003:056A:0064.001D: hidraw0: USB HID v0.00 Device [HID 056a:0064] on usb-dummy_hcd.4-1/input0
[  227.715488][  T309] input: Wacom PenPartner2 Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:0064.001D/input/input46
[  227.868754][  T309] usb 5-1: USB disconnect, device number 15
[  227.936128][ T4412] syz.5.1347[4412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  227.936491][ T4412] syz.5.1347[4412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  228.838393][ T4415] xt_CT: No such helper "pptp"
[  229.219462][ T4427] loop3: detected capacity change from 0 to 2048
[  229.308699][ T4435] loop2: detected capacity change from 0 to 512
[  229.391953][ T4427] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  229.401005][ T4427] ext4 filesystem being mounted at /255/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.503214][ T4441] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1353: bg 0: block 345: padding at end of block bitmap is not set
[  229.520955][ T4441] EXT4-fs (loop3): Remounting filesystem read-only
[  229.555563][ T4234] ums-sddr09: probe of 7-1:1.0 failed with error -22
[  229.591497][    T6] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  229.625287][ T4234] usb 7-1: USB disconnect, device number 12
[  229.783456][  T283] EXT4-fs (loop3): unmounting filesystem.
[  229.791561][    T6] usb 6-1: Using ep0 maxpacket: 16
[  229.798992][    T6] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.831318][    T6] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  229.892074][    T6] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  229.935984][    T6] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  229.968107][    T6] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.001289][    T6] usb 6-1: config 0 descriptor??
[  230.271511][  T344] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  230.427994][    T6] usbhid 6-1:0.0: can't add hid device: -71
[  230.435058][    T6] usbhid: probe of 6-1:0.0 failed with error -71
[  230.481527][  T344] usb 4-1: Using ep0 maxpacket: 16
[  230.489742][  T344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  230.551702][  T344] usb 4-1: New USB device found, idVendor=056a, idProduct=0064, bcdDevice= 0.00
[  230.596122][  T344] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.698799][    T6] usb 6-1: USB disconnect, device number 15
[  230.699144][  T344] usb 4-1: config 0 descriptor??
[  231.106742][ T4467] syz.5.1365[4467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.107079][ T4467] syz.5.1365[4467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.324594][  T344] wacom 0003:056A:0064.001E: Unknown device_type for 'HID 056a:0064'. Assuming pen.
[  231.649571][  T344] wacom 0003:056A:0064.001E: hidraw0: USB HID v0.00 Device [HID 056a:0064] on usb-dummy_hcd.3-1/input0
[  231.772701][  T344] input: Wacom PenPartner2 Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:0064.001E/input/input49
[  231.956732][  T344] usb 4-1: USB disconnect, device number 17
[  232.017213][ T4476] fido_id[4476]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  232.251504][   T24] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  232.442548][   T24] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  232.451481][ T4234] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  232.453397][   T24] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 2
[  232.480901][   T24] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  232.486017][ T4489] loop5: detected capacity change from 0 to 512
[  232.496852][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.505173][   T24] usb 5-1: Product: syz
[  232.509538][   T24] usb 5-1: Manufacturer: syz
[  232.515242][   T24] usb 5-1: SerialNumber: syz
[  232.531464][  T344] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  232.661444][ T4234] usb 7-1: Using ep0 maxpacket: 8
[  232.668695][ T4234] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  232.677411][ T4234] usb 7-1: config 179 has no interface number 0
[  232.684267][ T4234] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10
[  232.695958][ T4234] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  232.707562][ T4234] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  232.719103][ T4234] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  232.729601][ T4234] usb 7-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  232.743112][ T4234] usb 7-1: config 179 interface 65 has no altsetting 0
[  232.750305][ T4234] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  232.751442][  T344] usb 4-1: Using ep0 maxpacket: 16
[  232.765098][ T4234] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.767001][  T344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.785497][  T344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  232.787092][ T4485] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  232.804308][  T344] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  232.806424][ T4234] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:179.65/input/input52
[  232.829957][  T344] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  232.846214][  T344] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.858431][  T344] usb 4-1: config 0 descriptor??
[  233.089339][    T6] usb 7-1: USB disconnect, device number 13
[  233.089416][    C0] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  233.105649][    T6] xpad 7-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  233.278583][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.286337][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.294785][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.302892][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.359828][   T28] audit: type=1400 audit(1757736218.106:485): avc:  denied  { wake_alarm } for  pid=4496 comm="syz.2.1377" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  233.406855][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.414275][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.421927][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.430930][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.438697][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.446794][  T344] microsoft 0003:045E:07DA.001F: unknown main item tag 0x0
[  233.458699][  T344] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.001F/input/input53
[  233.542683][  T344] microsoft 0003:045E:07DA.001F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  233.559567][  T344] usb 4-1: USB disconnect, device number 18
[  233.593681][ T4506] fido_id[4506]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  233.701441][    T6] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  233.781538][  T945] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  233.853642][ T4514] loop6: detected capacity change from 0 to 512
[  233.981510][  T945] usb 3-1: Using ep0 maxpacket: 16
[  233.989870][  T945] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.032531][ T4514] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1384: bg 0: block 393: padding at end of block bitmap is not set
[  234.048534][ T4514] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  234.060262][ T4514] EXT4-fs (loop6): 2 truncates cleaned up
[  234.066099][ T4514] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  234.130889][  T945] usb 3-1: New USB device found, idVendor=056a, idProduct=0064, bcdDevice= 0.00
[  234.166169][  T945] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.242218][  T945] usb 3-1: config 0 descriptor??
[  234.737782][  T671] EXT4-fs (loop6): unmounting filesystem.
[  234.760012][ T4520] loop6: detected capacity change from 0 to 1024
[  234.766572][  T344] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  234.778506][ T4520] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  234.794631][   T28] audit: type=1400 audit(1757736219.546:486): avc:  denied  { append } for  pid=4519 comm="syz.6.1386" name="tun" dev="devtmpfs" ino=156 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:bsdpty_device_t:s0"
[  234.808314][  T945] wacom 0003:056A:0064.0020: Unknown device_type for 'HID 056a:0064'. Assuming pen.
[  234.835988][  T945] wacom 0003:056A:0064.0020: hidraw0: USB HID v0.00 Device [HID 056a:0064] on usb-dummy_hcd.2-1/input0
[  234.851868][  T945] input: Wacom PenPartner2 Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0064.0020/input/input54
[  234.855413][    T6] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.880753][    T6] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.893707][    T6] usb 6-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  234.913436][    T6] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.929522][    T6] usb 6-1: config 0 descriptor??
[  234.936166][  T945] usb 5-1: USB disconnect, device number 16
[  234.961571][  T344] usb 4-1: Using ep0 maxpacket: 8
[  234.970082][  T344] usb 4-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  234.971201][  T671] EXT4-fs (loop6): unmounting filesystem.
[  234.979826][  T344] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.011847][  T344] usb 4-1: config 0 descriptor??
[  235.020396][ T4234] usb 3-1: USB disconnect, device number 13
[  235.348543][  T945] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  235.358033][    T6] usbhid 6-1:0.0: can't add hid device: -71
[  235.364064][    T6] usbhid: probe of 6-1:0.0 failed with error -71
[  235.372092][    T6] usb 6-1: USB disconnect, device number 16
[  235.437343][    C1] raw-gadget.3 gadget.3: ignoring, device is not running
[  235.445030][  T344] usbhid 4-1:0.0: can't add hid device: -71
[  235.451031][  T344] usbhid: probe of 4-1:0.0 failed with error -71
[  235.460724][  T344] usb 4-1: USB disconnect, device number 19
[  235.541546][  T945] usb 5-1: Using ep0 maxpacket: 16
[  235.547913][  T945] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 11
[  235.557244][  T945] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  235.567084][  T945] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  235.577052][  T945] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  235.587002][  T945] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  235.596917][  T945] usb 5-1: config 1 interface 0 has no altsetting 0
[  235.605126][  T945] usb 5-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  235.614690][  T945] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.637916][ T4534] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1390'.
[  235.647304][ T4534] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1390'.
[  235.676910][  T945] ums-sddr09 5-1:1.0: USB Mass Storage device detected
[  235.971158][  T945] ums-sddr09: probe of 5-1:1.0 failed with error -22
[  236.006835][  T945] usb 5-1: USB disconnect, device number 17
[  236.351505][   T60] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  236.692600][ T4573] overlayfs: missing 'lowerdir'
[  236.726474][ T4577] loop4: detected capacity change from 0 to 1024
[  236.733334][ T4577] EXT4-fs: Ignoring removed nomblk_io_submit option
[  236.744287][ T4577] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  236.821514][    T6] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  236.831895][   T60] usb 4-1: Using ep0 maxpacket: 8
[  236.838427][   T60] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  236.846814][   T60] usb 4-1: config 179 has no interface number 0
[  236.853151][   T60] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10
[  236.899913][   T60] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  236.911781][   T60] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  236.938796][   T60] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  236.949535][   T60] usb 4-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  236.989449][   T60] usb 4-1: config 179 interface 65 has no altsetting 0
[  237.072286][   T60] usb 4-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  237.141213][   T60] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.228314][ T4542] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  237.330843][   T60] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input57
[  237.738888][ T4582] syz.4.1409 (4582) used greatest stack depth: 20928 bytes left
[  237.771669][   T60] usb 4-1: USB disconnect, device number 20
[  237.771724][    C1] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  237.828501][ T4588] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1412'.
[  237.841303][  T287] EXT4-fs (loop4): unmounting filesystem.
[  237.850094][   T60] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  237.855283][ T4588] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4588 comm=syz.6.1412
[  237.883635][ T4592] loop4: detected capacity change from 0 to 128
[  237.894554][ T4592] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  237.919080][ T4592] ext4 filesystem being mounted at /286/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  237.931463][    T6] usb 3-1: Using ep0 maxpacket: 16
[  237.951814][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  237.964110][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  237.974002][    T6] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  237.987200][    T6] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  237.996317][    T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.005193][    T6] usb 3-1: config 0 descriptor??
[  238.077047][ T4601] overlayfs: missing 'lowerdir'
[  238.418497][    T6] usbhid 3-1:0.0: can't add hid device: -71
[  238.425660][    T6] usbhid: probe of 3-1:0.0 failed with error -71
[  238.436406][    T6] usb 3-1: USB disconnect, device number 14
[  238.570334][ T4625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1427'.
[  238.579646][ T4625] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4625 comm=syz.3.1427
[  238.593499][ T4625] sch_fq: defrate 4294967295 ignored.
[  238.723448][ T4629] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1428'.
[  238.745772][ T4629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1428'.
[  238.805857][  T287] EXT4-fs (loop4): unmounting filesystem.
[  238.949197][ T4637] overlayfs: missing 'lowerdir'
[  239.201283][ T4653] loop5: detected capacity change from 0 to 2048
[  239.233291][ T4653] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  239.242131][ T4653] ext4 filesystem being mounted at /297/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.316223][ T4658] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1437: bg 0: block 345: padding at end of block bitmap is not set
[  239.330923][ T4658] EXT4-fs (loop5): Remounting filesystem read-only
[  239.372474][  T658] EXT4-fs (loop5): unmounting filesystem.
[  239.443083][ T4661] loop5: detected capacity change from 0 to 1024
[  239.461125][ T4661] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  239.512061][  T658] EXT4-fs (loop5): unmounting filesystem.
[  239.747648][ T4673] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  239.763777][ T4673] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  240.063544][ T4685] loop5: detected capacity change from 0 to 1024
[  240.070690][ T4685] EXT4-fs: Ignoring removed nomblk_io_submit option
[  240.082992][ T4685] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  240.519314][ T4695] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1450'.
[  240.529347][ T4695] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1450'.
[  240.691011][ T4697] loop4: detected capacity change from 0 to 2048
[  240.718702][ T4697] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  240.727794][ T4697] ext4 filesystem being mounted at /292/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.847268][ T4702] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1451: bg 0: block 345: padding at end of block bitmap is not set
[  240.862054][ T4702] EXT4-fs (loop4): Remounting filesystem read-only
[  240.956486][  T658] EXT4-fs (loop5): unmounting filesystem.
[  241.083743][ T4708] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  241.100586][ T4708] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  241.149960][  T287] EXT4-fs (loop4): unmounting filesystem.
[  241.344088][ T4712] loop4: detected capacity change from 0 to 4096
[  241.370750][ T4712] EXT4-fs (loop4): Test dummy encryption mode enabled
[  241.385819][ T4712] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  241.646628][ T4721] loop3: detected capacity change from 0 to 1024
[  241.675200][ T4723] overlayfs: missing 'workdir'
[  241.695720][  T287] EXT4-fs (loop4): unmounting filesystem.
[  241.704388][ T4721] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  241.762001][  T283] EXT4-fs (loop3): unmounting filesystem.
[  241.880546][ T4733] loop4: detected capacity change from 0 to 1024
[  242.036272][ T4733] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  242.756868][  T287] EXT4-fs (loop4): unmounting filesystem.
[  242.831700][ T4746] loop5: detected capacity change from 0 to 2048
[  242.891964][ T4746] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  242.909375][ T4746] ext4 filesystem being mounted at /307/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  243.082402][ T4760] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  243.086489][ T4762] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1467: bg 0: block 345: padding at end of block bitmap is not set
[  243.106801][ T4760] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  243.120395][ T4762] EXT4-fs (loop5): Remounting filesystem read-only
[  243.185720][  T658] EXT4-fs (loop5): unmounting filesystem.
[  243.491457][  T309] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  243.672865][  T309] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  243.683985][  T309] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  243.693812][  T309] usb 6-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  243.703049][  T309] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.711738][  T309] usb 6-1: config 0 descriptor??
[  243.811968][ T4780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1480'.
[  243.821342][ T4780] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4780 comm=syz.2.1480
[  243.835042][ T4780] sch_fq: defrate 4294967295 ignored.
[  244.039524][ T4784] xt_CT: No such helper "pptp"
[  244.296499][  T309] usbhid 6-1:0.0: can't add hid device: -71
[  244.302565][  T309] usbhid: probe of 6-1:0.0 failed with error -71
[  244.309712][  T309] usb 6-1: USB disconnect, device number 17
[  244.466649][   T28] audit: type=1326 audit(1757736229.216:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.3.1485" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f420738eba9 code=0x0
[  244.651423][  T945] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  244.752747][ T4798] overlayfs: missing 'lowerdir'
[  244.799987][ T4802] loop5: detected capacity change from 0 to 2048
[  244.833045][ T4802] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  244.842383][ T4802] ext4 filesystem being mounted at /311/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.886723][  T945] usb 5-1: Using ep0 maxpacket: 16
[  244.900803][  T945] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  244.921520][  T945] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  244.937052][  T945] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 32
[  244.937371][ T4808] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1488: bg 0: block 345: padding at end of block bitmap is not set
[  244.948125][  T945] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  244.962820][ T4808] EXT4-fs (loop5): Remounting filesystem read-only
[  244.973159][  T945] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  244.989434][  T945] usb 5-1: SerialNumber: syz
[  245.002225][ T4788] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  245.033336][ T4809] loop2: detected capacity change from 0 to 512
[  245.070107][  T945] cdc_acm 5-1:1.0: skipping garbage
[  245.090722][  T945] cdc_acm: probe of 5-1:1.0 failed with error -12
[  245.219581][ T4809] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1489: bg 0: block 393: padding at end of block bitmap is not set
[  245.236274][ T4809] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  245.248498][ T4809] EXT4-fs (loop2): 2 truncates cleaned up
[  245.254383][ T4809] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  245.650359][  T945] usb 5-1: USB disconnect, device number 18
[  245.818455][  T658] EXT4-fs (loop5): unmounting filesystem.
[  245.970221][  T285] EXT4-fs (loop2): unmounting filesystem.
[  246.058989][ T4822] loop3: detected capacity change from 0 to 1024
[  246.071165][ T4822] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  246.149409][  T283] EXT4-fs (loop3): unmounting filesystem.
[  246.167338][ T4825] loop3: detected capacity change from 0 to 1024
[  246.174230][ T4825] EXT4-fs: Ignoring removed nomblk_io_submit option
[  246.192827][ T4825] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  246.281457][  T945] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  246.550482][ T4833] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  246.785602][  T945] usb 6-1: Using ep0 maxpacket: 32
[  246.901289][  T945] usb 6-1: config 4 has an invalid interface number: 128 but max is 0
[  247.122773][  T945] usb 6-1: config 4 has no interface number 0
[  247.300650][  T945] usb 6-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  247.313885][ T4845] loop4: detected capacity change from 0 to 2048
[  247.321451][  T945] usb 6-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  247.331464][  T945] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  247.399178][ T4847] xt_CT: No such helper "pptp"
[  247.625453][  T945] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.640432][  T945] hub 6-1:4.128: USB hub found
[  247.663206][ T4845] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  247.672008][ T4845] ext4 filesystem being mounted at /300/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.713648][  T283] EXT4-fs (loop3): unmounting filesystem.
[  247.753882][ T4845] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1501: bg 0: block 345: padding at end of block bitmap is not set
[  247.757659][ T4852] sch_fq: defrate 4294967295 ignored.
[  247.770581][ T4845] EXT4-fs (loop4): Remounting filesystem read-only
[  247.850195][  T945] hub 6-1:4.128: 6 ports detected
[  247.862990][  T945] hub 6-1:4.128: Using single TT (err -22)
[  247.869250][  T945] hub 6-1:4.128: insufficient power available to use all downstream ports
[  247.870163][  T287] EXT4-fs (loop4): unmounting filesystem.
[  247.996714][ T4858] loop3: detected capacity change from 0 to 512
[  248.258887][ T4858] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1503: bg 0: block 393: padding at end of block bitmap is not set
[  248.274853][ T4858] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  248.286817][ T4858] EXT4-fs (loop3): 2 truncates cleaned up
[  248.292722][ T4858] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  248.380619][  T945] usb 6-1: USB disconnect, device number 18
[  248.877653][  T283] EXT4-fs (loop3): unmounting filesystem.
[  249.430430][ T4878] loop3: detected capacity change from 0 to 16
[  249.465087][ T4878] erofs: (device loop3): mounted with root inode @ nid 36.
[  249.482247][   T28] audit: type=1400 audit(1757736234.226:488): avc:  denied  { bind } for  pid=4873 comm="syz.3.1510" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  249.582179][  T309] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  250.161478][  T945] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  250.184283][   T60] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  250.212571][  T309] usb 3-1: config 0 has an invalid interface number: 117 but max is 0
[  250.220957][  T309] usb 3-1: config 0 has no interface number 0
[  250.229560][  T309] usb 3-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= f.d6
[  250.239060][  T309] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  250.248142][  T309] usb 3-1: Product: syz
[  250.252390][  T309] usb 3-1: Manufacturer: syz
[  250.257006][  T309] usb 3-1: SerialNumber: syz
[  250.263238][  T309] usb 3-1: config 0 descriptor??
[  250.269157][  T309] ftdi_sio 3-1:0.117: FTDI USB Serial Device converter detected
[  250.277344][  T309] ftdi_sio ttyUSB0: unknown device type: 0xfd6
[  250.351485][  T945] usb 6-1: Using ep0 maxpacket: 8
[  250.357646][  T945] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  250.366065][  T945] usb 6-1: config 179 has no interface number 0
[  250.372502][   T60] usb 5-1: Using ep0 maxpacket: 16
[  250.377691][  T945] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10
[  250.389499][  T945] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  250.401596][  T945] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  250.412892][  T945] usb 6-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  250.423108][  T945] usb 6-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  250.436595][  T945] usb 6-1: config 179 interface 65 has no altsetting 0
[  250.443640][  T945] usb 6-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  250.453169][  T945] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.462549][   T60] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  250.471088][  T309] usb 3-1: USB disconnect, device number 15
[  250.472014][   T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  250.482715][  T309] ftdi_sio 3-1:0.117: device disconnected
[  250.486409][ T4880] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  250.499307][   T60] usb 5-1: Product: syz
[  250.503631][   T60] usb 5-1: Manufacturer: syz
[  250.508330][   T60] usb 5-1: SerialNumber: syz
[  250.519687][  T945] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:179.65/input/input58
[  250.532539][   T60] r8152-cfgselector 5-1: config 0 descriptor??
[  250.701523][  T524] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  250.836760][ T4894] loop6: detected capacity change from 0 to 512
[  250.867095][   T60] r8152-cfgselector 5-1: Unknown version 0x0000
[  250.901122][    C1] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  250.910940][  T945] usb 6-1: USB disconnect, device number 19
[  250.945310][  T945] xpad 6-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  250.974684][  T524] usb 4-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  251.008310][ T4894] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1517: bg 0: block 393: padding at end of block bitmap is not set
[  251.024161][ T4894] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  251.035570][ T4894] EXT4-fs (loop6): 2 truncates cleaned up
[  251.041486][ T4894] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  251.091651][   T60] r8152-cfgselector 5-1: Unknown version 0x0000
[  251.132458][   T60] r8152-cfgselector 5-1: bad CDC descriptors
[  251.189102][  T524] usb 4-1: config 0 interface 0 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[  251.233333][   T60] r8152-cfgselector 5-1: Unknown version 0x0000
[  251.355115][  T524] usb 4-1: config 0 interface 0 has no altsetting 0
[  251.369712][   T60] r8152-cfgselector 5-1: USB disconnect, device number 19
[  251.548957][  T524] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  251.560310][  T524] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.578999][  T524] usb 4-1: config 0 descriptor??
[  251.810822][  T671] EXT4-fs (loop6): unmounting filesystem.
[  251.894057][ T4908] loop4: detected capacity change from 0 to 1024
[  251.915723][ T4908] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  251.963327][  T287] EXT4-fs (loop4): unmounting filesystem.
[  252.003522][ T4917] loop4: detected capacity change from 0 to 1024
[  252.021976][ T4917] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  252.080624][  T287] EXT4-fs (loop4): unmounting filesystem.
[  252.138045][ T4922] xt_CT: No such helper "pptp"
[  252.641676][  T524] usb 4-1: string descriptor 0 read error: -71
[  252.648765][  T524] uclogic 0003:256C:006D.0021: failed retrieving string descriptor #200: -71
[  252.689024][  T524] uclogic 0003:256C:006D.0021: failed retrieving pen parameters: -71
[  252.712130][  T524] uclogic 0003:256C:006D.0021: failed probing pen v2 parameters: -71
[  252.735132][  T524] uclogic 0003:256C:006D.0021: failed probing parameters: -71
[  252.758800][  T524] uclogic: probe of 0003:256C:006D.0021 failed with error -71
[  252.832899][  T524] usb 4-1: USB disconnect, device number 21
[  252.937304][ T4935] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  253.421686][ T4936] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  253.458756][ T4954] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1534'.
[  253.505545][ T4954] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1534'.
[  253.611569][ T4936] usb 7-1: Using ep0 maxpacket: 8
[  253.618112][ T4936] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  253.628753][ T4936] usb 7-1: config 179 has no interface number 0
[  253.721295][ T4936] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10
[  253.732881][ T4936] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  253.744537][ T4936] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  253.756039][ T4936] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  253.767173][ T4936] usb 7-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  253.781020][ T4936] usb 7-1: config 179 interface 65 has no altsetting 0
[  253.788038][ T4936] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  253.799432][ T4936] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  253.810537][ T4938] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  253.819756][ T4936] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:179.65/input/input59
[  253.912403][ T4965] syz.3.1539[4965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  253.912519][ T4965] syz.3.1539[4965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  254.141222][  T287] ------------[ cut here ]------------
[  254.141803][  T524] usb 7-1: USB disconnect, device number 14
[  254.152623][    C1] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  254.152642][  T287] WARNING: CPU: 0 PID: 287 at fs/inode.c:332 drop_nlink+0xc5/0x110
[  254.159440][  T524] xpad 7-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  254.164217][  T287] Modules linked in:
[  254.195239][  T287] CPU: 0 PID: 287 Comm: syz-executor Tainted: G        W          syzkaller #0
[  254.204486][  T287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  254.215094][  T287] RIP: 0010:drop_nlink+0xc5/0x110
[  254.220408][  T287] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 03 ea f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 5b 81 ac ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c
[  254.240631][  T287] RSP: 0018:ffffc9000daafc38 EFLAGS: 00010293
[  254.246796][  T287] RAX: ffffffff81c38805 RBX: ffff888138de6de0 RCX: ffff888105ccbcc0
[  254.254870][  T287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  254.262940][  T287] RBP: ffffc9000daafc60 R08: 0000000000000004 R09: 0000000000000003
[  254.270963][  T287] R10: fffff52001b55f78 R11: 1ffff92001b55f78 R12: dffffc0000000000
[  254.279048][  T287] R13: 1ffff110271bcdc5 R14: ffff888138de6e28 R15: 0000000000000000
[  254.287119][  T287] FS:  0000555560c48500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  254.296122][  T287] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  254.302755][  T287] CR2: 0000555560c6b4e8 CR3: 0000000130916000 CR4: 00000000003506b0
[  254.310791][  T287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  254.318928][  T287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  254.326993][  T287] Call Trace:
[  254.330326][  T287]  <TASK>
[  254.333334][  T287]  shmem_rmdir+0x5b/0x90
[  254.337646][  T287]  vfs_rmdir+0x393/0x500
[  254.341958][  T287]  incfs_kill_sb+0x105/0x220
[  254.346621][  T287]  deactivate_locked_super+0xb5/0x120
[  254.352038][  T287]  deactivate_super+0xaf/0xe0
[  254.356748][  T287]  cleanup_mnt+0x45f/0x4e0
[  254.361191][  T287]  __cleanup_mnt+0x19/0x20
[  254.365662][  T287]  task_work_run+0x1db/0x240
[  254.370283][  T287]  ? __cfi_task_work_run+0x10/0x10
[  254.375447][  T287]  ? __x64_sys_umount+0x125/0x160
[  254.380511][  T287]  ? __cfi___x64_sys_umount+0x10/0x10
[  254.385976][  T287]  exit_to_user_mode_loop+0x9b/0xb0
[  254.391239][  T287]  exit_to_user_mode_prepare+0x5a/0xa0
[  254.396771][  T287]  syscall_exit_to_user_mode+0x1a/0x30
[  254.402379][  T287]  do_syscall_64+0x58/0xa0
[  254.406853][  T287]  ? clear_bhb_loop+0x30/0x80
[  254.411601][  T287]  ? clear_bhb_loop+0x30/0x80
[  254.416348][  T287]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  254.422446][  T287] RIP: 0033:0x7fe58478fed7
[  254.426975][  T287] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  254.446928][  T287] RSP: 002b:00007ffd61c71808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  254.455432][  T287] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fe58478fed7
[  254.463629][  T287] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd61c718c0
[  254.471672][  T287] RBP: 00007ffd61c718c0 R08: 0000000000000000 R09: 0000000000000000
[  254.479739][  T287] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd61c72950
[  254.488064][  T287] R13: 00007fe584811c05 R14: 000000000003de87 R15: 00007ffd61c72990
[  254.496135][  T287]  </TASK>
[  254.499232][  T287] ---[ end trace 0000000000000000 ]---
[  254.572246][  T287] ==================================================================
[  254.580363][  T287] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[  254.586626][  T287] Write of size 4 at addr 0000000000000170 by task syz-executor/287
[  254.594881][  T287] 
[  254.597218][  T287] CPU: 1 PID: 287 Comm: syz-executor Tainted: G        W          syzkaller #0
[  254.606612][  T287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  254.616773][  T287] Call Trace:
[  254.620076][  T287]  <TASK>
[  254.623086][  T287]  __dump_stack+0x21/0x24
[  254.627437][  T287]  dump_stack_lvl+0xee/0x150
[  254.632041][  T287]  ? __cfi_dump_stack_lvl+0x8/0x8
[  254.637076][  T287]  ? ihold+0x20/0x60
[  254.640984][  T287]  ? ihold+0x20/0x60
[  254.644892][  T287]  print_report+0x3d/0x60
[  254.649257][  T287]  kasan_report+0x122/0x150
[  254.653780][  T287]  ? ihold+0x20/0x60
[  254.657689][  T287]  kasan_check_range+0x280/0x290
[  254.662686][  T287]  __kasan_check_write+0x14/0x20
[  254.667658][  T287]  ihold+0x20/0x60
[  254.671411][  T287]  vfs_rmdir+0x25f/0x500
[  254.675673][  T287]  incfs_kill_sb+0x105/0x220
[  254.680281][  T287]  deactivate_locked_super+0xb5/0x120
[  254.685786][  T287]  deactivate_super+0xaf/0xe0
[  254.690574][  T287]  cleanup_mnt+0x45f/0x4e0
[  254.695029][  T287]  __cleanup_mnt+0x19/0x20
[  254.699497][  T287]  task_work_run+0x1db/0x240
[  254.704171][  T287]  ? __cfi_task_work_run+0x10/0x10
[  254.709328][  T287]  ? __x64_sys_umount+0x125/0x160
[  254.714390][  T287]  ? __cfi___x64_sys_umount+0x10/0x10
[  254.719880][  T287]  exit_to_user_mode_loop+0x9b/0xb0
[  254.725103][  T287]  exit_to_user_mode_prepare+0x5a/0xa0
[  254.730580][  T287]  syscall_exit_to_user_mode+0x1a/0x30
[  254.736092][  T287]  do_syscall_64+0x58/0xa0
[  254.740527][  T287]  ? clear_bhb_loop+0x30/0x80
[  254.745240][  T287]  ? clear_bhb_loop+0x30/0x80
[  254.749946][  T287]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  254.755853][  T287] RIP: 0033:0x7fe58478fed7
[  254.760278][  T287] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  254.779899][  T287] RSP: 002b:00007ffd61c71808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  254.788339][  T287] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fe58478fed7
[  254.796326][  T287] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd61c718c0
[  254.804445][  T287] RBP: 00007ffd61c718c0 R08: 0000000000000000 R09: 0000000000000000
[  254.812441][  T287] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd61c72950
[  254.820427][  T287] R13: 00007fe584811c05 R14: 000000000003de87 R15: 00007ffd61c72990
[  254.828429][  T287]  </TASK>
[  254.831459][  T287] ==================================================================
[  254.880785][  T287] Disabling lock debugging due to kernel taint
[  254.887899][  T287] BUG: kernel NULL pointer dereference, address: 0000000000000170
[  254.896247][  T287] #PF: supervisor write access in kernel mode
[  254.902333][  T287] #PF: error_code(0x0002) - not-present page
[  254.908352][  T287] PGD 13320f067 P4D 13320f067 PUD 0 
[  254.914092][  T287] Oops: 0002 [#1] PREEMPT SMP KASAN
[  254.919752][  T287] CPU: 1 PID: 287 Comm: syz-executor Tainted: G    B   W          syzkaller #0
[  254.928697][  T287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  254.938765][  T287] RIP: 0010:ihold+0x26/0x60
[  254.943293][  T287] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 c1 78 ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 40 e1 f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 b1
[  254.963023][  T287] RSP: 0018:ffffc9000daafc78 EFLAGS: 00010246
[  254.969377][  T287] RAX: ffff888105ccbc00 RBX: 0000000000000000 RCX: ffff888105ccbcc0
[  254.977538][  T287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  254.986083][  T287] RBP: ffffc9000daafc88 R08: dffffc0000000000 R09: fffffbfff0f2d6fd
[  254.994275][  T287] R10: fffffbfff0f2d6fd R11: 1ffffffff0f2d6fc R12: ffff888138de6dec
[  255.002493][  T287] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  255.010827][  T287] FS:  0000555560c48500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  255.020223][  T287] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  255.026819][  T287] CR2: 0000000000000170 CR3: 0000000130916000 CR4: 00000000003506a0
[  255.034809][  T287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  255.042791][  T287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  255.050779][  T287] Call Trace:
[  255.054064][  T287]  <TASK>
[  255.057035][  T287]  vfs_rmdir+0x25f/0x500
[  255.061301][  T287]  incfs_kill_sb+0x105/0x220
[  255.065911][  T287]  deactivate_locked_super+0xb5/0x120
[  255.071301][  T287]  deactivate_super+0xaf/0xe0
[  255.076001][  T287]  cleanup_mnt+0x45f/0x4e0
[  255.080444][  T287]  __cleanup_mnt+0x19/0x20
[  255.084885][  T287]  task_work_run+0x1db/0x240
[  255.089494][  T287]  ? __cfi_task_work_run+0x10/0x10
[  255.094627][  T287]  ? __x64_sys_umount+0x125/0x160
[  255.099672][  T287]  ? __cfi___x64_sys_umount+0x10/0x10
[  255.105062][  T287]  exit_to_user_mode_loop+0x9b/0xb0
[  255.110279][  T287]  exit_to_user_mode_prepare+0x5a/0xa0
[  255.115930][  T287]  syscall_exit_to_user_mode+0x1a/0x30
[  255.121415][  T287]  do_syscall_64+0x58/0xa0
[  255.125858][  T287]  ? clear_bhb_loop+0x30/0x80
[  255.130606][  T287]  ? clear_bhb_loop+0x30/0x80
[  255.135332][  T287]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  255.141248][  T287] RIP: 0033:0x7fe58478fed7
[  255.145685][  T287] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  255.165420][  T287] RSP: 002b:00007ffd61c71808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  255.174175][  T287] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fe58478fed7
[  255.182151][  T287] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd61c718c0
[  255.190754][  T287] RBP: 00007ffd61c718c0 R08: 0000000000000000 R09: 0000000000000000
[  255.198835][  T287] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd61c72950
[  255.206836][  T287] R13: 00007fe584811c05 R14: 000000000003de87 R15: 00007ffd61c72990
SYZFAIL: failed to send rpc
fd=3 want=3656 sent=0 n=-1 (errno 32: Broken pipe)
[  255.212381][   T28] audit: type=1400 audit(1757736239.946:489): avc:  denied  { write } for  pid=275 comm="syz-executor" path="pipe:[14429]" dev="pipefs" ino=14429 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  255.214841][  T287]  </TASK>
[  255.241132][  T287] Modules linked in:
[  255.245063][  T287] CR2: 0000000000000170
[  255.249233][  T287] ---[ end trace 0000000000000000 ]---
[  255.254733][  T287] RIP: 0010:ihold+0x26/0x60
[  255.259271][  T287] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 c1 78 ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 40 e1 f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 b1
[  255.279101][  T287] RSP: 0018:ffffc9000daafc78 EFLAGS: 00010246
[  255.285219][  T287] RAX: ffff888105ccbc00 RBX: 0000000000000000 RCX: ffff888105ccbcc0
[  255.293226][  T287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  255.301313][  T287] RBP: ffffc9000daafc88 R08: dffffc0000000000 R09: fffffbfff0f2d6fd
[  255.309318][  T287] R10: fffffbfff0f2d6fd R11: 1ffffffff0f2d6fc R12: ffff888138de6dec
[  255.317318][  T287] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  255.320295][   T28] audit: type=1400 audit(1757736240.056:490): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  255.325342][  T287] FS:  0000555560c48500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  255.325362][  T287] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  255.325377][  T287] CR2: 0000000000000170 CR3: 0000000130916000 CR4: 00000000003506a0
[  255.349413][   T28] audit: type=1400 audit(1757736240.056:491): avc:  denied  { search } for  pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  255.355993][  T287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  255.356007][  T287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  255.356024][  T287] Kernel panic - not syncing: Fatal exception
[  255.362833][  T287] Kernel Offset: disabled
[  255.418748][  T287] Rebooting in 86400 seconds..