last executing test programs:

2m41.081620547s ago: executing program 4 (id=95):
bind$netlink(0xffffffffffffffff, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000001800850000008600000095000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000840)='./file0\x00', 0x801, &(0x7f0000000080), 0x64, 0x518, &(0x7f0000000200)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x7, 0x6, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x18}, [@ldst={0x4}]}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2m39.918640334s ago: executing program 4 (id=101):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r0}, 0x18)
clock_nanosleep(0x2, 0x0, &(0x7f0000000080)={0x0, 0x989680}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
getresuid(0x0, &(0x7f0000002080), &(0x7f00000020c0))
socket$nl_generic(0x11, 0x3, 0x10)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xf, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000002c0)={r3, r4, 0x6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000080), 0x1, 0x478, &(0x7f0000000dc0)="$eJzs3c9vFFUcAPDvTH/w21ZEEQSsopH4o6Xlhxy8aDTxoImJHjCealsIslBDSyKEaPWAR0Pi3Xg08S/wpBejnky8arwaEmK4gCYma2Z3Bpb9ZVu3TMN+PsnAe/Pe7nvfmXm7b2Z2uwH0rbHsnyRia0T8GhEj9eydFcbq/928fmnmr+uXZpKoVt/8M6nVu3H90kxRtXjclnqmWs3zG9q0e/mdiOlKZe5cnp9YPPP+xMKFi8+dOjN9cu7k3NmpY8cOH9o7fHTqyCqiSlrWZHHd2P3h/J5dr7595fWZ41fe/fHrrNbWvLwxjl4Zq2/dtp7sdWMl29aQTgZL7Agr8k9EZLtrqDb+R2IgNt0qG4lXPim1c8Caqlar1Xbvz7mlKnAPS6LsHgDlKN7os/PfYrlLU4914dqL9ROgLO6b+VIvGYw0Ijbm50bb1qj9sYg4vvT3F9kSa3QdAgCg0bfZ/OfZdvO/NB5qqHdffg9lNCLuj4jtEfFAROyIiAcjanV3RsTDK2y/+Q5J6/wnvbqqwJYpm/+9kN/bunP+lxZVRgfy3LZa/EPJiVOVuYP5NjkQQxuy/GSXNr57+ZfPOpU1zv+yJWu/mAvm/bg62HSBbnZ6cfr/xNzo2scRuwfbxZ9EcRsniYhdEbF7lW2cevqrPZ3KmuLPNnNT/F304D5T9cuIp+r7fyma4i8kHe9PTj5/dOrIxMaozB2cKI6KVj/9fPmN1rX15//v/b+2sv2/ue3xX+/fUMRosjFi4cLF07X7tQsrb+Pyb592PKdZ7fE/nLxVSw/n6z6YXlw8NxkxnLzWun7q9mOLfFE/i//A/vbjf3vc3hKPRER2EO+NiH0R8Wje98ci4vGI2N8pwN93xg8vPfHeyuPvclW+h7L4Z7vs/+wlL0vd3v/NB8JSm6I7EwOnv/+mU/vL2/+Ha6kD+ZrlvP516U67IAAAAOCeltY+A5+k47fSaTo+Xv8M/47YnFbmFxafOTF//uxs/bPyozGUFle6Rhquh07m14aL/FRT/lB+3fjzgU21/PjMfGW27OChz23pMP4zfwyU3Ttgzfm+FvQv4x/6l/EP/cv4h/5l/EP/ajf+PyqhH8DdVxv/adm9AMpQG//n95XdDaAEzv+hfxn/0Jc6fjc+7Vwk0dPEpsh/CmGd9GeZiUjXRTfWWyKWInr3hHHh4unBZf8xi9Ulkmhb1P11o/UXNgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANanfwMAAP//0JjdTg==")
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x5, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000002000000000000000000018", @ANYRES32, @ANYRESHEX=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c25"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r9, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r10}, 0x10)

2m37.615287137s ago: executing program 4 (id=114):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1900000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="00000100000000afa906517322c11c00000000001227db1087630f60a523d67b6b11fb73348923324cb735e3ed8b4d41bd57de152df3dfbfd89c8606e0b4d7c809e757", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = eventfd(0x0)
readv(r3, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/61, 0x3d}], 0x1)

2m36.709894574s ago: executing program 4 (id=120):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x2081c80, 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x25840, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', r0, &(0x7f00000000c0)='./file0/file0\x00', 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0xf)
r3 = socket$nl_route(0x10, 0x3, 0x0)
fsync(r3)
write$cgroup_subtree(r1, 0x0, 0x36)
fstat(r2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000300)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}, {@version_L}, {@version_9p2000}, {@dfltuid={'dfltuid', 0x3d, r4}}, {@privport}, {@cachetag={'cachetag', 0x3d, ')-('}}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@obj_type={'obj_type', 0x3d, '^'}}]}})

2m36.388549593s ago: executing program 4 (id=124):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r0}, 0x18)
clock_nanosleep(0x2, 0x0, &(0x7f0000000080)={0x0, 0x989680}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
getresuid(0x0, &(0x7f0000002080), &(0x7f00000020c0))
socket$nl_generic(0x11, 0x3, 0x10)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xf, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000002c0)={r3, r4, 0x6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000080), 0x1, 0x478, &(0x7f0000000dc0)="$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")
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x5, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000002000000000000000000018", @ANYRES32, @ANYRESHEX=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c25"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r9, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r10}, 0x10)

2m35.11183959s ago: executing program 4 (id=128):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000540)={[{@utf8no}, {@utf8no}, {@fat=@nfs}, {@fat=@check_strict}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@numtail}, {@uni_xlate}, {@uni_xlateno}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@shortname_mixed}, {@shortname_winnt}, {@utf8no}, {@uni_xlate}]}, 0x26, 0x336, &(0x7f00000001c0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x484341, 0x0)
prlimit64(r0, 0x8, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
futex(&(0x7f000000cffc), 0xb, 0x0, &(0x7f00000005c0), &(0x7f0000048000), 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000030c0), 0x82200, 0x0)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000003100)=0x3)
ioctl$PPPIOCGNPMODE(r6, 0xc008744c, &(0x7f0000003540)={0x57, 0x1})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000)

2m35.05360856s ago: executing program 32 (id=128):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000540)={[{@utf8no}, {@utf8no}, {@fat=@nfs}, {@fat=@check_strict}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@numtail}, {@uni_xlate}, {@uni_xlateno}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@shortname_mixed}, {@shortname_winnt}, {@utf8no}, {@uni_xlate}]}, 0x26, 0x336, &(0x7f00000001c0)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x484341, 0x0)
prlimit64(r0, 0x8, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
futex(&(0x7f000000cffc), 0xb, 0x0, &(0x7f00000005c0), &(0x7f0000048000), 0x0)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000030c0), 0x82200, 0x0)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000003100)=0x3)
ioctl$PPPIOCGNPMODE(r6, 0xc008744c, &(0x7f0000003540)={0x57, 0x1})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000)

11.024931411s ago: executing program 2 (id=857):
syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000bec9ff10cd0631016016af02030109021b00010000000009046b00016a93f00009058803"], 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)

9.210378436s ago: executing program 2 (id=876):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

6.149937658s ago: executing program 2 (id=901):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
accept$inet6(r0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r3, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000a00)="b5d3838236773268a73daecfa0fdc5beb5a7ac332a11523627b41db31da6be0055bf716aa2b23b97d43cc40c632f6b9850f364ba0831ed0d6f7157f204275aa850d992d81ba6ab984bd809254e847b644cf6459a8139c3ebba62168141343c853896523ffb04131b2786acc44a57f5b1bd33cdaef8dd3c0526b7454eefe5153c5778ce05", 0x84}, {&(0x7f0000000900)="f977bf6620bc51200573c580c2139404622bb5da0f681fda8a64d64eb14fb5d51c2c62b3595e6a0839979d8609b2749c67f97b5d4b1b99950e2100da266e9babc4870eb595965a50031d15fc9fc53ae938b4c572fc53401c8751d8", 0x5b}, {0x0}], 0x3}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000180)='k', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000bc0)="029993440c7a0c95d3bb8cf253fd63c588ff06000ff0fced840da0b08cb6e72082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c06045346588e2620d36a3ed8e8f2aa891268a9b33d2d55cb92f17bc9e8aaf62f94fb1143a79e72dcd910f5f45125df1bb3dc406cadfaa693beb85c9bf8daf45ad0d332b59be2550079eff7ac51dbfd801482dc1eb8e6f36990dc6e78940d2a3d0c16c023569ec2303690b40379bea72128dc680a09963beb9733c72cf749fd9409998b8c34349408deff7bca6bb7eddba08fee894b588291054aba8b41ef633e6a284d3827b8299736f5a204982f78fcd45ecf5d0188eb4151ea8056e3aa5197f809d7dfd7691cda00a9c7a6bf9cdce8eea4963a082d1d2fce8ab2fb6953b6cada8d103eee8bc10ca67b74498b67d701e1daccb2fd5c262e3ddffa65e0bf", 0x13f}], 0x1}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f00000018c0)="a45ea7ecf9a8d6a6dbcbf2f17ef46f78f244639ce94c6b53a6d704c4d559ca956b8fbd06eff8d13922bfb66e931091a0d98a45277e0528c497b608ec2118075ba79ef62af69c4309a5259badd320aea0ebfa1eb5991de58bd246deae894634d866c659b3223fe3f489aa675f8024c3f89184d551876678f9c7fb8904160b2e8e82eb384a1fc1962d9c7b323345237badff7ede15b8c3896c010400000000000000c0b73c17a25699a678494554ef83f92a3a0ef0126087c3b96d3f7df3ebda728bcdab7d2b89a6a1f4db9f89509058e6c4a114be0e202d01396d932649914304b06c6c602bc67eae306281d4147aa088ada82fc65ae2dbdc33fe77503d9b037e87e65771ea98555ae3c943e8aec07166a26c668c36cb584c79b1b9b06da5e8ed204a96f6f973487d0600231b0da0148077d69010779948c6a8d232100d29d23bb26b9bbbd9c070a93590191209de067ab09327dafc7d2e342863c2cf70cd9a2be532f30aa397d6d5d9", 0x169}], 0x1}}], 0x4, 0xc0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r3, &(0x7f0000001480)="04", 0x1, 0x98076b246f72a741, 0x0, 0x0)
r4 = memfd_create(0x0, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
dup2(r1, r4)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000340), 0x10)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x201200, 0x0)
creat(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0x13, &(0x7f00000009c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b2af8ff00000000bda107000000000007010000f8ffffffb702242f08000000b703000000000000850000000500000018010000202070250000000000202020db1af8ffe1000000bda1f8ff0000000007010000f8ffffffb702000008000000b70300000000000085000000050000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

5.882834537s ago: executing program 2 (id=910):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0xb2dd, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x41720, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
getsockopt$bt_BT_POWER(r3, 0x112, 0x9, 0x0, 0x0)
ioctl$KVM_GET_FPU(0xffffffffffffffff, 0x81a0ae8c, &(0x7f0000000100))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x1c, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x30, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}]}], {0x14}}, 0xb4}}, 0x200000d4)

5.560262116s ago: executing program 2 (id=917):
creat(&(0x7f00000001c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r1, 0x81044804, &(0x7f0000000400)={0x1})

3.73607725s ago: executing program 0 (id=951):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r1, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r1, 0x540a, 0x2)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100))

3.52666566s ago: executing program 0 (id=954):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
syz_emit_ethernet(0x46, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000082c"], 0x0)

3.49961478s ago: executing program 0 (id=955):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = gettid()
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

3.263795469s ago: executing program 0 (id=956):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000000), &(0x7f00000005c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = eventfd(0x0)
readv(r2, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/61, 0x3d}], 0x1)

3.124479399s ago: executing program 1 (id=961):
ioperm(0x7, 0x81, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
mount_setattr(r0, 0x0, 0x0, &(0x7f0000000300)={0x1000a4}, 0x20)

3.124167289s ago: executing program 1 (id=963):
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@remote, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x20, 0x0, 0x2, 0x0, @rand_addr, @multicast1=0xe0000300}, @address_request}}}}, 0x0)

3.123878119s ago: executing program 1 (id=965):
syz_usb_connect(0x2, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x9b, &(0x7f0000000000)=ANY=[@ANYBLOB="9b03abe98397850d9289638d7120310994176d76ee8005e3bf5de76d569d98cc3ce7d4419c84da5f7e420900d136a14f65099da81db6c35a3e0c7fb9fe03b0fa265df2be125facefe74e0e21bb6a1889f400fb206292c4d96927f019fba2ad2987739c5e0d59351755863603e11b1131e4eb02f883ddbe51e0fdd5505dc06662"]}]})
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x10}}, 0x40044)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a01020000000000000000020000000900010073797a3000000000aa000300"], 0x1e4}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x7fff, 0x0)

2.435531207s ago: executing program 0 (id=972):
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000102505a1a440000102030109025c0002010000000904000001020d0000052406000105240000000d240f"], 0x0)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0), 0x10410, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x42082, 0x0)

2.240852556s ago: executing program 2 (id=973):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000001080)={{0x12, 0x1, 0x0, 0xff, 0x0, 0x0, 0x40, 0x572, 0xcb01, 0x2665, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xaa, 0x75, 0xb7}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000100)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000000200)={0x14, 0x0, &(0x7f00000001c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2c09}}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x22, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_usb_control_io$printer(r0, &(0x7f0000000000)={0x14, 0x0, &(0x7f0000000240)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)

1.920455966s ago: executing program 5 (id=975):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newqdisc={0x14c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}, {0x7, 0xc}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x11c, 0x2, [@TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14, 0x1, {0x3, 0x40, 0x2, 0x3, 0xa, 0x0, 0x3}}]}}]}, 0x14c}, 0x1, 0x0, 0x0, 0x4008800}, 0x0)

1.920301026s ago: executing program 5 (id=976):
socket$inet6(0xa, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x4)
socket(0x1d, 0x2, 0x6)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$can_bcm(0x1d, 0x2, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.current\x00', 0x275a, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_COALESCE(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r2, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r3], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x2c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r2, {0xffe0}, {}, {0xa, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x39, 0x1}}]}, 0x2c}, 0x1, 0xf0ffffffffffff, 0x0, 0x4004140}, 0x0)

1.892797645s ago: executing program 5 (id=977):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
fsetxattr$security_evm(r1, &(0x7f0000000ac0), 0x0, 0x0, 0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.842685655s ago: executing program 3 (id=978):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000000000))
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000680)=@newsa={0x144, 0x10, 0x633, 0x0, 0x0, {{@in6=@private0, @in=@broadcast, 0x0, 0x4000, 0x0, 0x8001, 0x0, 0x20, 0x20}, {@in=@dev, 0x0, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0xb}, {0x100000000, 0x0, 0x800, 0x0, 0x0, 0x0, 0x6}, {0x0, 0x8}, {}, 0x30bd29, 0xfffffffe, 0xa, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc, 0x1c, {0x0, 0x2}}]}, 0x144}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = io_uring_setup(0xfe, &(0x7f0000000140)={0x0, 0xd391, 0x100, 0xffffffff, 0x2b})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0xfff}], 0x1083)
bind$unix(0xffffffffffffffff, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
listxattr(&(0x7f0000000100)='./cgroup.cpu/cpuset.cpus\x00', 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net/dev_mcast\x00')
mount$bpf(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280), 0x8, &(0x7f0000000500))

1.127793803s ago: executing program 3 (id=979):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x34, r2, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x6}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x5396ebcfacd913b0}, 0x10)

1.000204983s ago: executing program 5 (id=980):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000380)=@allocspi={0xf8, 0x16, 0x0, 0x0, 0x0, {{{@in=@local, @in6=@mcast1}, {@in=@broadcast}, @in6=@loopback, {}, {0x0, 0x48a9, 0x0, 0x1}}, 0x0, 0x800000}}, 0xf8}, 0x1, 0x0, 0x0, 0x20000840}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0xfffffffe)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f00000004c0)={0x50, 0x0, r4, {0x7, 0x29, 0xa, 0x10000000, 0x8, 0x5, 0xfffeffff, 0x4, 0x0, 0x0, 0x100, 0x5}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}]}})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)

990.155233ms ago: executing program 3 (id=981):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="2000000069000b00000000000a00000000000000000000000800010002"], 0x20}}, 0x0)

932.938813ms ago: executing program 3 (id=982):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x28, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x40)

932.634453ms ago: executing program 3 (id=983):
openat$ptmx(0xffffffffffffff9c, 0x0, 0x441, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x80000001, 0x8, '9P2000.u'}, 0x15)
ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfffffffe, "00207d2000000000201b14700c1e0ac74f000000001200000000000900"})
ioctl$EVIOCGEFFECTS(r0, 0x40044583, 0x0)

918.111153ms ago: executing program 3 (id=984):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10002, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$inet6(0xa, 0x1, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000005b80)={{{@in=@rand_addr=0x64010101, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x3, 0x0, 0x0, 0x5, 0x1}}, {{@in, 0x0, 0x6c}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xfe}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f0000000500)={@local, @random="f368656e065b", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
write$binfmt_script(r7, &(0x7f0000001800)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1)
socketpair(0x1, 0x80001, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r8, 0x89f1, &(0x7f00000005c0)={'ip_vti0\x00', &(0x7f0000000040)={'syztnl0\x00', 0x0, 0x1, 0x7, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x400, 0x0, 0x0, 0x4, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}}}})

136.135501ms ago: executing program 5 (id=985):
ioperm(0x0, 0x2, 0x7e)
clock_settime(0xb, 0x0)

40.94298ms ago: executing program 5 (id=986):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000b7050000850000001700000095"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'veth0\x00', <r2=>0x0})
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002cc0)={r0, r2, 0x25, 0x0, @val=@tcx={@void, @value}}, 0x1c)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000180)={r3, 0xffffffffffffffff, 0x4, r0}, 0x10)

40.73403ms ago: executing program 1 (id=987):
iopl(0x3)
r0 = getpgrp(0x0)
syz_pidfd_open(r0, 0x0)

40.38034ms ago: executing program 0 (id=988):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x6, 0x9, 0x3, 0x80000001}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x0)

30.57474ms ago: executing program 1 (id=989):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000001200)="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", 0x23c}, {&(0x7f0000000ec0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc99ad6e4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f65fe19516afb8c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844ed9a26675199d5ff9b30000df8b70c406c28576e75e311b308724bebf324817abdb", 0xc1}, {&(0x7f0000000200)="397d5f2edc82d0337ae5ab9ee47dc3e798cf08cfebf169e77257f308227094d569a4326954e50ea185bc6fff0507c5dfd26676de9ddac4fe6db927cd4d03965f42", 0x41}], 0x3}}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000340)="79806d06591170b7f5d518d3cef55e0152af5bf57306e30a1733c1580d344773941d27db4bfb5102af4ab013ca9753fad2eb80d6b0756254537a6f47bd08f6097ff0d0383d01656647592d51f287130ee80e04dcd9f1f8d146dc4e931d61690104aea9955c54377b5bbb7f1b2444768e5d05ed39d5da5ba5488c8754bd7938abad8bbf09", 0x84}, {&(0x7f0000000000)="498c137ee12213af8b8258cd2920f85ece525d23d66ca42875b7917d44f9b5e2b683a640d963f82afa", 0x29}, {&(0x7f0000000400)="efd3871034754dc52c513f0baa6a9d62fb0f28ebb0c5d8cddf889eb84987a529c5357c28134ee62b42c1fcc1734a72b46892603999dee301611547621124f3027a8f270b10a5d425d59146181e2be119087695d25e6b6a51f8e2ef2439fc1af4cb59f40997c9ceb927d6244564218bdff1df5500fd0641e0b45d0e1e352be60eacd521697d50bcd8eb649e3c46037f866e77b3de16e7049db070f243a5cbc2bce43611e21241ede2ad668fdabb62995ac79dc40dbfe68ac39365552d278dd6e73ac5eed9f681c760a7b8f667e3d02796aa595f0fdfb34868d1f9e3bdd1bf3def0907311c02789ca91e6863369dda906c07b6d659ea126fef", 0xf8}, {&(0x7f0000000500)="a5ab56525364b9160e11967cbca63e9bc355d22547d5bf90fe757e85a75097f8606c79a2118e7d3fc6a77caa3a65c74c2e2a291e034dedceb4bbee24a20671c79f700509a1ecee1e12928132ecb356bc2adf91015d35f5dd89", 0x59}, {&(0x7f0000000900)="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", 0x181}, {&(0x7f0000000700)="d4e4452a53d7899a5b395cbd19db1d153cb4f33ead55359b76e9d83d611a608690fd93e5362d7d090d4ddf696493eebf9e76bc9eed6d23a5d11ea9591f8e30d588660d47c7b5ce920321cffbe0cf987c939fdc845a61c91910c9342f73d71a052209ff3d92a5a18198d6e92ab1b84aaf6d", 0x71}], 0x6}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000001480)="047b6783e5", 0x5, 0x98076b246f72a741, 0x0, 0x0)

0s ago: executing program 1 (id=990):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'syztnl0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x1b, 0x4, 0x0, 0x2, 0x6c, 0x67, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x10, 0x0, 0x0, 0x9, [0x401, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x2c, 0xc0, 0x3, 0x1, [{@multicast1}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x6}, {@multicast1, 0xffd200}]}, @noop, @noop, @rr={0x7, 0x17, 0x33, [@multicast1, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000002000000000000000000000d0205000000000000010000050000000000839a9d"], &(0x7f0000000f40)=""/4089, 0x3e, 0xff9, 0xa, 0x0, 0x0, @void, @value}, 0x28)

kernel console output (not intermixed with test programs):

0] kauditd_printk_skb: 28 callbacks suppressed
[  110.907814][   T30] audit: type=1400 audit(1737463602.544:379): avc:  denied  { write } for  pid=1587 comm="syz.1.368" name="file1" dev="loop1" ino=1048631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  110.939846][  T318] udevd[318]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  110.991913][ T1593] loop0: detected capacity change from 0 to 128
[  111.084184][ T1593] attempt to access beyond end of device
[  111.084184][ T1593] loop0: rw=2049, want=1041, limit=128
[  111.369310][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  112.314790][ T1606] loop0: detected capacity change from 0 to 256
[  112.471439][ T1606] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  112.508755][ T1606] FAT-fs (loop0): Directory bread(block 64) failed
[  112.515246][ T1606] FAT-fs (loop0): Directory bread(block 65) failed
[  112.522010][ T1606] FAT-fs (loop0): Directory bread(block 66) failed
[  112.528490][ T1606] FAT-fs (loop0): Directory bread(block 67) failed
[  112.535198][ T1606] FAT-fs (loop0): Directory bread(block 68) failed
[  112.541638][ T1606] FAT-fs (loop0): Directory bread(block 69) failed
[  112.548204][ T1606] FAT-fs (loop0): Directory bread(block 70) failed
[  112.554642][ T1606] FAT-fs (loop0): Directory bread(block 71) failed
[  112.561218][ T1606] FAT-fs (loop0): Directory bread(block 72) failed
[  112.567613][ T1606] FAT-fs (loop0): Directory bread(block 73) failed
[  113.172465][ T1611] loop2: detected capacity change from 0 to 512
[  113.251647][ T1611] EXT4-fs (loop2): Unrecognized mount option "obj_type=({" or missing value
[  113.331319][ T1608] loop1: detected capacity change from 0 to 512
[  113.371183][   T30] audit: type=1326 audit(1737463605.014:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.394416][   T30] audit: type=1326 audit(1737463605.014:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.420031][ T1608] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  113.479566][   T30] audit: type=1326 audit(1737463605.014:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.539703][ T1608] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[  113.539869][   T30] audit: type=1326 audit(1737463605.014:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.571059][   T30] audit: type=1326 audit(1737463605.034:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.599736][   T30] audit: type=1326 audit(1737463605.044:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.629743][   T30] audit: type=1326 audit(1737463605.054:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.653167][   T30] audit: type=1326 audit(1737463605.054:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.676649][   T30] audit: type=1326 audit(1737463605.054:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1616 comm="syz.0.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  113.748910][ T1621] loop0: detected capacity change from 0 to 128
[  113.799762][ T1621] attempt to access beyond end of device
[  113.799762][ T1621] loop0: rw=2049, want=1041, limit=128
[  113.892076][ T1623] loop0: detected capacity change from 0 to 128
[  113.989966][ T1623] overlayfs: unrecognized mount option "/" or missing value
[  115.022390][ T1644] loop2: detected capacity change from 0 to 128
[  115.231425][ T1644] attempt to access beyond end of device
[  115.231425][ T1644] loop2: rw=2049, want=1041, limit=128
[  115.233825][ T1650] loop5: detected capacity change from 0 to 512
[  115.391868][ T1650] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  115.419744][ T1650] EXT4-fs (loop5): failed to open journal device unknown-block(0,0) -6
[  116.098947][   T30] kauditd_printk_skb: 37 callbacks suppressed
[  116.098962][   T30] audit: type=1326 audit(1737463607.734:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1647 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  116.158988][ T1657] netlink: 312 bytes leftover after parsing attributes in process `syz.3.386'.
[  116.273217][   T30] audit: type=1400 audit(1737463607.914:427): avc:  denied  { watch watch_reads } for  pid=1670 comm="syz.1.392" path="/77/file0" dev="tmpfs" ino=454 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  116.310619][ T1671] process 'syz.1.392' launched './file0' with NULL argv: empty string added
[  116.329311][   T30] audit: type=1326 audit(1737463607.944:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.362412][  T289] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  116.370235][  T289] FAT-fs (loop0): Filesystem has been set read-only
[  116.377039][   T30] audit: type=1326 audit(1737463607.944:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.401907][   T30] audit: type=1326 audit(1737463607.944:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.460302][ T1657] loop3: detected capacity change from 0 to 40427
[  116.469055][   T30] audit: type=1326 audit(1737463607.944:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.497020][   T30] audit: type=1326 audit(1737463607.944:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.520410][   T30] audit: type=1326 audit(1737463607.944:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.543838][   T30] audit: type=1326 audit(1737463607.944:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.607312][   T30] audit: type=1326 audit(1737463607.944:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1670 comm="syz.1.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  116.639575][ T1657] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  116.659531][ T1657] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  116.669890][ T1657] F2FS-fs (loop3): fault_injection options not supported
[  116.676764][ T1657] F2FS-fs (loop3): fault_type options not supported
[  116.998882][ T1657] F2FS-fs (loop3): invalid crc value
[  117.073739][ T1657] F2FS-fs (loop3): Found nat_bits in checkpoint
[  117.190081][ T1657] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  117.197196][ T1657] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  118.828118][ T1702] device batadv_slave_1 entered promiscuous mode
[  118.848481][ T1706] loop2: detected capacity change from 0 to 1024
[  120.746431][ T1719] loop2: detected capacity change from 0 to 256
[  120.789549][ T1719] exfat: Deprecated parameter 'namecase'
[  120.801601][ T1719] exfat: Deprecated parameter 'utf8'
[  120.806806][ T1719] exfat: Deprecated parameter 'namecase'
[  120.865146][ T1719] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  120.945927][ T1721] loop3: detected capacity change from 0 to 512
[  121.029529][  T865] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  121.037390][ T1721] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  121.061485][ T1721] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  121.123891][   T30] kauditd_printk_skb: 62 callbacks suppressed
[  121.135282][   T30] audit: type=1400 audit(1737463612.764:498): avc:  denied  { confidentiality } for  pid=1718 comm="syz.2.405" lockdown_reason="use of bpf to read kernel RAM" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[  121.179301][   T30] audit: type=1400 audit(1737463612.814:499): avc:  denied  { write } for  pid=1718 comm="syz.2.405" name="/" dev="loop2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  121.219232][   T30] audit: type=1400 audit(1737463612.814:500): avc:  denied  { add_name } for  pid=1718 comm="syz.2.405" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  121.269576][   T30] audit: type=1400 audit(1737463612.814:501): avc:  denied  { create } for  pid=1718 comm="syz.2.405" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  121.289687][   T30] audit: type=1400 audit(1737463612.814:502): avc:  denied  { associate } for  pid=1718 comm="syz.2.405" name="file2" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  121.314004][   T30] audit: type=1400 audit(1737463612.854:503): avc:  denied  { unmount } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  121.334153][   T30] audit: type=1400 audit(1737463612.914:504): avc:  denied  { read } for  pid=1725 comm="syz.2.406" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  121.356893][   T30] audit: type=1400 audit(1737463612.914:505): avc:  denied  { open } for  pid=1725 comm="syz.2.406" path="/dev/kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  121.381364][   T30] audit: type=1400 audit(1737463612.964:506): avc:  denied  { create } for  pid=1725 comm="syz.2.406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  121.400677][   T30] audit: type=1400 audit(1737463612.964:507): avc:  denied  { ioctl } for  pid=1725 comm="syz.2.406" path="socket:[21557]" dev="sockfs" ino=21557 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  121.508665][  T865] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  121.530001][  T865] usb 2-1: config 0 has no interfaces?
[  121.535620][  T865] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  121.545289][  T865] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.557630][  T865] usb 2-1: config 0 descriptor??
[  121.566402][ T1736] 9pnet: Insufficient options for proto=fd
[  121.873628][  T865] usb 2-1: USB disconnect, device number 4
[  122.332430][ T1748] loop3: detected capacity change from 0 to 128
[  122.430833][ T1748] attempt to access beyond end of device
[  122.430833][ T1748] loop3: rw=2049, want=1041, limit=128
[  122.492940][ T1752] loop0: detected capacity change from 0 to 512
[  122.606376][ T1752] loop0: detected capacity change from 0 to 256
[  122.665161][ T1754] loop3: detected capacity change from 0 to 512
[  122.675290][ T1752] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  122.690956][ T1758] loop2: detected capacity change from 0 to 512
[  122.710699][ T1752] netlink: 8 bytes leftover after parsing attributes in process `syz.0.415'.
[  122.723000][ T1754] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  122.729195][ T1752] netlink: 8 bytes leftover after parsing attributes in process `syz.0.415'.
[  122.731495][ T1754] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  122.795957][ T1758] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  122.818356][ T1758] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  123.148942][ T1777] loop5: detected capacity change from 0 to 128
[  124.486407][ T1787] 9pnet: Insufficient options for proto=fd
[  124.492232][ T1789] loop0: detected capacity change from 0 to 1024
[  125.079200][    T6] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  125.291103][ T1798] loop3: detected capacity change from 0 to 2048
[  125.376303][ T1798] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  125.419539][ T1808] loop0: detected capacity change from 0 to 512
[  125.464189][ T1811] loop1: detected capacity change from 0 to 8192
[  125.470665][    T6] usb 6-1: config 1 has an invalid interface descriptor of length 6, skipping
[  125.512320][    T6] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  125.525750][ T1811]  loop1: p1 < > p3 < p5 > p4
[  125.529565][    T6] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  125.543454][ T1811] loop1: partition table partially beyond EOD, truncated
[  125.543779][    T6] usb 6-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  125.559725][ T1811] loop1: p1 start 4294967040 is beyond EOD, truncated
[  125.573046][    T6] usb 6-1: config 1 interface 1 has no altsetting 0
[  125.583944][ T1808] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  125.601718][ T1816] loop3: detected capacity change from 0 to 1024
[  125.608042][ T1808] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.654132][ T1819] loop2: detected capacity change from 0 to 1024
[  125.662311][ T1819] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  125.673774][ T1819] jbd2_journal_init_inode: Cannot locate journal superblock
[  125.689302][ T1819] EXT4-fs (loop2): Could not load journal inode
[  125.737994][ T1821] netlink: 4 bytes leftover after parsing attributes in process `syz.0.431'.
[  125.785693][    T6] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  125.794779][    T6] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.802662][    T6] usb 6-1: Product: syz
[  125.806594][    T6] usb 6-1: Manufacturer: syz
[  125.811041][    T6] usb 6-1: SerialNumber: syz
[  125.827957][ T1819] loop2: detected capacity change from 0 to 1024
[  126.057157][ T1819] EXT4-fs (loop2): Test dummy encryption mode enabled
[  126.117837][ T1819] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  126.240038][    T6] cdc_ncm 6-1:1.0: NCM or ECM functional descriptors missing
[  126.247294][    T6] cdc_ncm 6-1:1.0: bind() failure
[  126.280470][ T1819] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,i_version,stripe=0x0000000000000007,commit=0x0000000000000005,inlinecrypt,mblk_io_submit,max_dir_size_kb=0x0000000000000002,quota,,errors=continue. Quota mode: writeback.
[  126.436317][   T30] kauditd_printk_skb: 43 callbacks suppressed
[  126.436338][   T30] audit: type=1400 audit(1737463618.064:551): avc:  denied  { getopt } for  pid=1793 comm="syz.5.427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  126.507427][ T1836] 9pnet: Insufficient options for proto=fd
[  126.509194][   T30] audit: type=1400 audit(1737463618.064:552): avc:  denied  { block_suspend } for  pid=1793 comm="syz.5.427" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  126.632160][ T1840] loop2: detected capacity change from 0 to 512
[  126.669872][ T1840] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  126.683607][ T1840] EXT4-fs (loop2): 1 truncate cleaned up
[  126.689104][ T1840] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodiscard,resgid=0x000000000000ee00,init_itable,noload,minixdf,usrjquota=,,errors=continue. Quota mode: none.
[  127.395810][   T30] audit: type=1400 audit(1737463619.034:553): avc:  denied  { name_bind } for  pid=1849 comm="syz.2.440" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  127.648988][   T30] audit: type=1400 audit(1737463619.094:554): avc:  denied  { node_bind } for  pid=1849 comm="syz.2.440" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  127.681839][ T1856] loop3: detected capacity change from 0 to 128
[  127.812822][ T1856] attempt to access beyond end of device
[  127.812822][ T1856] loop3: rw=2049, want=1041, limit=128
[  127.831528][ T1859] 9pnet: Insufficient options for proto=fd
[  127.840813][  T865] usb 6-1: USB disconnect, device number 3
[  127.855256][ T1859] loop2: detected capacity change from 0 to 512
[  127.925457][ T1863] loop3: detected capacity change from 0 to 16
[  127.934503][ T1859] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  127.945686][ T1859] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.999617][ T1863] erofs: (device loop3): mounted with root inode @ nid 36.
[  128.446853][   T30] audit: type=1400 audit(1737463620.084:555): avc:  denied  { connect } for  pid=1868 comm="syz.0.446" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  128.467707][ T1871] loop1: detected capacity change from 0 to 1024
[  128.520212][ T1873] 9pnet: Insufficient options for proto=fd
[  128.550318][ T1871] EXT4-fs (loop1): Test dummy encryption mode enabled
[  128.568021][ T1871] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  128.569521][   T30] audit: type=1400 audit(1737463620.214:556): avc:  denied  { read write } for  pid=1876 comm="syz.3.450" name="fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  128.608388][ T1871] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,i_version,stripe=0x0000000000000007,commit=0x0000000000000005,inlinecrypt,mblk_io_submit,max_dir_size_kb=0x0000000000000002,quota,,errors=continue. Quota mode: writeback.
[  128.640468][   T30] audit: type=1400 audit(1737463620.244:557): avc:  denied  { open } for  pid=1876 comm="syz.3.450" path="/dev/fuse" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  128.663727][ T1882] fuse: Bad value for 'fd'
[  128.668150][   T30] audit: type=1400 audit(1737463620.304:558): avc:  denied  { mounton } for  pid=1876 comm="syz.3.450" path="/83/file0" dev="tmpfs" ino=488 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  128.670677][ T1877] netlink: 'syz.3.450': attribute type 4 has an invalid length.
[  128.722212][   T30] audit: type=1400 audit(1737463620.364:559): avc:  denied  { bind } for  pid=1870 comm="syz.1.447" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  128.771799][   T30] audit: type=1400 audit(1737463620.414:560): avc:  denied  { write } for  pid=1870 comm="syz.1.447" path="socket:[21844]" dev="sockfs" ino=21844 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  128.798614][ T1877] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  128.808592][ T1877] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  128.817028][ T1877] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  128.825696][ T1877] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  128.833897][ T1877] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  128.842324][ T1877] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  128.866683][ T1888] binder_alloc: 1887: binder_alloc_buf, no vma
[  128.877788][ T1890] loop1: detected capacity change from 0 to 1024
[  128.984421][ T1893] loop3: detected capacity change from 0 to 128
[  129.473124][ T1898] loop3: detected capacity change from 0 to 512
[  129.512059][ T1898] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  129.521376][ T1898] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  129.691079][ T1908] 9pnet: Insufficient options for proto=fd
[  129.713639][ T1911] netlink: 12 bytes leftover after parsing attributes in process `syz.5.461'.
[  129.722463][ T1911] tipc: Started in network mode
[  129.727235][ T1911] tipc: Node identity 1, cluster identity 4711
[  129.733292][ T1911] tipc: Node number set to 1
[  130.713227][ T1921] FAULT_INJECTION: forcing a failure.
[  130.713227][ T1921] name failslab, interval 1, probability 0, space 0, times 0
[  130.886888][ T1921] CPU: 1 PID: 1921 Comm: syz.2.464 Not tainted 5.15.176-syzkaller-00972-g829d9f138569 #0
[  130.896543][ T1921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  130.906448][ T1921] Call Trace:
[  130.909560][ T1921]  <TASK>
[  130.912334][ T1921]  dump_stack_lvl+0x151/0x1c0
[  130.916850][ T1921]  ? io_uring_drop_tctx_refs+0x190/0x190
[  130.922319][ T1921]  dump_stack+0x15/0x20
[  130.926396][ T1921]  should_fail+0x3c6/0x510
[  130.930648][ T1921]  __should_failslab+0xa4/0xe0
[  130.935251][ T1921]  should_failslab+0x9/0x20
[  130.939591][ T1921]  slab_pre_alloc_hook+0x37/0xd0
[  130.944362][ T1921]  __kmalloc+0x6d/0x2c0
[  130.948351][ T1921]  ? tcf_idr_create+0x5f/0x780
[  130.952983][ T1921]  tcf_idr_create+0x5f/0x780
[  130.957380][ T1921]  tcf_bpf_init+0x351/0xbe0
[  130.961722][ T1921]  ? tcf_bpf_search+0x90/0x90
[  130.966408][ T1921]  ? memcpy+0x56/0x70
[  130.970224][ T1921]  ? nla_memcpy+0x8e/0xc0
[  130.974388][ T1921]  ? tcf_bpf_search+0x90/0x90
[  130.978904][ T1921]  tcf_action_init_1+0x50f/0x7f0
[  130.983677][ T1921]  ? tc_action_load_ops+0x550/0x550
[  130.988710][ T1921]  ? tc_action_load_ops+0x2a6/0x550
[  130.993750][ T1921]  ? tcf_action_init+0x162/0x840
[  130.998517][ T1921]  tcf_action_init+0x306/0x840
[  131.003120][ T1921]  ? native_set_ldt+0x360/0x360
[  131.007804][ T1921]  ? tcf_action_init_1+0x7f0/0x7f0
[  131.012761][ T1921]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[  131.018223][ T1921]  tc_ctl_action+0x49b/0xd00
[  131.022650][ T1921]  ? tcf_free_cookie_rcu+0x50/0x50
[  131.027591][ T1921]  ? __schedule+0xcd4/0x1590
[  131.032023][ T1921]  ? __cond_resched+0x20/0x20
[  131.036532][ T1921]  ? sysvec_reschedule_ipi+0x8c/0x160
[  131.041742][ T1921]  ? tcf_free_cookie_rcu+0x50/0x50
[  131.046686][ T1921]  ? rtnetlink_rcv_msg+0x50a/0xc40
[  131.051635][ T1921]  ? rtnetlink_rcv_msg+0x940/0xc40
[  131.056586][ T1921]  ? tcf_free_cookie_rcu+0x50/0x50
[  131.061529][ T1921]  rtnetlink_rcv_msg+0x951/0xc40
[  131.066309][ T1921]  ? rtnetlink_bind+0x80/0x80
[  131.070833][ T1921]  ? stack_trace_save+0x1c0/0x1c0
[  131.075674][ T1921]  ? __kernel_text_address+0x9b/0x110
[  131.080882][ T1921]  ? unwind_get_return_address+0x4d/0x90
[  131.086351][ T1921]  ? avc_has_perm_noaudit+0x348/0x430
[  131.091560][ T1921]  ? memcpy+0x56/0x70
[  131.095463][ T1921]  ? avc_has_perm_noaudit+0x2dd/0x430
[  131.100679][ T1921]  ? avc_denied+0x1b0/0x1b0
[  131.105013][ T1921]  ? avc_has_perm+0x16f/0x260
[  131.109528][ T1921]  ? ____kasan_kmalloc+0xed/0x110
[  131.114385][ T1921]  ? avc_has_perm_noaudit+0x430/0x430
[  131.119591][ T1921]  ? x64_sys_call+0x16a/0x9a0
[  131.124192][ T1921]  netlink_rcv_skb+0x1cf/0x410
[  131.128803][ T1921]  ? rtnetlink_bind+0x80/0x80
[  131.133308][ T1921]  ? netlink_ack+0xb10/0xb10
[  131.137735][ T1921]  ? __netlink_lookup+0x37b/0x3a0
[  131.142602][ T1921]  rtnetlink_rcv+0x1c/0x20
[  131.146845][ T1921]  netlink_unicast+0x8df/0xac0
[  131.151446][ T1921]  ? netlink_detachskb+0x90/0x90
[  131.156231][ T1921]  ? security_netlink_send+0x7b/0xa0
[  131.161340][ T1921]  netlink_sendmsg+0xa0a/0xd20
[  131.165945][ T1921]  ? netlink_getsockopt+0x560/0x560
[  131.171002][ T1921]  ? security_socket_sendmsg+0x82/0xb0
[  131.176270][ T1921]  ? netlink_getsockopt+0x560/0x560
[  131.181300][ T1921]  ____sys_sendmsg+0x59e/0x8f0
[  131.186346][ T1921]  ? __sys_sendmsg_sock+0x40/0x40
[  131.191197][ T1921]  ? import_iovec+0xe5/0x120
[  131.195633][ T1921]  ___sys_sendmsg+0x252/0x2e0
[  131.200133][ T1921]  ? bpf_ringbuf_notify+0x30/0x30
[  131.205006][ T1921]  ? __sys_sendmsg+0x260/0x260
[  131.209717][ T1921]  ? __switch_to+0x62a/0x1190
[  131.214206][ T1921]  ? bpf_ringbuf_output+0x179/0x1f0
[  131.219244][ T1921]  ? native_set_ldt+0x360/0x360
[  131.223930][ T1921]  ? __fdget+0x1bc/0x240
[  131.228005][ T1921]  __se_sys_sendmsg+0x19a/0x260
[  131.232694][ T1921]  ? __x64_sys_sendmsg+0x90/0x90
[  131.237465][ T1921]  ? ksys_write+0x260/0x2c0
[  131.241807][ T1921]  ? __kasan_check_write+0x14/0x20
[  131.246751][ T1921]  ? switch_fpu_return+0x15f/0x2e0
[  131.251699][ T1921]  __x64_sys_sendmsg+0x7b/0x90
[  131.256302][ T1921]  x64_sys_call+0x16a/0x9a0
[  131.260637][ T1921]  do_syscall_64+0x3b/0xb0
[  131.264890][ T1921]  ? clear_bhb_loop+0x35/0x90
[  131.269417][ T1921]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  131.275141][ T1921] RIP: 0033:0x7f08adeb8d29
[  131.279394][ T1921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.298832][ T1921] RSP: 002b:00007f08ac52a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.307070][ T1921] RAX: ffffffffffffffda RBX: 00007f08ae0a8fa0 RCX: 00007f08adeb8d29
[  131.314967][ T1921] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000004
[  131.322790][ T1921] RBP: 00007f08ac52a090 R08: 0000000000000000 R09: 0000000000000000
[  131.330591][ T1921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.338409][ T1921] R13: 0000000000000000 R14: 00007f08ae0a8fa0 R15: 00007ffc6cf58cb8
[  131.346223][ T1921]  </TASK>
[  131.368108][ T1922] loop5: detected capacity change from 0 to 256
[  131.399873][ T1922] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  131.425603][ T1922] FAT-fs (loop5): Directory bread(block 64) failed
[  131.432161][ T1922] FAT-fs (loop5): Directory bread(block 65) failed
[  131.439228][ T1922] FAT-fs (loop5): Directory bread(block 66) failed
[  131.445567][ T1922] FAT-fs (loop5): Directory bread(block 67) failed
[  131.452537][ T1922] FAT-fs (loop5): Directory bread(block 68) failed
[  131.458912][ T1922] FAT-fs (loop5): Directory bread(block 69) failed
[  131.465266][ T1922] FAT-fs (loop5): Directory bread(block 70) failed
[  131.471575][ T1922] FAT-fs (loop5): Directory bread(block 71) failed
[  131.478087][ T1922] FAT-fs (loop5): Directory bread(block 72) failed
[  131.484453][ T1922] FAT-fs (loop5): Directory bread(block 73) failed
[  131.505620][ T1928] loop3: detected capacity change from 0 to 128
[  131.514643][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  131.514659][   T30] audit: type=1326 audit(1737463623.154:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  131.677465][   T30] audit: type=1326 audit(1737463623.154:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  131.814353][   T30] audit: type=1326 audit(1737463623.194:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.022993][   T30] audit: type=1326 audit(1737463623.194:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.046318][   T30] audit: type=1326 audit(1737463623.194:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.069513][   T30] audit: type=1326 audit(1737463623.194:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.092656][   T30] audit: type=1326 audit(1737463623.194:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.116070][   T30] audit: type=1326 audit(1737463623.194:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.139909][   T30] audit: type=1326 audit(1737463623.194:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.163067][   T30] audit: type=1326 audit(1737463623.194:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1924 comm="syz.2.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08adeb8d29 code=0x7ffc0000
[  132.257088][ T1945] loop3: detected capacity change from 0 to 512
[  133.224408][ T1945] EXT4-fs (loop3): 1 orphan inode deleted
[  133.230089][ T1945] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  133.251115][ T1945] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.333037][ T1953] 9pnet: Insufficient options for proto=fd
[  133.542268][ T1957] loop0: detected capacity change from 0 to 1024
[  133.608715][ T1959] loop2: detected capacity change from 0 to 128
[  134.869253][ T1282] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  135.004772][ T1972] attempt to access beyond end of device
[  135.004772][ T1972] loop2: rw=2049, want=1041, limit=128
[  135.399259][ T1282] usb 1-1: unable to get BOS descriptor or descriptor too short
[  135.433467][ T1979] 9pnet: Insufficient options for proto=fd
[  135.439389][ T1282] usb 1-1: not running at top speed; connect to a high speed hub
[  135.545624][ T1282] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  135.611469][ T1282] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  135.639185][ T1282] usb 1-1: config 1 has no interface number 1
[  136.099679][ T1282] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  136.120527][ T1282] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.222119][ T1282] usb 1-1: Product: syz
[  136.230314][ T1282] usb 1-1: Manufacturer: syz
[  136.241853][ T1282] usb 1-1: SerialNumber: syz
[  136.256857][ T1990] netlink: 20 bytes leftover after parsing attributes in process `syz.3.484'.
[  136.411501][ T1993] loop1: detected capacity change from 0 to 2048
[  136.456353][ T1995] loop3: detected capacity change from 0 to 128
[  136.491417][ T1971] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  136.510811][ T1971] netlink: 'syz.0.478': attribute type 11 has an invalid length.
[  136.585217][   T30] kauditd_printk_skb: 720 callbacks suppressed
[  136.585233][   T30] audit: type=1400 audit(1737463628.224:1303): avc:  denied  { getopt } for  pid=2000 comm="syz.5.488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  136.606968][ T1993] EXT4-fs (loop1): mounted filesystem without journal. Opts: discard,,errors=continue. Quota mode: none.
[  136.630215][ T2002] loop5: detected capacity change from 0 to 512
[  136.659687][ T1282] usb 1-1: 2:1: invalid format type 0x1001 is detected, processed as PCM
[  136.669299][ T1282] usb 1-1: 2:1 : sample bitwidth 252 in over sample bytes 8
[  136.676460][ T1282] usb 1-1: 2:1 : unsupported sample bitwidth 252 in 8 bytes
[  136.774052][ T1282] usb 1-1: USB disconnect, device number 5
[  136.969612][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  137.080889][ T2002] loop5: detected capacity change from 0 to 40427
[  137.148895][ T2002] F2FS-fs (loop5): fault_injection options not supported
[  137.156734][   T30] audit: type=1400 audit(1737463628.794:1304): avc:  denied  { connect } for  pid=2007 comm="syz.3.490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  137.160409][  T318] udevd[318]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  137.183012][ T2002] F2FS-fs (loop5): invalid crc value
[  137.191792][  T865] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  137.210803][ T2002] F2FS-fs (loop5): Found nat_bits in checkpoint
[  137.214161][   T30] audit: type=1400 audit(1737463628.854:1305): avc:  denied  { ioctl } for  pid=2007 comm="syz.3.490" path="socket:[22055]" dev="sockfs" ino=22055 ioctlcmd=0x7453 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  137.282525][ T2002] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  137.344469][   T30] audit: type=1400 audit(1737463628.984:1306): avc:  denied  { append } for  pid=2000 comm="syz.5.488" path="/68/file1/file1" dev="loop5" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  137.353285][ T2013] attempt to access beyond end of device
[  137.353285][ T2013] loop5: rw=2049, want=45104, limit=40427
[  137.368503][   T30] audit: type=1400 audit(1737463628.984:1307): avc:  denied  { remove_name } for  pid=2000 comm="syz.5.488" name="bus" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  137.507810][   T30] audit: type=1400 audit(1737463628.984:1308): avc:  denied  { unlink } for  pid=2000 comm="syz.5.488" name="bus" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  137.538922][   T30] audit: type=1400 audit(1737463628.984:1309): avc:  denied  { ioctl } for  pid=2000 comm="syz.5.488" path="/68/file1/file1" dev="loop5" ino=10 ioctlcmd=0xf502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  137.563610][   T30] audit: type=1400 audit(1737463629.084:1310): avc:  denied  { create } for  pid=2000 comm="syz.5.488" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  137.583996][   T30] audit: type=1400 audit(1737463629.084:1311): avc:  denied  { unmount } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  137.809874][  T865] usb 2-1: New USB device found, idVendor=0421, idProduct=0007, bcdDevice=b8.51
[  137.846739][  T865] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.914666][  T865] usb 2-1: Product: syz
[  137.949407][  T865] usb 2-1: Manufacturer: syz
[  137.988690][  T865] usb 2-1: SerialNumber: syz
[  138.087980][  T865] usb 2-1: config 0 descriptor??
[  138.195228][  T865] rndis_host 2-1:0.0: skipping garbage
[  138.240240][  T865] rndis_host 2-1:0.0: More than one union descriptor, skipping ...
[  138.433040][  T865] usb 2-1: bad CDC descriptors
[  138.437829][  T865] cdc_acm 2-1:0.0: skipping garbage
[  138.483573][  T865] cdc_acm 2-1:0.0: More than one union descriptor, skipping ...
[  138.518271][ T2025] 9pnet: Insufficient options for proto=fd
[  138.720047][ T2033] netlink: 20 bytes leftover after parsing attributes in process `syz.3.497'.
[  139.288247][ T2042] loop3: detected capacity change from 0 to 256
[  139.319702][ T2042] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  139.345481][ T2042] FAT-fs (loop3): Directory bread(block 64) failed
[  139.351908][ T2042] FAT-fs (loop3): Directory bread(block 65) failed
[  139.358389][ T2042] FAT-fs (loop3): Directory bread(block 66) failed
[  139.364799][ T2042] FAT-fs (loop3): Directory bread(block 67) failed
[  139.371190][ T2042] FAT-fs (loop3): Directory bread(block 68) failed
[  139.377746][ T2042] FAT-fs (loop3): Directory bread(block 69) failed
[  139.384129][ T2042] FAT-fs (loop3): Directory bread(block 70) failed
[  139.390529][ T2042] FAT-fs (loop3): Directory bread(block 71) failed
[  139.396887][ T2042] FAT-fs (loop3): Directory bread(block 72) failed
[  139.403377][ T2042] FAT-fs (loop3): Directory bread(block 73) failed
[  139.564286][ T2050] 9pnet: Insufficient options for proto=fd
[  139.609206][   T30] audit: type=1400 audit(1737463631.214:1312): avc:  denied  { create } for  pid=2047 comm="syz.2.500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  139.833729][ T2052] loop5: detected capacity change from 0 to 512
[  139.947354][ T2052] EXT4-fs (loop5): orphan cleanup on readonly fs
[  139.956749][ T2052] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.501: bg 0: block 248: padding at end of block bitmap is not set
[  139.972589][ T2052] EXT4-fs error (device loop5): ext4_acquire_dquot:6188: comm syz.5.501: Failed to acquire dquot type 1
[  139.986293][ T2052] EXT4-fs (loop5): 1 truncate cleaned up
[  139.993481][ T2052] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  140.594770][   T20] usb 2-1: USB disconnect, device number 5
[  140.759055][ T2060] loop2: detected capacity change from 0 to 512
[  140.874048][ T2060] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,auto_da_alloc,minixdf,,errors=continue. Quota mode: writeback.
[  140.888877][ T2060] ext4 filesystem being mounted at /115/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  141.045916][ T2056] EXT4-fs (loop2): re-mounted. Opts: (null). Quota mode: writeback.
[  141.049549][ T2065] syz.1.504 uses obsolete (PF_INET,SOCK_PACKET)
[  141.134395][ T2065] FAULT_INJECTION: forcing a failure.
[  141.134395][ T2065] name failslab, interval 1, probability 0, space 0, times 0
[  141.147263][ T2065] CPU: 0 PID: 2065 Comm: syz.1.504 Not tainted 5.15.176-syzkaller-00972-g829d9f138569 #0
[  141.156898][ T2065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  141.166794][ T2065] Call Trace:
[  141.169925][ T2065]  <TASK>
[  141.172694][ T2065]  dump_stack_lvl+0x151/0x1c0
[  141.177206][ T2065]  ? io_uring_drop_tctx_refs+0x190/0x190
[  141.182674][ T2065]  dump_stack+0x15/0x20
[  141.186663][ T2065]  should_fail+0x3c6/0x510
[  141.190924][ T2065]  __should_failslab+0xa4/0xe0
[  141.195515][ T2065]  ? __alloc_skb+0xbe/0x550
[  141.199869][ T2065]  should_failslab+0x9/0x20
[  141.204197][ T2065]  slab_pre_alloc_hook+0x37/0xd0
[  141.208971][ T2065]  ? __alloc_skb+0xbe/0x550
[  141.213307][ T2065]  kmem_cache_alloc+0x44/0x250
[  141.217910][ T2065]  ? unwind_get_return_address+0x4d/0x90
[  141.223380][ T2065]  __alloc_skb+0xbe/0x550
[  141.227546][ T2065]  __ip_append_data+0x2453/0x3730
[  141.232408][ T2065]  ? ip_mtu_from_fib_result+0x320/0x320
[  141.237793][ T2065]  ? raw_send_hdrinc+0x1380/0x1380
[  141.242736][ T2065]  ? ip_setup_cork+0x8d0/0x8d0
[  141.247331][ T2065]  ? __kasan_check_read+0x11/0x20
[  141.252192][ T2065]  ? ip_setup_cork+0x567/0x8d0
[  141.256789][ T2065]  ip_append_data+0x120/0x190
[  141.261308][ T2065]  ? raw_send_hdrinc+0x1380/0x1380
[  141.266252][ T2065]  raw_sendmsg+0x1292/0x1ec0
[  141.270680][ T2065]  ? compat_raw_ioctl+0x10/0x10
[  141.275363][ T2065]  ? selinux_socket_sendmsg+0x243/0x340
[  141.280742][ T2065]  ? is_bpf_text_address+0x172/0x190
[  141.285865][ T2065]  ? unwind_get_return_address+0x4d/0x90
[  141.291335][ T2065]  ? inet_send_prepare+0x5e/0x4a0
[  141.296194][ T2065]  inet_sendmsg+0xa1/0xc0
[  141.300359][ T2065]  ? inet_send_prepare+0x4a0/0x4a0
[  141.305306][ T2065]  ____sys_sendmsg+0x59e/0x8f0
[  141.309905][ T2065]  ? __sys_sendmsg_sock+0x40/0x40
[  141.314801][ T2065]  ? kmem_cache_free+0x115/0x330
[  141.319542][ T2065]  ? import_iovec+0xe5/0x120
[  141.323981][ T2065]  ___sys_sendmsg+0x252/0x2e0
[  141.328481][ T2065]  ? __sys_sendmsg+0x260/0x260
[  141.333083][ T2065]  ? __kasan_check_write+0x14/0x20
[  141.338027][ T2065]  ? proc_fail_nth_write+0x20b/0x290
[  141.343149][ T2065]  ? __fdget+0x1bc/0x240
[  141.347227][ T2065]  __sys_sendmmsg+0x2bf/0x530
[  141.351742][ T2065]  ? __ia32_sys_sendmsg+0x90/0x90
[  141.356598][ T2065]  ? mutex_unlock+0xb2/0x260
[  141.361028][ T2065]  ? __kasan_check_write+0x14/0x20
[  141.365974][ T2065]  ? __ia32_sys_read+0x90/0x90
[  141.370574][ T2065]  ? debug_smp_processor_id+0x17/0x20
[  141.375779][ T2065]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  141.381701][ T2065]  __x64_sys_sendmmsg+0xa0/0xb0
[  141.386370][ T2065]  x64_sys_call+0x81d/0x9a0
[  141.390711][ T2065]  do_syscall_64+0x3b/0xb0
[  141.394961][ T2065]  ? clear_bhb_loop+0x35/0x90
[  141.399821][ T2065]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  141.405550][ T2065] RIP: 0033:0x7ff8888cfd29
[  141.409804][ T2065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.429246][ T2065] RSP: 002b:00007ff886f41038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  141.437491][ T2065] RAX: ffffffffffffffda RBX: 00007ff888abffa0 RCX: 00007ff8888cfd29
[  141.445301][ T2065] RDX: 0000000004000095 RSI: 0000000020005240 RDI: 0000000000000006
[  141.453114][ T2065] RBP: 00007ff886f41090 R08: 0000000000000000 R09: 0000000000000000
[  141.460920][ T2065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.468732][ T2065] R13: 0000000000000000 R14: 00007ff888abffa0 R15: 00007ffd62e03c18
[  141.476554][ T2065]  </TASK>
[  141.779001][ T2084] loop0: detected capacity change from 0 to 512
[  141.812302][ T2084] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  142.034018][ T2084] EXT4-fs (loop0): 1 truncate cleaned up
[  142.052464][ T2084] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  142.073330][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  142.073347][   T30] audit: type=1400 audit(1737463633.714:1327): avc:  denied  { setattr } for  pid=2083 comm="syz.0.511" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  142.125493][   T30] audit: type=1400 audit(1737463633.714:1328): avc:  denied  { read write } for  pid=2083 comm="syz.0.511" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  142.148215][   T30] audit: type=1400 audit(1737463633.714:1329): avc:  denied  { open } for  pid=2083 comm="syz.0.511" path="/102/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  142.655335][ T2099] FAULT_INJECTION: forcing a failure.
[  142.655335][ T2099] name failslab, interval 1, probability 0, space 0, times 0
[  142.667892][ T2099] CPU: 1 PID: 2099 Comm: syz.1.517 Not tainted 5.15.176-syzkaller-00972-g829d9f138569 #0
[  142.677522][ T2099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  142.687502][ T2099] Call Trace:
[  142.690627][ T2099]  <TASK>
[  142.693405][ T2099]  dump_stack_lvl+0x151/0x1c0
[  142.697916][ T2099]  ? io_uring_drop_tctx_refs+0x190/0x190
[  142.703384][ T2099]  dump_stack+0x15/0x20
[  142.707375][ T2099]  should_fail+0x3c6/0x510
[  142.711629][ T2099]  __should_failslab+0xa4/0xe0
[  142.716229][ T2099]  should_failslab+0x9/0x20
[  142.720567][ T2099]  slab_pre_alloc_hook+0x37/0xd0
[  142.725425][ T2099]  ? alloc_skb_with_frags+0xa6/0x680
[  142.730546][ T2099]  __kmalloc_track_caller+0x6c/0x2c0
[  142.735668][ T2099]  ? alloc_skb_with_frags+0xa6/0x680
[  142.740794][ T2099]  ? alloc_skb_with_frags+0xa6/0x680
[  142.745912][ T2099]  __alloc_skb+0x10c/0x550
[  142.750163][ T2099]  alloc_skb_with_frags+0xa6/0x680
[  142.755112][ T2099]  ? 0xffffffffa002c000
[  142.759104][ T2099]  ? is_bpf_text_address+0x172/0x190
[  142.764221][ T2099]  ? stack_trace_save+0x1c0/0x1c0
[  142.769084][ T2099]  sock_alloc_send_pskb+0x915/0xa50
[  142.774123][ T2099]  ? sock_kzfree_s+0x60/0x60
[  142.778541][ T2099]  ? avc_has_perm_noaudit+0x348/0x430
[  142.783756][ T2099]  ? memcpy+0x56/0x70
[  142.787571][ T2099]  packet_sendmsg+0x3cb5/0x6350
[  142.792258][ T2099]  ? avc_denied+0x1b0/0x1b0
[  142.796597][ T2099]  ? avc_has_perm+0x16f/0x260
[  142.801110][ T2099]  ? dev_map_hash_lookup_elem+0x124/0x180
[  142.806665][ T2099]  ? selinux_socket_sendmsg+0x243/0x340
[  142.812047][ T2099]  ? __kasan_check_write+0x14/0x20
[  142.817084][ T2099]  ? selinux_socket_accept+0x5b0/0x5b0
[  142.822374][ T2099]  ? packet_getsockopt+0xea0/0xea0
[  142.827323][ T2099]  ? check_stack_object+0xf4/0x130
[  142.832270][ T2099]  ? security_socket_sendmsg+0x82/0xb0
[  142.837561][ T2099]  ? packet_getsockopt+0xea0/0xea0
[  142.842509][ T2099]  __sys_sendto+0x564/0x720
[  142.846852][ T2099]  ? __ia32_sys_getpeername+0x90/0x90
[  142.852063][ T2099]  ? __ia32_sys_read+0x90/0x90
[  142.856678][ T2099]  ? debug_smp_processor_id+0x17/0x20
[  142.861871][ T2099]  __x64_sys_sendto+0xe5/0x100
[  142.866464][ T2099]  x64_sys_call+0x15c/0x9a0
[  142.870802][ T2099]  do_syscall_64+0x3b/0xb0
[  142.875054][ T2099]  ? clear_bhb_loop+0x35/0x90
[  142.879570][ T2099]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  142.885298][ T2099] RIP: 0033:0x7ff8888cfd29
[  142.889551][ T2099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.908990][ T2099] RSP: 002b:00007ff886f41038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  142.917680][ T2099] RAX: ffffffffffffffda RBX: 00007ff888abffa0 RCX: 00007ff8888cfd29
[  142.925492][ T2099] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  142.933298][ T2099] RBP: 00007ff886f41090 R08: 0000000020000040 R09: 0000000000000014
[  142.941109][ T2099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.948933][ T2099] R13: 0000000000000000 R14: 00007ff888abffa0 R15: 00007ffd62e03c18
[  142.956775][ T2099]  </TASK>
[  143.038477][   T30] audit: type=1400 audit(1737463634.674:1330): avc:  denied  { bind } for  pid=2106 comm="syz.1.519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  143.114610][   T30] audit: type=1400 audit(1737463634.754:1331): avc:  denied  { ioctl } for  pid=2110 comm="syz.3.520" path="/dev/uinput" dev="devtmpfs" ino=254 ioctlcmd=0x5504 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  143.153131][ T2111] input: syz1 as /devices/virtual/input/input9
[  143.209279][   T30] audit: type=1400 audit(1737463634.824:1332): avc:  denied  { read } for  pid=86 comm="acpid" name="event3" dev="devtmpfs" ino=666 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  143.249206][   T30] audit: type=1400 audit(1737463634.824:1333): avc:  denied  { open } for  pid=86 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=666 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  143.274435][ T2118] loop0: detected capacity change from 0 to 256
[  143.309187][   T30] audit: type=1400 audit(1737463634.824:1334): avc:  denied  { ioctl } for  pid=86 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=666 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  143.334489][ T2118] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  143.351605][ T2118] FAT-fs (loop0): Directory bread(block 64) failed
[  143.357995][ T2118] FAT-fs (loop0): Directory bread(block 65) failed
[  143.364409][ T2118] FAT-fs (loop0): Directory bread(block 66) failed
[  143.370850][ T2118] FAT-fs (loop0): Directory bread(block 67) failed
[  143.377218][ T2118] FAT-fs (loop0): Directory bread(block 68) failed
[  143.383561][ T2118] FAT-fs (loop0): Directory bread(block 69) failed
[  143.390024][ T2118] FAT-fs (loop0): Directory bread(block 70) failed
[  143.396302][ T2118] FAT-fs (loop0): Directory bread(block 71) failed
[  143.402691][ T2118] FAT-fs (loop0): Directory bread(block 72) failed
[  143.408971][ T2118] FAT-fs (loop0): Directory bread(block 73) failed
[  143.533150][ T2120] FAULT_INJECTION: forcing a failure.
[  143.533150][ T2120] name failslab, interval 1, probability 0, space 0, times 0
[  143.549191][ T2120] CPU: 0 PID: 2120 Comm: syz.3.522 Not tainted 5.15.176-syzkaller-00972-g829d9f138569 #0
[  143.558837][ T2120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  143.568737][ T2120] Call Trace:
[  143.571850][ T2120]  <TASK>
[  143.574627][ T2120]  dump_stack_lvl+0x151/0x1c0
[  143.579140][ T2120]  ? io_uring_drop_tctx_refs+0x190/0x190
[  143.584671][ T2120]  dump_stack+0x15/0x20
[  143.588606][ T2120]  should_fail+0x3c6/0x510
[  143.592855][ T2120]  __should_failslab+0xa4/0xe0
[  143.597453][ T2120]  ? __alloc_skb+0xbe/0x550
[  143.601794][ T2120]  should_failslab+0x9/0x20
[  143.606132][ T2120]  slab_pre_alloc_hook+0x37/0xd0
[  143.610908][ T2120]  ? __alloc_skb+0xbe/0x550
[  143.615248][ T2120]  kmem_cache_alloc+0x44/0x250
[  143.619932][ T2120]  ? unwind_get_return_address+0x4d/0x90
[  143.625404][ T2120]  __alloc_skb+0xbe/0x550
[  143.629652][ T2120]  __ip_append_data+0x2453/0x3730
[  143.634512][ T2120]  ? ip_mtu_from_fib_result+0x320/0x320
[  143.639893][ T2120]  ? raw_send_hdrinc+0x1380/0x1380
[  143.644840][ T2120]  ? ip_setup_cork+0x8d0/0x8d0
[  143.649444][ T2120]  ? __kasan_check_read+0x11/0x20
[  143.654301][ T2120]  ? ip_setup_cork+0x567/0x8d0
[  143.658903][ T2120]  ip_append_data+0x120/0x190
[  143.663417][ T2120]  ? raw_send_hdrinc+0x1380/0x1380
[  143.668360][ T2120]  raw_sendmsg+0x1292/0x1ec0
[  143.672789][ T2120]  ? compat_raw_ioctl+0x10/0x10
[  143.677479][ T2120]  ? selinux_socket_sendmsg+0x243/0x340
[  143.682856][ T2120]  ? is_bpf_text_address+0x172/0x190
[  143.687975][ T2120]  ? unwind_get_return_address+0x4d/0x90
[  143.693593][ T2120]  ? inet_send_prepare+0x5e/0x4a0
[  143.698411][ T2120]  inet_sendmsg+0xa1/0xc0
[  143.702582][ T2120]  ? inet_send_prepare+0x4a0/0x4a0
[  143.707533][ T2120]  ____sys_sendmsg+0x59e/0x8f0
[  143.712129][ T2120]  ? __sys_sendmsg_sock+0x40/0x40
[  143.716982][ T2120]  ? kmem_cache_free+0x115/0x330
[  143.721784][ T2120]  ? import_iovec+0xe5/0x120
[  143.726194][ T2120]  ___sys_sendmsg+0x252/0x2e0
[  143.730701][ T2120]  ? __sys_sendmsg+0x260/0x260
[  143.735305][ T2120]  ? __kasan_check_write+0x14/0x20
[  143.740246][ T2120]  ? proc_fail_nth_write+0x20b/0x290
[  143.745464][ T2120]  ? __fdget+0x1bc/0x240
[  143.749533][ T2120]  __sys_sendmmsg+0x2bf/0x530
[  143.754046][ T2120]  ? __ia32_sys_sendmsg+0x90/0x90
[  143.758994][ T2120]  ? mutex_unlock+0xb2/0x260
[  143.763424][ T2120]  ? __kasan_check_write+0x14/0x20
[  143.768369][ T2120]  ? __ia32_sys_read+0x90/0x90
[  143.772967][ T2120]  ? debug_smp_processor_id+0x17/0x20
[  143.778176][ T2120]  ? fpregs_assert_state_consistent+0xb6/0xe0
[  143.784082][ T2120]  __x64_sys_sendmmsg+0xa0/0xb0
[  143.788763][ T2120]  x64_sys_call+0x81d/0x9a0
[  143.793114][ T2120]  do_syscall_64+0x3b/0xb0
[  143.797355][ T2120]  ? clear_bhb_loop+0x35/0x90
[  143.801870][ T2120]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  143.807599][ T2120] RIP: 0033:0x7fec18d5fd29
[  143.811853][ T2120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.831292][ T2120] RSP: 002b:00007fec173d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  143.839535][ T2120] RAX: ffffffffffffffda RBX: 00007fec18f4ffa0 RCX: 00007fec18d5fd29
[  143.847348][ T2120] RDX: 0000000004000095 RSI: 0000000020005240 RDI: 0000000000000007
[  143.855159][ T2120] RBP: 00007fec173d1090 R08: 0000000000000000 R09: 0000000000000000
[  143.862968][ T2120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.870786][ T2120] R13: 0000000000000000 R14: 00007fec18f4ffa0 R15: 00007fff60f44408
[  143.878598][ T2120]  </TASK>
[  144.857290][ T2141] loop5: detected capacity change from 0 to 40427
[  144.946622][ T2141] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  144.954510][ T2141] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  144.964003][ T2141] F2FS-fs (loop5): invalid crc value
[  144.987725][ T2141] F2FS-fs (loop5): Found nat_bits in checkpoint
[  145.038162][ T2141] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  145.045190][ T2141] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  145.067338][   T30] audit: type=1400 audit(1737463636.704:1335): avc:  denied  { bind } for  pid=2152 comm="syz.0.533" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  145.110164][ T2141] overlayfs: invalid origin (00000079004c006c653000ffffffff000000000000000000000000000000000000000000000000000000000000000000)
[  145.123954][   T30] audit: type=1400 audit(1737463636.744:1336): avc:  denied  { setopt } for  pid=2152 comm="syz.0.533" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  145.150118][ T2149] loop3: detected capacity change from 0 to 128
[  145.729765][ T2156] loop2: detected capacity change from 0 to 40427
[  145.830506][ T2156] F2FS-fs (loop2): fault_type options not supported
[  145.845853][ T2156] F2FS-fs (loop2): invalid crc value
[  145.852626][ T2156] F2FS-fs (loop2): Found nat_bits in checkpoint
[  145.903162][ T2156] F2FS-fs (loop2): Start checkpoint disabled!
[  145.916336][ T2156] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  145.951579][ T2156] overlayfs: failed to create directory ./file0/work (errno: 13); mounting read-only
[  145.956993][ T2168] loop3: detected capacity change from 0 to 40427
[  145.996655][    T8] attempt to access beyond end of device
[  145.996655][    T8] loop2: rw=2049, want=40984, limit=40427
[  146.009113][ T2168] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  146.020295][ T2168] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  146.144884][ T2168] F2FS-fs (loop3): invalid crc value
[  146.228699][ T2168] F2FS-fs (loop3): Found nat_bits in checkpoint
[  146.446724][ T2168] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  146.458985][ T2168] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  146.654608][ T2190] loop2: detected capacity change from 0 to 1024
[  146.890078][ T2194] loop5: detected capacity change from 0 to 256
[  146.994510][ T2194] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  147.210678][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  148.283685][ T2194] FAT-fs (loop5): Directory bread(block 64) failed
[  148.290167][ T2194] FAT-fs (loop5): Directory bread(block 65) failed
[  148.296620][ T2194] FAT-fs (loop5): Directory bread(block 66) failed
[  148.303063][ T2194] FAT-fs (loop5): Directory bread(block 67) failed
[  148.309602][ T2194] FAT-fs (loop5): Directory bread(block 68) failed
[  148.315976][ T2194] FAT-fs (loop5): Directory bread(block 69) failed
[  148.322427][ T2194] FAT-fs (loop5): Directory bread(block 70) failed
[  148.328996][ T2194] FAT-fs (loop5): Directory bread(block 71) failed
[  148.335619][ T2194] FAT-fs (loop5): Directory bread(block 72) failed
[  148.342094][ T2194] FAT-fs (loop5): Directory bread(block 73) failed
[  149.465167][ T2205] loop0: detected capacity change from 0 to 512
[  149.591585][ T2202] loop2: detected capacity change from 0 to 512
[  149.724848][ T2205] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.545: inode #1: comm syz.0.545: iget: illegal inode #
[  149.738202][ T2205] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.545: error while reading EA inode 1 err=-117
[  149.751358][ T2205] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.545: inode #1: comm syz.0.545: iget: illegal inode #
[  149.764751][ T2205] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.545: error while reading EA inode 1 err=-117
[  149.778095][ T2205] EXT4-fs (loop0): 1 orphan inode deleted
[  149.783731][ T2205] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=,journal_dev=0x0000000000008000,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,grpquota,usrjquota=,journal_dev=0x0000000000000dcc,,errors=continue. Quota mode: writeback.
[  149.821471][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  149.821497][   T30] audit: type=1400 audit(1737463641.464:1348): avc:  denied  { watch watch_reads } for  pid=2199 comm="syz.0.545" path="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  150.036420][ T2202] EXT4-fs (loop2): orphan cleanup on readonly fs
[  150.055608][ T2202] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.546: bg 0: block 248: padding at end of block bitmap is not set
[  150.284356][ T2202] Quota error (device loop2): write_blk: dquota write failed
[  150.291962][ T2202] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  150.308876][ T2202] EXT4-fs error (device loop2): ext4_acquire_dquot:6188: comm syz.2.546: Failed to acquire dquot type 1
[  150.320758][ T2202] EXT4-fs (loop2): 1 truncate cleaned up
[  150.326444][ T2202] EXT4-fs (loop2): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,noquota,abort,noload,nodiscard,,errors=continue. Quota mode: writeback.
[  151.527373][   T30] audit: type=1400 audit(1737463643.164:1349): avc:  denied  { watch watch_reads } for  pid=2225 comm="syz.1.549" path="/104/file0" dev="tmpfs" ino=598 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  151.574768][   T30] audit: type=1326 audit(1737463643.214:1350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2225 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  151.643190][   T30] audit: type=1326 audit(1737463643.214:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2225 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  151.687211][   T30] audit: type=1326 audit(1737463643.214:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2225 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  151.728785][ T2234] 9pnet: Insufficient options for proto=fd
[  151.744292][   T30] audit: type=1326 audit(1737463643.214:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2225 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  151.747403][ T2232] 9pnet: Insufficient options for proto=fd
[  151.768056][   T30] audit: type=1326 audit(1737463643.214:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2225 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  151.804748][   T30] audit: type=1326 audit(1737463643.214:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2225 comm="syz.1.549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  151.946036][ T2237] device veth1_to_batadv entered promiscuous mode
[  151.952386][ T2237] device macsec1 entered promiscuous mode
[  152.239053][ T2241] binder: 2240:2241 ioctl 8933 20002f40 returned -22
[  152.286892][ T2245] Zero length message leads to an empty skb
[  152.293490][ T2245] fuse: Unknown parameter '0xffffffffffffffff'
[  152.303824][ T2245] netlink: 12 bytes leftover after parsing attributes in process `syz.2.556'.
[  152.325358][ T2245] loop2: detected capacity change from 0 to 1024
[  152.344913][ T2245] JBD2: no valid journal superblock found
[  152.350760][ T2245] EXT4-fs (loop2): error loading journal
[  152.491511][ T2251] loop5: detected capacity change from 0 to 256
[  153.600086][ T2251] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  153.630371][ T2251] FAT-fs (loop5): Directory bread(block 64) failed
[  153.636751][ T2251] FAT-fs (loop5): Directory bread(block 65) failed
[  153.643319][ T2251] FAT-fs (loop5): Directory bread(block 66) failed
[  153.649893][ T2251] FAT-fs (loop5): Directory bread(block 67) failed
[  153.656256][ T2251] FAT-fs (loop5): Directory bread(block 68) failed
[  153.662767][ T2251] FAT-fs (loop5): Directory bread(block 69) failed
[  153.669161][ T2251] FAT-fs (loop5): Directory bread(block 70) failed
[  153.675434][ T2251] FAT-fs (loop5): Directory bread(block 71) failed
[  153.681823][ T2251] FAT-fs (loop5): Directory bread(block 72) failed
[  153.688111][ T2251] FAT-fs (loop5): Directory bread(block 73) failed
[  153.831944][ T2245] loop2: detected capacity change from 0 to 2048
[  153.948509][ T2256] loop1: detected capacity change from 0 to 2048
[  154.106657][ T2256] EXT4-fs (loop1): mounted filesystem without journal. Opts: min_batch_time=0x000000000000000f,bsddf,noblock_validity,,errors=continue. Quota mode: none.
[  154.170476][ T2256] EXT4-fs (loop1): re-mounted. Opts: (null). Quota mode: none.
[  154.375093][ T2245] Alternate GPT is invalid, using primary GPT.
[  154.384230][ T2245]  loop2: p1 p2 p3
[  154.440189][ T2271] 9pnet: Insufficient options for proto=fd
[  154.509113][  T337] udevd[337]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  154.521783][  T664] udevd[664]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  154.533741][  T318] udevd[318]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  154.576758][ T2283] loop5: detected capacity change from 0 to 1024
[  154.587848][  T337] udevd[337]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  154.600543][  T318] udevd[318]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  155.414546][  T665] udevd[665]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  155.854077][ T2291] loop1: detected capacity change from 0 to 512
[  156.017935][ T2291] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  156.030209][ T2291] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.849768][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  156.849788][   T30] audit: type=1400 audit(1737463648.434:1369): avc:  denied  { create } for  pid=2290 comm="syz.1.568" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1
[  156.887368][   T30] audit: type=1326 audit(1737463648.514:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  156.911297][ T2291] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #2: comm syz.1.568: corrupted inode contents
[  156.937641][   T30] audit: type=1326 audit(1737463648.514:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  156.979086][ T2291] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #2: comm syz.1.568: mark_inode_dirty error
[  156.999943][ T2291] EXT4-fs error (device loop1): ext4_do_update_inode:5205: inode #2: comm syz.1.568: corrupted inode contents
[  157.026077][ T2291] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.568: mark_inode_dirty error
[  157.059468][   T30] audit: type=1326 audit(1737463648.514:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  157.330175][   T30] audit: type=1326 audit(1737463648.514:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  157.398450][   T30] audit: type=1326 audit(1737463648.514:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  157.421888][   T30] audit: type=1326 audit(1737463648.514:1375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  157.450131][    C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  157.458267][   T30] audit: type=1326 audit(1737463648.514:1376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  157.556419][   T30] audit: type=1326 audit(1737463648.514:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  157.579816][   T30] audit: type=1326 audit(1737463648.514:1378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2300 comm="syz.5.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[  157.713735][ T2314] loop1: detected capacity change from 0 to 256
[  157.771833][ T2314] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  157.867969][ T2314] FAT-fs (loop1): Directory bread(block 64) failed
[  157.874391][ T2314] FAT-fs (loop1): Directory bread(block 65) failed
[  157.880734][ T2314] FAT-fs (loop1): Directory bread(block 66) failed
[  157.887049][ T2314] FAT-fs (loop1): Directory bread(block 67) failed
[  157.893554][ T2314] FAT-fs (loop1): Directory bread(block 68) failed
[  157.899851][ T2314] FAT-fs (loop1): Directory bread(block 69) failed
[  157.906196][ T2314] FAT-fs (loop1): Directory bread(block 70) failed
[  157.912622][ T2314] FAT-fs (loop1): Directory bread(block 71) failed
[  157.918962][ T2314] FAT-fs (loop1): Directory bread(block 72) failed
[  157.925291][ T2314] FAT-fs (loop1): Directory bread(block 73) failed
[  158.032758][ T2317] 9pnet: Insufficient options for proto=fd
[  158.261168][ T2322] netlink: 24 bytes leftover after parsing attributes in process `syz.5.577'.
[  158.450179][ T2322] loop5: detected capacity change from 0 to 2048
[  158.896794][ T2331] loop3: detected capacity change from 0 to 512
[  159.070475][ T2331] EXT4-fs (loop3): orphan cleanup on readonly fs
[  159.080118][ T2331] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.579: bg 0: block 248: padding at end of block bitmap is not set
[  159.095562][ T2331] EXT4-fs error (device loop3): ext4_acquire_dquot:6188: comm syz.3.579: Failed to acquire dquot type 1
[  159.109373][ T2331] EXT4-fs (loop3): 1 truncate cleaned up
[  159.116161][ T2331] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  159.170626][ T2322] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  159.273677][ T2339] loop2: detected capacity change from 0 to 512
[  159.420656][ T2339] EXT4-fs (loop2): mounted filesystem without journal. Opts: data_err=ignore,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  159.449314][ T2339] ext4 filesystem being mounted at /130/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  160.245101][ T2363] 9pnet: Insufficient options for proto=fd
[  160.646681][ T2355] loop0: detected capacity change from 0 to 40427
[  160.716182][ T2382] loop2: detected capacity change from 0 to 512
[  160.722841][    T6] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  160.818227][ T2382] EXT4-fs (loop2): orphan cleanup on readonly fs
[  160.827699][ T2382] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.588: bg 0: block 248: padding at end of block bitmap is not set
[  160.850010][ T2382] EXT4-fs error (device loop2): ext4_acquire_dquot:6188: comm syz.2.588: Failed to acquire dquot type 1
[  160.864214][ T2355] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  160.874264][ T2382] EXT4-fs (loop2): 1 truncate cleaned up
[  160.882506][ T2382] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  161.089877][ T2355] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  161.149544][    T6] usb 6-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00
[  161.180117][    T6] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.210574][ T2355] F2FS-fs (loop0): invalid crc value
[  161.981769][ T2389] loop3: detected capacity change from 0 to 512
[  162.063928][    T6] usb 6-1: config 0 descriptor??
[  162.070096][ T2355] F2FS-fs (loop0): Found nat_bits in checkpoint
[  162.267328][ T2389] EXT4-fs (loop3): orphan cleanup on readonly fs
[  162.276689][ T2389] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.589: bg 0: block 248: padding at end of block bitmap is not set
[  162.294146][ T2389] __quota_error: 19 callbacks suppressed
[  162.294176][ T2389] Quota error (device loop3): write_blk: dquota write failed
[  162.307122][ T2389] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  162.317039][ T2389] EXT4-fs error (device loop3): ext4_acquire_dquot:6188: comm syz.3.589: Failed to acquire dquot type 1
[  162.333022][ T2389] EXT4-fs (loop3): 1 truncate cleaned up
[  162.340400][ T2389] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  162.462583][ T2355] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  162.494458][ T2355] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  162.559372][   T30] audit: type=1326 audit(1737463654.174:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  162.583175][    C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  162.596958][   T30] audit: type=1326 audit(1737463654.174:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  162.620538][   T30] audit: type=1326 audit(1737463654.174:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  162.652670][ T2401] loop1: detected capacity change from 0 to 256
[  162.660751][   T30] audit: type=1326 audit(1737463654.174:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  162.722994][ T2401] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  162.756604][   T30] audit: type=1326 audit(1737463654.174:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  162.823862][ T2401] FAT-fs (loop1): Directory bread(block 64) failed
[  162.843296][   T30] audit: type=1326 audit(1737463654.174:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  162.890416][ T2401] FAT-fs (loop1): Directory bread(block 65) failed
[  162.922758][ T2401] FAT-fs (loop1): Directory bread(block 66) failed
[  162.929644][   T30] audit: type=1326 audit(1737463654.174:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000
[  162.977983][ T2401] FAT-fs (loop1): Directory bread(block 67) failed
[  162.985222][ T2401] FAT-fs (loop1): Directory bread(block 68) failed
[  162.991873][ T2401] FAT-fs (loop1): Directory bread(block 69) failed
[  162.995210][   T30] audit: type=1326 audit(1737463654.174:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2358 comm="syz.5.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5269280d29 code=0x7ffc0000
[  162.998326][ T2401] FAT-fs (loop1): Directory bread(block 70) failed
[  163.028511][ T2401] FAT-fs (loop1): Directory bread(block 71) failed
[  163.035160][ T2401] FAT-fs (loop1): Directory bread(block 72) failed
[  163.041797][    T6] usbhid 6-1:0.0: can't add hid device: -71
[  163.047562][    T6] usbhid: probe of 6-1:0.0 failed with error -71
[  163.055132][ T2401] FAT-fs (loop1): Directory bread(block 73) failed
[  163.065949][    T6] usb 6-1: USB disconnect, device number 4
[  163.110473][ T2408] 9pnet: Could not find request transport: fd0x0000000000000005
[  163.133480][ T2410] loop5: detected capacity change from 0 to 128
[  163.320967][ T2410] attempt to access beyond end of device
[  163.320967][ T2410] loop5: rw=2049, want=1041, limit=128
[  164.760565][ T2443] loop1: detected capacity change from 0 to 1024
[  164.830771][ T2443] EXT4-fs (loop1): Ignoring removed nobh option
[  164.839216][ T2443] EXT4-fs (loop1): Ignoring removed bh option
[  164.845145][ T2443] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  164.854297][ T2441] loop5: detected capacity change from 0 to 40427
[  164.909282][ T2441] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  164.922809][ T2441] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  164.935729][ T2441] F2FS-fs (loop5): invalid crc value
[  164.946387][ T2441] F2FS-fs (loop5): Found nat_bits in checkpoint
[  164.953186][ T2443] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[  165.041594][ T2454] device wg2 left promiscuous mode
[  165.048275][ T2454] device wg2 entered promiscuous mode
[  165.185559][ T2441] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  165.192778][ T2441] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  165.269958][ T2463] loop3: detected capacity change from 0 to 1024
[  165.512760][  T319] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  166.151353][ T2475] loop1: detected capacity change from 0 to 1024
[  167.169183][  T319] usb 6-1: Using ep0 maxpacket: 8
[  167.210190][ T2490] loop2: detected capacity change from 0 to 256
[  167.319425][ T2490] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  167.331211][  T319] usb 6-1: unable to get BOS descriptor or descriptor too short
[  167.542873][ T2490] FAT-fs (loop2): Directory bread(block 64) failed
[  167.575200][ T2490] FAT-fs (loop2): Directory bread(block 65) failed
[  167.609307][ T2490] FAT-fs (loop2): Directory bread(block 66) failed
[  167.620431][ T2490] FAT-fs (loop2): Directory bread(block 67) failed
[  167.626915][ T2490] FAT-fs (loop2): Directory bread(block 68) failed
[  167.633500][ T2490] FAT-fs (loop2): Directory bread(block 69) failed
[  167.640185][ T2490] FAT-fs (loop2): Directory bread(block 70) failed
[  167.646816][ T2490] FAT-fs (loop2): Directory bread(block 71) failed
[  167.653265][ T2490] FAT-fs (loop2): Directory bread(block 72) failed
[  167.659945][ T2490] FAT-fs (loop2): Directory bread(block 73) failed
[  167.679236][  T319] usb 6-1: unable to read config index 0 descriptor/start: -71
[  167.688838][  T319] usb 6-1: can't read configurations, error -71
[  167.695627][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  168.360725][ T2510] loop1: detected capacity change from 0 to 1024
[  168.969017][ T2511] tipc: Started in network mode
[  168.973873][ T2511] tipc: Node identity fc01, cluster identity 4711
[  168.980223][ T2511] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  170.579522][  T397] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  170.798756][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  170.798803][   T30] audit: type=1400 audit(1737463662.434:1413): avc:  denied  { create } for  pid=2542 comm="syz.1.633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  170.989247][  T397] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  170.999356][  T397] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  171.084214][ T2545] loop1: detected capacity change from 0 to 40427
[  171.089277][  T397] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  171.105097][ T2545] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  171.105153][  T397] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  171.112965][  T397] usb 3-1: SerialNumber: syz
[  171.126155][ T2545] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  171.136089][ T2545] F2FS-fs (loop1): invalid crc value
[  171.143143][ T2545] F2FS-fs (loop1): Found nat_bits in checkpoint
[  171.184775][ T2545] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  171.190052][  T397] usb 3-1: 0:2 : does not exist
[  171.191752][ T2545] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  171.275492][ T2548] loop5: detected capacity change from 0 to 40427
[  171.334611][ T2548] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  171.345339][ T2548] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  171.354724][ T2548] F2FS-fs (loop5): invalid crc value
[  171.364329][ T2548] F2FS-fs (loop5): Found nat_bits in checkpoint
[  171.412922][   T30] audit: type=1326 audit(1737463663.054:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  171.444374][ T2548] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  171.445301][ T2557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=536872448 (1073744896 ns) > initial count (34 ns). Using initial count to start timer.
[  171.484585][   T30] audit: type=1326 audit(1737463663.054:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  171.507857][ T2548] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  171.522584][ T2564] loop0: detected capacity change from 0 to 1024
[  171.528880][   T30] audit: type=1326 audit(1737463663.054:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  171.553624][   T30] audit: type=1326 audit(1737463663.064:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2559 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff8889025e5 code=0x7ffc0000
[  171.577044][   T30] audit: type=1326 audit(1737463663.064:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  171.634053][   T30] audit: type=1326 audit(1737463663.074:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  171.713601][   T30] audit: type=1326 audit(1737463663.074:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  171.809533][ T2532] loop2: detected capacity change from 0 to 40427
[  171.830407][   T30] audit: type=1326 audit(1737463663.074:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff88886bf29 code=0x7ffc0000
[  171.862604][ T2532] F2FS-fs (loop2): Wrong segment_count / block_count (129 > 16384)
[  171.870399][ T2532] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  171.878368][   T30] audit: type=1326 audit(1737463663.074:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2556 comm="syz.1.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7ff8888cfd29 code=0x7ffc0000
[  171.880316][ T2532] F2FS-fs (loop2): invalid crc value
[  172.684191][ T2532] F2FS-fs (loop2): SIT is corrupted node# 5 vs 7
[  172.690547][ T2532] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-117)
[  172.749695][  T312] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  172.767397][ T2575] loop3: detected capacity change from 0 to 8192
[  172.768597][  T312] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  172.897033][ T2575] device syzkaller0 entered promiscuous mode
[  173.020282][ T2585] loop5: detected capacity change from 0 to 128
[  173.100816][ T2585] attempt to access beyond end of device
[  173.100816][ T2585] loop5: rw=2049, want=1041, limit=128
[  173.144220][ T2583] loop1: detected capacity change from 0 to 40427
[  173.200001][ T2583] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  173.219425][ T2583] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  173.232701][ T2583] F2FS-fs (loop1): invalid crc value
[  173.241805][ T2583] F2FS-fs (loop1): Found nat_bits in checkpoint
[  173.327958][ T2594] 9pnet: Insufficient options for proto=fd
[  173.361382][ T2583] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  173.368353][ T2583] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  173.416376][   T10] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  173.428359][   T10] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  173.452599][ T2604] x_tables: duplicate underflow at hook 3
[  173.615596][ T2618] netlink: 68 bytes leftover after parsing attributes in process `syz.0.657'.
[  173.915257][  T397] usb 3-1: USB disconnect, device number 5
[  174.123587][ T2644] netlink: 8 bytes leftover after parsing attributes in process `syz.2.667'.
[  174.139705][ T2646] mmap: syz.0.669 (2646) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  176.611156][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  176.611193][   T30] audit: type=1400 audit(1737463668.254:1452): avc:  denied  { setattr } for  pid=2692 comm="syz.1.681" name="/" dev="configfs" ino=13680 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  176.858235][ T2701] netlink: 12 bytes leftover after parsing attributes in process `syz.3.684'.
[  176.941097][   T30] audit: type=1400 audit(1737463668.354:1453): avc:  denied  { link } for  pid=2679 comm="syz.0.677" name="#16" dev="tmpfs" ino=784 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  176.968218][   T30] audit: type=1400 audit(1737463668.354:1454): avc:  denied  { rename } for  pid=2679 comm="syz.0.677" name="#17" dev="tmpfs" ino=784 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  176.990378][   T30] audit: type=1400 audit(1737463668.524:1455): avc:  denied  { unmount } for  pid=295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  177.292322][ T2715] input: syz1 as /devices/virtual/input/input11
[  177.341812][   T30] audit: type=1400 audit(1737463668.784:1456): avc:  denied  { mount } for  pid=2705 comm="syz.2.686" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  177.450277][   T30] audit: type=1400 audit(1737463669.044:1457): avc:  denied  { name_bind } for  pid=2718 comm="syz.1.689" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  177.490583][   T30] audit: type=1400 audit(1737463669.124:1458): avc:  denied  { write } for  pid=2722 comm="syz.1.690" name="igmp" dev="proc" ino=4026532576 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  177.527739][ T2725] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=2725 comm=syz.0.691
[  177.597807][ T2738] netlink: 36 bytes leftover after parsing attributes in process `syz.1.697'.
[  177.608030][ T2738] netlink: 116 bytes leftover after parsing attributes in process `syz.1.697'.
[  177.617521][ T2738] A link change request failed with some changes committed already. Interface veth1_to_hsr may have been left with an inconsistent configuration, please check.
[  177.678370][ T2741] loop1: detected capacity change from 0 to 1024
[  178.010565][   T30] audit: type=1400 audit(1737463669.654:1459): avc:  denied  { unmount } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  178.597343][   T30] audit: type=1400 audit(1737463670.234:1460): avc:  denied  { ioctl } for  pid=2757 comm="syz.3.703" path="net:[4026532637]" dev="nsfs" ino=4026532637 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  178.792059][ T2773] netlink: 8 bytes leftover after parsing attributes in process `syz.5.710'.
[  178.869739][   T30] audit: type=1326 audit(1737463670.514:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2780 comm="syz.0.714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  178.960769][  T397] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  179.016647][ T2794] device syzkaller0 entered promiscuous mode
[  179.229754][  T397] usb 4-1: Using ep0 maxpacket: 16
[  179.414458][  T397] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=28.00
[  179.434811][  T397] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.452937][ T2806] loop2: detected capacity change from 0 to 128
[  179.457311][ T2808] loop0: detected capacity change from 0 to 512
[  179.463871][  T397] usb 4-1: config 0 descriptor??
[  179.480354][ T2808] EXT4-fs (loop0): Unrecognized mount option "obj_type=({" or missing value
[  179.510341][ T2806] attempt to access beyond end of device
[  179.510341][ T2806] loop2: rw=2049, want=1041, limit=128
[  179.520495][  T397] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  179.528893][  T397] usb 4-1: Detected FT-X
[  179.646661][ T2815] loop2: detected capacity change from 0 to 128
[  179.688494][ T2815] attempt to access beyond end of device
[  179.688494][ T2815] loop2: rw=2049, want=1041, limit=128
[  179.959244][  T397] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  179.979252][  T397] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71
[  179.986258][  T397] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  179.994996][  T397] usb 4-1: USB disconnect, device number 10
[  180.004854][  T397] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  180.014343][  T397] ftdi_sio 4-1:0.0: device disconnected
[  180.069181][   T39] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  180.309191][   T39] usb 3-1: Using ep0 maxpacket: 8
[  180.439345][   T39] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  180.448417][   T39] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.457467][   T39] usb 3-1: config 0 descriptor??
[  180.599238][    T6] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  180.709165][  T445] usb 4-1: new low-speed USB device number 11 using dummy_hcd
[  180.814707][ T2844] netlink: 376 bytes leftover after parsing attributes in process `syz.5.739'.
[  180.959240][    T6] usb 1-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  180.968553][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.978178][    T6] usb 1-1: config 0 descriptor??
[  181.069986][  T445] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[  181.078260][  T445] usb 4-1: config 0 has no interface number 0
[  181.084765][  T445] usb 4-1: config 0 interface 16 altsetting 4 endpoint 0x1 has invalid maxpacket 64, setting to 8
[  181.096006][  T445] usb 4-1: config 0 interface 16 altsetting 4 has a duplicate endpoint with address 0x1, skipping
[  181.106601][  T445] usb 4-1: config 0 interface 16 has no altsetting 0
[  181.113178][  T445] usb 4-1: New USB device found, idVendor=0d46, idProduct=0081, bcdDevice=c8.f2
[  181.122200][  T445] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.131188][  T445] usb 4-1: config 0 descriptor??
[  181.349202][  T397] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  181.370799][  T445] usb 4-1: USB disconnect, device number 11
[  181.869369][  T397] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  181.881267][  T397] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  181.903505][  T397] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  181.916458][  T397] usb 6-1: New USB device found, idVendor=0755, idProduct=2626, bcdDevice= 0.00
[  181.925414][  T397] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.934617][  T397] usb 6-1: config 0 descriptor??
[  181.959251][ T2849] raw-gadget.3 gadget: fail, usb_ep_enable returned -22
[  182.329275][   T39] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  182.339090][  T445] usb 1-1: USB disconnect, device number 6
[  182.345107][   T39] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  182.357057][   T39] asix: probe of 3-1:0.0 failed with error -71
[  182.366814][   T39] usb 3-1: USB disconnect, device number 6
[  182.403328][  T397] aureal 0003:0755:2626.0002: collection stack underflow
[  182.437585][  T397] aureal 0003:0755:2626.0002: item 0 2 0 12 parsing failed
[  182.447328][  T397] aureal: probe of 0003:0755:2626.0002 failed with error -22
[  182.605811][   T39] usb 6-1: USB disconnect, device number 7
[  182.759169][  T445] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  182.884009][ T2880] kvm [2879]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0xe2f2
[  182.893199][ T2880] kvm [2879]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0xa2f3
[  182.906567][ T2880] kvm [2879]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x50fe
[  182.916536][ T2880] kvm [2879]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x10ff
[  182.926862][ T2880] kvm [2879]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x9686
[  182.935993][ T2880] kvm [2879]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0xd687
[  183.161399][ T2899] netlink: 4 bytes leftover after parsing attributes in process `syz.5.758'.
[  183.179263][ T2899] device bridge_slave_1 left promiscuous mode
[  183.192924][ T2899] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.200520][  T445] usb 1-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  183.214900][  T445] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.229177][  T397] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  183.231759][ T2899] device bridge_slave_0 left promiscuous mode
[  183.242760][  T445] usb 1-1: config 0 descriptor??
[  183.259373][ T2899] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.479229][  T397] usb 3-1: Using ep0 maxpacket: 32
[  183.646552][  T397] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  183.668378][  T397] usb 3-1: config 0 has no interface number 0
[  183.839372][  T397] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  183.853216][  T397] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.869175][  T397] usb 3-1: Product: syz
[  183.879343][  T397] usb 3-1: Manufacturer: syz
[  183.889364][  T397] usb 3-1: SerialNumber: syz
[  183.903505][  T397] usb 3-1: config 0 descriptor??
[  183.979204][   T26] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  184.259238][  T397] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  184.349180][   T39] usb 4-1: new low-speed USB device number 12 using dummy_hcd
[  184.359214][   T26] usb 6-1: config 0 has an invalid interface number: 133 but max is 0
[  184.367276][   T26] usb 6-1: config 0 has no interface number 0
[  184.373310][   T26] usb 6-1: config 0 interface 133 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  184.503823][ T2917] UDC core: couldn't find an available UDC or it's busy: -16
[  184.511349][ T2917] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  184.559379][   T26] usb 6-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  184.568231][   T26] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.576087][   T26] usb 6-1: Product: syz
[  184.580093][   T26] usb 6-1: Manufacturer: syz
[  184.584459][   T26] usb 6-1: SerialNumber: syz
[  184.589896][   T26] usb 6-1: config 0 descriptor??
[  184.631242][  T445] usb 1-1: USB disconnect, device number 7
[  184.639360][  T397] usb 2-1: config 0 has no interfaces?
[  184.719248][   T39] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[  184.727160][   T39] usb 4-1: config 0 has no interface number 0
[  184.733250][   T39] usb 4-1: config 0 interface 16 altsetting 4 endpoint 0x9 has invalid maxpacket 32, setting to 8
[  184.743764][   T39] usb 4-1: config 0 interface 16 has no altsetting 0
[  184.750330][   T39] usb 4-1: New USB device found, idVendor=0d46, idProduct=0081, bcdDevice=c8.f2
[  184.759262][   T39] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.767927][   T39] usb 4-1: config 0 descriptor??
[  184.799244][ T2914] raw-gadget.4 gadget: fail, usb_ep_enable returned -22
[  184.829268][  T397] usb 2-1: New USB device found, idVendor=dd3d, idProduct=0321, bcdDevice=a1.c9
[  184.838240][  T397] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.855349][  T397] usb 2-1: Product: syz
[  184.859536][  T397] usb 2-1: Manufacturer: syz
[  184.863959][  T397] usb 2-1: SerialNumber: syz
[  184.873406][  T397] usb 2-1: config 0 descriptor??
[  184.881145][   T26] usb 6-1: USB disconnect, device number 8
[  185.032834][  T445] usb 4-1: USB disconnect, device number 12
[  185.111228][   T26] usb 2-1: USB disconnect, device number 6
[  185.493076][   T30] kauditd_printk_skb: 71 callbacks suppressed
[  185.493094][   T30] audit: type=1400 audit(1737463677.134:1533): avc:  denied  { read } for  pid=2932 comm="syz.5.768" name="rtc0" dev="devtmpfs" ino=255 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  185.539512][   T30] audit: type=1400 audit(1737463677.164:1534): avc:  denied  { open } for  pid=2932 comm="syz.5.768" path="/dev/rtc0" dev="devtmpfs" ino=255 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  185.713712][   T30] audit: type=1400 audit(1737463677.354:1535): avc:  denied  { bind } for  pid=2944 comm="syz.0.770" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  186.036318][  T445] usb 3-1: USB disconnect, device number 7
[  186.159015][   T30] audit: type=1400 audit(1737463677.704:1536): avc:  denied  { write } for  pid=2944 comm="syz.0.770" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  186.737149][ T2958] loop1: detected capacity change from 0 to 128
[  186.848720][ T2958] attempt to access beyond end of device
[  186.848720][ T2958] loop1: rw=2049, want=1041, limit=128
[  186.864591][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.877917][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.890870][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.911016][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.932267][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.943101][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.955981][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.966475][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  186.983458][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  187.007815][ T2940] kvm [2939]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  187.016637][  T445] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  187.065604][ T2968] binder: 2966:2968 ioctl c018620c 20000140 returned -22
[  187.079177][   T60] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  187.219562][   T30] audit: type=1400 audit(1737463678.854:1537): avc:  denied  { mounton } for  pid=2971 comm="syz.1.783" path="/" dev="configfs" ino=13680 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  187.309360][  T445] usb 3-1: Using ep0 maxpacket: 32
[  187.504301][ T2979] loop3: detected capacity change from 0 to 512
[  187.560230][   T60] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  187.580129][ T2979] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  187.588620][ T2979] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  187.613946][   T60] usb 6-1: config 0 has no interfaces?
[  187.631351][  T445] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  187.642741][  T445] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  187.645300][   T60] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  187.662285][  T445] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  187.668723][   T60] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.685696][   T30] audit: type=1326 audit(1737463679.324:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2992 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  187.709390][   T30] audit: type=1326 audit(1737463679.324:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2992 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  187.735432][   T30] audit: type=1326 audit(1737463679.324:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2992 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  187.735722][   T60] usb 6-1: config 0 descriptor??
[  187.759198][   T30] audit: type=1326 audit(1737463679.324:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2992 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  187.788107][   T30] audit: type=1326 audit(1737463679.324:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2992 comm="syz.0.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f93dd29 code=0x7ffc0000
[  187.869441][  T445] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  187.895713][  T445] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.918941][  T445] usb 3-1: Product: syz
[  187.924491][  T445] usb 3-1: Manufacturer: syz
[  187.930062][  T445] usb 3-1: SerialNumber: syz
[  187.980490][  T445] cdc_ncm 3-1:1.0: skipping garbage
[  187.985597][  T445] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found
[  188.017605][  T445] cdc_ncm 3-1:1.0: bind() failure
[  188.109511][  T445] usb 6-1: USB disconnect, device number 9
[  188.124673][ T2995] netlink: 312 bytes leftover after parsing attributes in process `syz.0.789'.
[  188.181499][    T6] usb 3-1: USB disconnect, device number 8
[  188.255721][ T2995] loop0: detected capacity change from 0 to 40427
[  188.344034][ T2995] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  188.351203][ T2995] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  188.361836][ T2995] F2FS-fs (loop0): fault_injection options not supported
[  188.368727][ T2995] F2FS-fs (loop0): fault_type options not supported
[  188.377943][ T2995] F2FS-fs (loop0): invalid crc value
[  188.386968][ T2995] F2FS-fs (loop0): Found nat_bits in checkpoint
[  188.465184][ T2995] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  188.472173][ T2995] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  188.734640][ T3029] loop2: detected capacity change from 0 to 1024
[  189.640911][ T3045] loop3: detected capacity change from 0 to 1024
[  191.388663][ T3060] loop5: detected capacity change from 0 to 512
[  191.558174][ T3060] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  191.578479][ T3084] 9pnet: Could not find request transport: rdma
[  191.745721][ T3060] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  191.831379][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  191.831396][   T30] audit: type=1400 audit(1737463683.474:1552): avc:  denied  { connect } for  pid=3087 comm="syz.3.817" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  191.882722][ T3065] netlink: 4 bytes leftover after parsing attributes in process `syz.5.809'.
[  192.199178][   T60] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  192.499279][    T6] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  192.589417][   T60] usb 2-1: Using ep0 maxpacket: 16
[  192.730118][ T3105] loop3: detected capacity change from 0 to 128
[  192.848114][   T60] usb 2-1: config 0 has an invalid descriptor of length 36, skipping remainder of the config
[  192.858457][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  192.869582][   T60] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x9B, skipping
[  192.880352][   T60] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  192.969526][   T60] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  192.987916][   T60] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  193.012916][   T60] usb 2-1: Manufacturer: syz
[  193.101633][   T60] usb 2-1: config 0 descriptor??
[  193.368941][   T26] usb 2-1: USB disconnect, device number 7
[  194.049250][   T60] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  194.204250][  T319] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  194.211614][    T6] usb 1-1: Using ep0 maxpacket: 8
[  194.449244][   T60] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  194.466557][   T60] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  194.477264][   T60] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.508802][   T60] usb 6-1: config 0 descriptor??
[  194.709419][    T6] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0099, bcdDevice=95.0d
[  194.718465][    T6] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.731407][    T6] usb 1-1: Product: syz
[  194.735457][    T6] usb 1-1: Manufacturer: syz
[  194.740126][    T6] usb 1-1: SerialNumber: syz
[  194.753773][    T6] usb 1-1: config 0 descriptor??
[  194.909231][  T319] usb 3-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  194.918153][  T319] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.925996][  T319] usb 3-1: Product: syz
[  194.929952][  T319] usb 3-1: Manufacturer: syz
[  194.934381][  T319] usb 3-1: SerialNumber: syz
[  194.934749][   T39] usb 1-1: USB disconnect, device number 8
[  194.940296][  T319] usb 3-1: config 0 descriptor??
[  195.019214][   T60] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  195.409281][   T60] usb 4-1: Using ep0 maxpacket: 16
[  195.462982][   T30] audit: type=1400 audit(1737463687.104:1553): avc:  denied  { setopt } for  pid=3160 comm="syz.1.841" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  195.504699][   T30] audit: type=1400 audit(1737463687.144:1554): avc:  denied  { write } for  pid=3160 comm="syz.1.841" path="socket:[26818]" dev="sockfs" ino=26818 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  195.528190][   T30] audit: type=1400 audit(1737463687.144:1555): avc:  denied  { append } for  pid=3164 comm="syz.1.842" name="kvm" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  195.579290][   T60] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  195.589633][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  195.600301][   T60] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  195.789395][   T60] usb 4-1: New USB device found, idVendor=1870, idProduct=0001, bcdDevice=94.47
[  195.802944][   T60] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.811055][   T60] usb 4-1: Product: syz
[  195.815133][   T60] usb 4-1: Manufacturer: syz
[  195.819742][   T60] usb 4-1: SerialNumber: syz
[  195.824921][   T60] usb 4-1: config 0 descriptor??
[  195.906705][  T319] usb 6-1: USB disconnect, device number 10
[  196.071096][    T6] usb 4-1: USB disconnect, device number 13
[  196.275969][   T60] usb 3-1: USB disconnect, device number 9
[  196.399236][  T319] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  196.769318][  T319] usb 6-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b
[  196.789520][  T319] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.809517][  T319] usb 6-1: config 0 descriptor??
[  196.941952][   T30] audit: type=1400 audit(1737463688.584:1556): avc:  denied  { unmount } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  197.078264][   T30] audit: type=1326 audit(1737463688.714:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.103901][   T30] audit: type=1326 audit(1737463688.714:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.129597][   T30] audit: type=1326 audit(1737463688.714:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.152827][   T30] audit: type=1326 audit(1737463688.754:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.176066][   T30] audit: type=1326 audit(1737463688.754:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.199849][   T30] audit: type=1326 audit(1737463688.754:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.226355][   T30] audit: type=1326 audit(1737463688.774:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.250120][   T30] audit: type=1400 audit(1737463688.774:1564): avc:  denied  { read } for  pid=3214 comm="syz.1.862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  197.269242][    T6] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  197.269256][ T2198] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  197.269347][   T30] audit: type=1326 audit(1737463688.774:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3216 comm="syz.3.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7fec18d5fd29 code=0x7ffc0000
[  197.373560][ T3222] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  197.509195][    T6] usb 1-1: Using ep0 maxpacket: 8
[  197.659242][ T2198] usb 3-1: config 0 has an invalid interface number: 107 but max is 0
[  197.667375][ T2198] usb 3-1: config 0 has no interface number 0
[  197.674313][ T2198] usb 3-1: config 0 interface 107 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  197.685335][ T2198] usb 3-1: config 0 interface 107 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  197.709269][    T6] usb 1-1: config 1 interface 0 altsetting 253 bulk endpoint 0x82 has invalid maxpacket 8
[  197.719199][    T6] usb 1-1: config 1 interface 0 altsetting 253 bulk endpoint 0x3 has invalid maxpacket 1023
[  197.729074][    T6] usb 1-1: config 1 interface 0 has no altsetting 0
[  197.889290][    T6] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  197.889290][ T2198] usb 3-1: New USB device found, idVendor=06cd, idProduct=0131, bcdDevice=16.60
[  197.889322][    T6] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.898280][ T2198] usb 3-1: New USB device strings: Mfr=175, Product=2, SerialNumber=3
[  197.907119][    T6] usb 1-1: Product: syz
[  197.915025][ T2198] usb 3-1: Product: syz
[  197.923037][    T6] usb 1-1: Manufacturer: syz
[  197.926968][ T2198] usb 3-1: Manufacturer: syz
[  197.930945][    T6] usb 1-1: SerialNumber: syz
[  197.935300][ T2198] usb 3-1: SerialNumber: syz
[  197.936187][ T2198] usb 3-1: config 0 descriptor??
[  197.940289][  T445] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  197.979264][ T3207] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  197.986105][ T3207] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  198.196275][   T39] usb 3-1: USB disconnect, device number 10
[  198.199212][  T445] usb 2-1: Using ep0 maxpacket: 8
[  198.289244][  T319] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  198.299277][    T6] cdc_ether: probe of 1-1:1.0 failed with error -71
[  198.788719][ T3256] netlink: 4 bytes leftover after parsing attributes in process `syz.0.877'.
[  198.948427][ T3258] overlayfs: failed to resolve './file0': -2
[  199.129245][   T39] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  199.217256][    T6] usb 1-1: USB disconnect, device number 9
[  199.223488][  T319] asix 6-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  199.234400][  T319] asix: probe of 6-1:0.0 failed with error -71
[  199.241316][  T319] usb 6-1: USB disconnect, device number 11
[  199.389236][  T445] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  199.401279][  T445] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.409232][  T445] usb 2-1: Product: syz
[  199.413243][  T445] usb 2-1: Manufacturer: syz
[  199.417648][  T445] usb 2-1: SerialNumber: syz
[  199.422708][  T445] usb 2-1: config 0 descriptor??
[  199.549421][   T39] usb 3-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  199.558408][   T39] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.569352][   T39] usb 3-1: config 0 descriptor??
[  199.590648][ T3276] netlink: 48 bytes leftover after parsing attributes in process `syz.3.885'.
[  199.799228][  T319] usb 6-1: new full-speed USB device number 12 using dummy_hcd
[  200.099190][   T39] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  200.171291][ T3290] tmpfs: Unknown parameter 'quota'
[  200.199226][  T319] usb 6-1: unable to get BOS descriptor or descriptor too short
[  200.239270][  T319] usb 6-1: not running at top speed; connect to a high speed hub
[  200.319386][  T319] usb 6-1: config 8 has an invalid interface number: 24 but max is 0
[  200.327288][  T319] usb 6-1: config 8 has no interface number 0
[  200.333770][  T319] usb 6-1: config 8 interface 24 altsetting 2 endpoint 0xE has invalid maxpacket 1535, setting to 64
[  200.344435][  T319] usb 6-1: config 8 interface 24 has no altsetting 0
[  200.349159][   T39] usb 4-1: Using ep0 maxpacket: 16
[  200.459245][   T60] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  200.479352][   T39] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  200.490322][   T39] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  200.500020][   T39] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  200.508862][   T39] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.509299][  T319] usb 6-1: New USB device found, idVendor=10cf, idProduct=5503, bcdDevice=75.af
[  200.521646][   T39] usb 4-1: config 0 descriptor??
[  200.525652][  T319] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.538350][  T319] usb 6-1: Product: syz
[  200.542345][  T319] usb 6-1: Manufacturer: syz
[  200.546736][  T319] usb 6-1: SerialNumber: syz
[  200.569266][ T3273] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  200.676723][   T26] usb 2-1: USB disconnect, device number 8
[  200.699178][   T60] usb 1-1: Using ep0 maxpacket: 32
[  200.819315][   T60] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  200.829536][   T60] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  200.842584][   T60] usb 1-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1
[  200.851506][   T60] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.861801][   T60] usb 1-1: config 0 descriptor??
[  200.897546][  T319] usb 6-1: USB disconnect, device number 12
[  200.900697][   T60] usb 1-1: bad CDC descriptors
[  201.159056][   T26] usb 1-1: USB disconnect, device number 10
[  201.177233][   T39] hid-generic 0003:04F3:0755.0003: failed to start in urb: -90
[  201.227770][   T39] hid-generic 0003:04F3:0755.0003: hidraw0: USB HID v0.00 Device [HID 04f3:0755] on usb-dummy_hcd.3-1/input0
[  201.470833][   T26] usb 4-1: USB disconnect, device number 14
[  201.848555][  T445] usb 3-1: USB disconnect, device number 11
[  202.131159][   T30] kauditd_printk_skb: 97 callbacks suppressed
[  202.131194][   T30] audit: type=1400 audit(1737463693.774:1663): avc:  denied  { getopt } for  pid=3340 comm="syz.5.909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  202.164767][   T30] audit: type=1400 audit(1737463693.804:1664): avc:  denied  { bind } for  pid=3343 comm="syz.2.910" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  202.315121][   T30] audit: type=1400 audit(1737463693.954:1665): avc:  denied  { write } for  pid=3351 comm="syz.5.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  202.510865][   T30] audit: type=1400 audit(1737463694.154:1666): avc:  denied  { mount } for  pid=3371 comm="syz.5.923" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  202.533358][   T30] audit: type=1400 audit(1737463694.164:1667): avc:  denied  { watch } for  pid=3371 comm="syz.5.923" path="/177/file0" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  202.570832][   T30] audit: type=1400 audit(1737463694.214:1668): avc:  denied  { unmount } for  pid=749 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  202.599659][ T3378] netlink: 16 bytes leftover after parsing attributes in process `syz.5.925'.
[  202.693736][ T3387] 9pnet: Insufficient options for proto=fd
[  202.709420][   T26] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  202.739163][   T39] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  202.951097][   T30] audit: type=1400 audit(1737463694.594:1669): avc:  denied  { map } for  pid=3395 comm="syz.0.933" path="socket:[26588]" dev="sockfs" ino=26588 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  202.979216][   T39] usb 2-1: Using ep0 maxpacket: 32
[  202.990070][ T3344] syz.3.911 (3344) used greatest stack depth: 18816 bytes left
[  203.069251][   T26] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  203.080250][   T26] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  203.091059][   T26] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  203.100842][   T39] usb 2-1: config 0 has an invalid interface number: 16 but max is 0
[  203.109082][   T26] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  203.122646][   T39] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  203.133097][   T39] usb 2-1: config 0 has no interface number 0
[  203.139618][   T39] usb 2-1: config 0 interface 16 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  203.219324][   T26] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  203.243129][   T26] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  203.251543][   T26] usb 3-1: Manufacturer: syz
[  203.258678][   T26] usb 3-1: config 0 descriptor??
[  203.309771][   T39] usb 2-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d
[  203.319074][   T39] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.327082][   T39] usb 2-1: Product: syz
[  203.331517][   T39] usb 2-1: Manufacturer: syz
[  203.336025][   T39] usb 2-1: SerialNumber: syz
[  203.349162][   T39] usb 2-1: config 0 descriptor??
[  203.402400][   T39] snd-usb-audio: probe of 2-1:0.16 failed with error -2
[  203.605222][   T39] usb 2-1: USB disconnect, device number 9
[  203.651050][ T3425] x_tables: ip6_tables: rpfilter match: used from hooks POSTROUTING, but only valid from PREROUTING
[  203.722057][ T3428] tipc: Failed to remove unknown binding: 66,1,1/1:1075450745/1075450747
[  203.743912][   T26] appleir 0003:05AC:8243.0004: unknown main item tag 0x0
[  203.767337][   T26] appleir 0003:05AC:8243.0004: No inputs registered, leaving
[  203.800660][   T26] appleir 0003:05AC:8243.0004: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  204.135102][   T30] audit: type=1400 audit(1737463695.774:1670): avc:  denied  { mounton } for  pid=3432 comm="syz.5.948" path="/190/file0" dev="tmpfs" ino=1052 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  204.600869][ T3448] kvm [3447]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x4000
[  204.624665][ T3448] kvm [3447]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x4000
[  204.638559][ T3448] kvm [3447]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0x186 data 0x4000
[  204.648317][ T3448] kvm [3447]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe706111
[  204.681313][ T3448] kvm [3447]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0x186 data 0x4000
[  204.863406][   T30] audit: type=1400 audit(1737463696.504:1671): avc:  denied  { bind } for  pid=3471 comm="syz.1.963" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  205.849244][ T2198] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  206.073289][   T30] audit: type=1400 audit(1737463697.714:1672): avc:  denied  { create } for  pid=3503 comm="syz.5.976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  206.092704][ T2198] usb 1-1: Using ep0 maxpacket: 16
[  206.100023][ T3504] netlink: 4 bytes leftover after parsing attributes in process `syz.5.976'.
[  206.174348][   T26] usb 3-1: reset high-speed USB device number 12 using dummy_hcd
[  206.869198][ T2198] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  206.879687][ T2198] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  206.888767][ T2198] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  207.089362][ T2198] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  207.098465][ T2198] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.106456][   T26] usb 3-1: device firmware changed
[  207.111572][   T39] usb 3-1: USB disconnect, device number 12
[  207.117871][ T2198] usb 1-1: Product: syz
[  207.122007][ T2198] usb 1-1: Manufacturer: syz
[  207.126423][ T2198] usb 1-1: SerialNumber: syz
[  207.189577][ T2198] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  207.196275][ T2198] cdc_ncm 1-1:1.0: bind() failure
[  207.268420][ T3526] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  207.289225][   T39] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  207.447581][  T301] usb 1-1: USB disconnect, device number 11
[  207.899382][   T39] usb 3-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  207.915505][   T39] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.949161][   T39] usb 3-1: Product: syz
[  207.966990][   T39] usb 3-1: Manufacturer: syz
[  207.982997][   T39] usb 3-1: SerialNumber: syz
[  207.993265][   T39] usb 3-1: config 0 descriptor??
[  208.020669][ T3533] ==================================================================
[  208.028568][ T3533] BUG: KASAN: slab-out-of-bounds in tc_setup_flow_action+0xb9d/0x3430
[  208.036554][ T3533] Read of size 8 at addr ffff8881114c76c0 by task syz.0.988/3533
[  208.044102][ T3533] 
[  208.046281][ T3533] CPU: 1 PID: 3533 Comm: syz.0.988 Not tainted 5.15.176-syzkaller-00972-g829d9f138569 #0
[  208.055906][ T3533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  208.065808][ T3533] Call Trace:
[  208.068928][ T3533]  <TASK>
[  208.071708][ T3533]  dump_stack_lvl+0x151/0x1c0
[  208.076309][ T3533]  ? io_uring_drop_tctx_refs+0x190/0x190
[  208.081771][ T3533]  ? panic+0x760/0x760
[  208.085675][ T3533]  print_address_description+0x87/0x3b0
[  208.091079][ T3533]  kasan_report+0x179/0x1c0
[  208.095400][ T3533]  ? tc_setup_flow_action+0xb9d/0x3430
[  208.100697][ T3533]  ? tc_setup_flow_action+0xb9d/0x3430
[  208.106074][ T3533]  __asan_report_load8_noabort+0x14/0x20
[  208.111552][ T3533]  tc_setup_flow_action+0xb9d/0x3430
[  208.116664][ T3533]  mall_replace_hw_filter+0x394/0xc20
[  208.121871][ T3533]  ? mall_set_parms+0x4b0/0x4b0
[  208.126559][ T3533]  ? tcf_exts_destroy+0xb0/0xb0
[  208.131241][ T3533]  ? preempt_schedule_irq+0xe7/0x140
[  208.136366][ T3533]  ? irqentry_exit_cond_resched+0x2a/0x30
[  208.141916][ T3533]  ? sysvec_apic_timer_interrupt+0x64/0xc0
[  208.147571][ T3533]  ? mall_set_parms+0x1c3/0x4b0
[  208.152248][ T3533]  mall_change+0x56e/0x780
[  208.156498][ T3533]  ? mall_get+0xb0/0xb0
[  208.160495][ T3533]  ? tcf_chain_tp_insert_unique+0xa90/0xbb0
[  208.166216][ T3533]  ? nla_strcmp+0xed/0x120
[  208.170470][ T3533]  ? mall_get+0xb0/0xb0
[  208.174460][ T3533]  tc_new_tfilter+0x151a/0x1c00
[  208.179151][ T3533]  ? tcf_gate_entry_destructor+0x20/0x20
[  208.184620][ T3533]  ? security_capable+0x87/0xb0
[  208.189420][ T3533]  ? ns_capable+0x89/0xe0
[  208.193588][ T3533]  ? netlink_net_capable+0x125/0x160
[  208.198706][ T3533]  ? tcf_gate_entry_destructor+0x20/0x20
[  208.204262][ T3533]  rtnetlink_rcv_msg+0x776/0xc40
[  208.209037][ T3533]  ? rtnetlink_bind+0x80/0x80
[  208.213550][ T3533]  ? stack_trace_save+0x1c0/0x1c0
[  208.218451][ T3533]  ? __kernel_text_address+0x9b/0x110
[  208.223618][ T3533]  ? unwind_get_return_address+0x4d/0x90
[  208.229087][ T3533]  ? avc_has_perm_noaudit+0x348/0x430
[  208.234293][ T3533]  ? memcpy+0x56/0x70
[  208.238113][ T3533]  ? avc_has_perm_noaudit+0x2dd/0x430
[  208.243322][ T3533]  ? avc_denied+0x1b0/0x1b0
[  208.247663][ T3533]  ? avc_has_perm+0x16f/0x260
[  208.252172][ T3533]  ? ____kasan_kmalloc+0xed/0x110
[  208.257033][ T3533]  ? avc_has_perm_noaudit+0x430/0x430
[  208.262237][ T3533]  ? x64_sys_call+0x16a/0x9a0
[  208.266754][ T3533]  netlink_rcv_skb+0x1cf/0x410
[  208.271351][ T3533]  ? rtnetlink_bind+0x80/0x80
[  208.275868][ T3533]  ? netlink_ack+0xb10/0xb10
[  208.280293][ T3533]  ? __netlink_lookup+0x37b/0x3a0
[  208.285151][ T3533]  rtnetlink_rcv+0x1c/0x20
[  208.289404][ T3533]  netlink_unicast+0x8df/0xac0
[  208.294015][ T3533]  ? netlink_detachskb+0x90/0x90
[  208.298779][ T3533]  ? security_netlink_send+0x7b/0xa0
[  208.303902][ T3533]  netlink_sendmsg+0xa0a/0xd20
[  208.308502][ T3533]  ? netlink_getsockopt+0x560/0x560
[  208.313534][ T3533]  ? security_socket_sendmsg+0x82/0xb0
[  208.318829][ T3533]  ? netlink_getsockopt+0x560/0x560
[  208.323860][ T3533]  ____sys_sendmsg+0x59e/0x8f0
[  208.328462][ T3533]  ? __sys_sendmsg_sock+0x40/0x40
[  208.333321][ T3533]  ? import_iovec+0xe5/0x120
[  208.337747][ T3533]  ___sys_sendmsg+0x252/0x2e0
[  208.342262][ T3533]  ? __sys_sendmsg+0x260/0x260
[  208.346860][ T3533]  ? check_stack_object+0xf4/0x130
[  208.351813][ T3533]  ? __fdget+0x1bc/0x240
[  208.355890][ T3533]  __se_sys_sendmsg+0x19a/0x260
[  208.360575][ T3533]  ? __x64_sys_sendmsg+0x90/0x90
[  208.365349][ T3533]  ? __kasan_check_write+0x14/0x20
[  208.370301][ T3533]  ? switch_fpu_return+0x15f/0x2e0
[  208.375241][ T3533]  __x64_sys_sendmsg+0x7b/0x90
[  208.379845][ T3533]  x64_sys_call+0x16a/0x9a0
[  208.384189][ T3533]  do_syscall_64+0x3b/0xb0
[  208.388438][ T3533]  ? clear_bhb_loop+0x35/0x90
[  208.392949][ T3533]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  208.398681][ T3533] RIP: 0033:0x7f791f93dd29
[  208.402931][ T3533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.422371][ T3533] RSP: 002b:00007f791dfaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.430624][ T3533] RAX: ffffffffffffffda RBX: 00007f791fb2dfa0 RCX: 00007f791f93dd29
[  208.438431][ T3533] RDX: 0000000000000000 RSI: 0000000020000580 RDI: 0000000000000004
[  208.446236][ T3533] RBP: 00007f791f9b9b08 R08: 0000000000000000 R09: 0000000000000000
[  208.454047][ T3533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.461862][ T3533] R13: 0000000000000000 R14: 00007f791fb2dfa0 R15: 00007fff86f29fd8
[  208.469676][ T3533]  </TASK>
[  208.472535][ T3533] 
[  208.474711][ T3533] Allocated by task 3533:
[  208.478871][ T3533]  ____kasan_kmalloc+0xdb/0x110
[  208.483556][ T3533]  __kasan_kmalloc+0x9/0x10
[  208.487896][ T3533]  __kmalloc+0x13f/0x2c0
[  208.491985][ T3533]  tcf_idr_create+0x5f/0x780
[  208.496403][ T3533]  tcf_idr_create_from_flags+0x5f/0x70
[  208.502044][ T3533]  tcf_gact_init+0x3cd/0x6e0
[  208.506566][ T3533]  tcf_action_init_1+0x50f/0x7f0
[  208.511331][ T3533]  tcf_action_init+0x306/0x840
[  208.515929][ T3533]  tcf_exts_validate+0x236/0x520
[  208.520705][ T3533]  mall_set_parms+0x44/0x4b0
[  208.525132][ T3533]  mall_change+0x495/0x780
[  208.529393][ T3533]  tc_new_tfilter+0x151a/0x1c00
[  208.534070][ T3533]  rtnetlink_rcv_msg+0x776/0xc40
[  208.538847][ T3533]  netlink_rcv_skb+0x1cf/0x410
[  208.543443][ T3533]  rtnetlink_rcv+0x1c/0x20
[  208.547730][ T3533]  netlink_unicast+0x8df/0xac0
[  208.552294][ T3533]  netlink_sendmsg+0xa0a/0xd20
[  208.556896][ T3533]  ____sys_sendmsg+0x59e/0x8f0
[  208.561497][ T3533]  ___sys_sendmsg+0x252/0x2e0
[  208.566008][ T3533]  __se_sys_sendmsg+0x19a/0x260
[  208.570700][ T3533]  __x64_sys_sendmsg+0x7b/0x90
[  208.575295][ T3533]  x64_sys_call+0x16a/0x9a0
[  208.579635][ T3533]  do_syscall_64+0x3b/0xb0
[  208.583889][ T3533]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  208.589625][ T3533] 
[  208.591788][ T3533] The buggy address belongs to the object at ffff8881114c7600
[  208.591788][ T3533]  which belongs to the cache kmalloc-192 of size 192
[  208.605932][ T3533] The buggy address is located 0 bytes to the right of
[  208.605932][ T3533]  192-byte region [ffff8881114c7600, ffff8881114c76c0)
[  208.619474][ T3533] The buggy address belongs to the page:
[  208.624943][ T3533] page:ffffea00044531c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1114c7
[  208.635095][ T3533] flags: 0x4000000000000200(slab|zone=1)
[  208.640610][ T3533] raw: 4000000000000200 ffffea00044e1140 0000000900000008 ffff888100042c00
[  208.648993][ T3533] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  208.657409][ T3533] page dumped because: kasan: bad access detected
[  208.663858][ T3533] page_owner tracks the page as allocated
[  208.669416][ T3533] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 113, ts 5269405381, free_ts 0
[  208.684244][ T3533]  post_alloc_hook+0x1a3/0x1b0
[  208.688843][ T3533]  prep_new_page+0x1b/0x110
[  208.693181][ T3533]  get_page_from_freelist+0x3550/0x35d0
[  208.698579][ T3533]  __alloc_pages+0x27e/0x8f0
[  208.702992][ T3533]  new_slab+0x9a/0x4e0
[  208.706898][ T3533]  ___slab_alloc+0x39e/0x830
[  208.711321][ T3533]  __slab_alloc+0x4a/0x90
[  208.715486][ T3533]  kmem_cache_alloc_trace+0x147/0x270
[  208.720695][ T3533]  kernfs_fop_open+0x324/0xab0
[  208.725295][ T3533]  do_dentry_open+0x81c/0xfd0
[  208.729808][ T3533]  vfs_open+0x73/0x80
[  208.733626][ T3533]  path_openat+0x26f0/0x2f40
[  208.738056][ T3533]  do_filp_open+0x21c/0x460
[  208.742398][ T3533]  do_sys_openat2+0x13f/0x820
[  208.746904][ T3533]  __x64_sys_openat+0x243/0x290
[  208.751592][ T3533]  x64_sys_call+0x6bf/0x9a0
[  208.755931][ T3533] page_owner free stack trace missing
[  208.761143][ T3533] 
[  208.763309][ T3533] Memory state around the buggy address:
[  208.768899][ T3533]  ffff8881114c7580: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  208.776797][ T3533]  ffff8881114c7600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  208.784697][ T3533] >ffff8881114c7680: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  208.792594][ T3533]                                            ^
[  208.798584][ T3533]  ffff8881114c7700: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  208.806484][ T3533]  ffff8881114c7780: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  208.814385][ T3533] ==================================================================
[  208.822274][ T3533] Disabling lock debugging due to kernel taint
[  209.035899][  T445] usb 3-1: USB disconnect, device number 13