last executing test programs:

23.680698704s ago: executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x80, 0x0, 0x2, 0x401, 0x0, 0x0, {0x2}, [@CTA_EXPECT_TUPLE={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x24, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASTER={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0xfffffffffffffd89, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x80}}, 0x0)

23.646263779s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000080))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
r3 = userfaultfd(0x1)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa04, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}})

23.568555081s ago: executing program 0:
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
readlinkat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=""/58, 0x3a)

23.559992863s ago: executing program 0:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000d00)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@fscache}]}})
chdir(&(0x7f0000000000)='./file0\x00')
mount$incfs(0x0, &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
unlink(&(0x7f0000000080)='./file0\x00')

23.546503814s ago: executing program 0:
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip_vti0\x00', <r3=>0x0})
r4 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$can_raw(r4, &(0x7f0000000300)={&(0x7f0000000800)={0x1d, r3}, 0x10, &(0x7f0000000880)={&(0x7f0000000840)=@can={{}, 0x0, 0x0, 0x0, 0x0, "ded27feeba7ca62a"}, 0x10}}, 0x0)

23.468031717s ago: executing program 0:
ptrace(0x10, 0x1)
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000380)={0x0, <r1=>0x0})
ptrace$peeksig(0x4209, r1, &(0x7f0000000000)={0x0, 0x1, 0x1}, &(0x7f00000009c0)=[{}])

4.339535214s ago: executing program 2:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe4, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000740)="82", &(0x7f0000000680), 0x5, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_4={0x3, 0x1, 0x0, "f7940ef7"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @global=@item_012={0x2, 0x1, 0x1, "b8ef"}, @local=@item_012={0x2, 0x2, 0x0, "1a70"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000000)='B')

2.002899827s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800040000000000050017"], 0x44}}, 0x0)

1.976870622s ago: executing program 2:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffffed7a000008003950323030302e4c"], 0x15)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r3}, &(0x7f0000000500), &(0x7f0000000540)}, 0x20)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000740)={0x150, 0x0, 0x0, [{{}, {0x0, 0x0, 0xa2, 0x0, '\x00\x00\x00\xda`\xf8<\x87\x18\x8ef\xfeVR\xee\x8f\xb6\x9dx\xf2 `\x8e\xc3\xbf\x9d\xdd\xef\xdc\x82\xaa\x14\x13\xa7\xa2\x94\\\f6I\x81%:(O\x17\xe58\x9a\x17(5\x1d\xe2\xbb\xf8@\x93[\x94\xbb\\\xf6\r#~\x17\b6\xf3\xe4\xa8j\x87\x16_zT\r `\x15\xd2\x9b\xc5\xb6\x93D\xd0(*\x03\xd9\b\x92\x9a\x81\xb7=)Vx\nb\xca\xe0Yt\xed\xef\xe5\x9a\xd0@\x1d\x0eS\x04\r\xbe\xb6\\\x8a\x04kC\xfe\x12=\x92N\xe06\xc0_i\xe0\xc7g\xa1\xc26\x1e\x84Dp\v\xabM\xec.X\xf4\xd1\xd7}4h\xb9\xbeF\x03'}}]}, 0x150)
write$FUSE_OPEN(r2, &(0x7f0000000280)={0x20}, 0x20)
getresuid(&(0x7f00000000c0), &(0x7f00000001c0), &(0x7f0000000180)=<r5=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r5])
chdir(&(0x7f0000000400)='./file0\x00')
mknod(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)

1.884295046s ago: executing program 2:
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x2440}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000001f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a10000000000000000000000000000000000000000000000000000000000000000000000000000000093160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f40000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff0000000000000000000000000000002000", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000006380)="7f76242df47b442450d6f45e92ba5e590ab05624f3421752c64e5a329fe1e8827284d39a406c32f90ff1dbb22d52a49edd934a4ce77a3d1f10a40eaca1ae9ed70a9b4f652aea0374df70a874e7cc6094641ffb0e48b648de54729434402af613f9f4daa8b448dd071b10dce80d359a71774ae99f392fde83b337c3c8485bdcce39749b8e2935025fb8439a1eeb1f8eaf6edeb2d062b7047aa3d762fe1518673271bfd78f627a817e1db95e8670f7f505e080477f3e367b8cecf4f399a9b8f427d1c3f4b719571dc9d603d1730f79f28f7c7babf4cdc433326cc0f1e667cc7c61990c684d94d3a2384c0705745fcad2aecd3597140ef202d0025f4a792d325d0e4a1ad45de1e2d2a4353b8a32dcd003b973c7a02f122a03318182440a8d12b4c1eb6cc4249b90d86e64e106b9711a47a75dcfdd9158945daa848ceea266892fa2a116ce6d3c5dedc4dd0fca6c488692bfc9c3007f235ff9b97dec562999ca3107c28622dbed05c24c5b6a02e31f0e22596f87e4c93b9089ca4df3692926deac89a7f8ce24620ec2869cb41fa5be654ecf244a562e79517bb2ded67c7975196dd5baada554bbfa904656a4140e70f7e09ecad1391ca46e3e1dd9dfa89fe05b5b225df0ff0becf9e06ad1d93728a50fd68301fa372456751a806f21fca63fc657184ec7e54dc7b0fa695170ee6132f1831e88c6fd2a15f54d0032926e46808c77ff1daef2f69ba56830a065d385472ddaf60485f317f9ef7cdda285bbef0f5b9803b6ca23271e8a1a94aa5e71528430d558941e6466ffe76896e3050cee3cb0c0470e7b6be41c0112c9b1caed0f24a877ba2907814935e929d3581c0c14cb9be61235edf0f5fb6784498f714be9e3f7243cb718aa151e0557889ab59ca2c5079195dd422224356e8999bc28a6977bcb7d8a1df245b59fa02dd32bab61c0545d3d586a74af80187cc55a23864b6345d5aed2f4b6bbed0a04d9e4b9ebd95538660ada93a479ed6482755a2eb5c8b6d57acdd26d468f393aca7d94a194a17f8481de0ff79c88605958d4d2c30940e8c6ce75c5f600984805cb2a9d40b46f04799a23f5de5f565fa597746ab99119de3e75925780642d312d1631542494ff7d3d3b55acbaf83c0c6f16b853e074f9cb6902ea157e62bef0eb51bd86559c45d81f00916e64fc6cf93aa220b49de97a6cb80e5f8e7ca68f79d71fd11429fb441b4282b6c2d5fd64632c088e5e0fe34ee8e5cf545ad9d61d021fff9905ccd37cd9fb97b80fa97b3c46a6f674bc69a16e0ebc0caeee64bbd47ab992190e25aacb0c20ab6d1fa1eb6081128d650ae3f618a946e71c071b6af4d2e01135434779afe42e77dc70591792a8f2cc51344ebccef8635bc07a61776db57eee4cc24e97deef95820475cb3b6bf247fd511948c03a60e5d25002594ecb02b2d50ab2a94082b50134a330729b5553429512804155c2dffc5a38eec6177bfacde4b44d4a6231f93a9997ef478070192a0e80032d5bbda48d13bf57a6f11d928289972775dd1b3891c01a38dd63af85a0e5ba0ef644fd78caa21f1a35612781ee88a252470b2ffaf9300e7c3c6f9d2a1e3f4f727afd818b491c78bb47c8155d52a8e630e3cad25e437dd20b24fcfd3b8d399444633e250009d1f04c2d0de23c2e0e8c57c17690abbf7d53bd69d0a0f17bcc5ccbd813baefb5986696262335956b3c60be26ef0ae3442df951f50c5ff03a655bc4b5926293dc52b49488042db0ae4a55ebeaeb5e94fff4f09ebc849ca324088709ebf42e5aba120c216710f10b9274d17cc5a9808fbd222bba7609cee37e772f2e39f4a3c88aaf0798e62d895f581c79cc6b1babfa460734cc924005e07d433ee20213190673076c0436d7b9abe4a7a22198cfda41266b23b7f42e5277eb565c5a31b5c5e1070686113975abb451cb83fbc265487712ed97fe798bc0cc1862f25ce460ea6e708b888fe169a0ca4150947407797abec79ec933b384d584730afbc6a5dc953b602e92506de3ede88d4ac0e9e0a91744019a40544999061dde4ec32a413ce249ba1e0bd063f94977104de085c71d2efd716c5a3b948a86619ef99a70a175d8f0b39988d327120f7fefd46a2798316b5e2b95615d0fc54ad4a72206bf8d59f91aa1aee2555990fe56353e16adb4b6014f062831ae0dc8920398f77fb472de53c777d92947256bdcaff5b4bb77a7e9d9d140671f60b078d67b2ca950c8883a130e550781964400f684cfca068c7ae102ae88787c3840a2ca00a835c1ebe2d330bf14766d7d05bf31044cf609059bb46ac715ab37f8ac8ec9ee4a634cc451844544d24adb5e15f5868eb0cdb03dbe15592407077ad00f5283cbd9c254c2cfc41e07d287f66f24d017570e0a3271a4c01526fb7a676fb41d688ece4858b62dde21e1e720b575b6711bf5a581a10a357137db79c89a4740012468b75fbf5b8248a9771aea27a104a9e8d90a842a7e3a73d31b6d85a4acd0244e9cb98318ce66be3274301be28f6bf20279e2347ac8351d04b897f56c4c25f9817a229109efc06fa6b6e76cbf58d1425dfe3ff9b6a6a47dc297f5702b1e53845b17145079700a0a7cb524f4fba864dd2985c581953bb4e6cf130345a53d1ae0a31a8c56d3f181a93cbcc19599e44931ad5c757ab187956363ede23f31e486d4a3af7b7b2443fa3e7cf5761d431d2636ee210bc42fb8e0fc7e8c4b07176e9f1bd603d1efb0b350d71bcd2c740cb0a7c8fd67737be4ed91aa064473f63eeb9e764702ae6a65632669a11c2d828ca0e560d2ba5a51431b1c755633cf7f1e2e00773d345898dd866a1fdfa76601587cb1e1cb65b94bd3c7d4fd067016e31dda26da2d5be3064bcf5bd0af334a00d61290bd0ddbe7796cf8777d03330f70702b287210e0c8a55ebb041866bed7a3c5cf456e7192c70217d00cee6c172241a853e358a4fcf8da69571c7c6d75317d44523162034aeb7f7811a27569a74a85520b6eafb1d0a7cc412294ae0170c1e69bffce1936d959a20488a882f942e5f343a7acdb354654f52e2365e82adac70c86564f6383986437f3cc2cd310bd5d957df396fdb11aca5c8cb8f2f30bd393cc9d5b6f959fa5ced77c2a945286a445a9ad4c5371c9a69c3567c6c0c26a1abbe07344abcf7b93f9b87000179131b7c7657b382fae4f1c1ea616949f62ba287eabde34248706ee0108d69b9bc444e6afe0d167ce34aca4280d0da38cf305d9f80c5342ab3d313c661577ef8f71f7abaeb1708b30f94cdc23403099d7985eeb54c4e5269c4367b56269b0942c3cf3e08772eb06d069d728f1875d9918b566870249e3acfccb31ae802258a4cbef98dbfad52a147780ffbcce034dded0d4ea99c32c15bdfe7028940521947640996799652d32c0f95093586b6292c4f74f39e0aea44b14ea0ada743f0a9cd3a12780204bf22bd9dbab7a98e8dda7fdd7a88834b1583ee1d1bf82779c5f97419fc2060e19380ab83c13b02bfba1c9fdd4d00f4739df8ef67e00ce3f204ebcfc2923af4d5aedc5fa184e7ff70f1dfb6a3f9487a7d40b82a16e1dcf5be04e5ef6901dee052f951a7d50fa8bd7ddb1bb2673b791705bbc917930cb9b20200cfa9f4e923778cf37f8f1b8f240e0a6cc799d59318d252d3a5255ec02b3a62e675b4d0f2dcc2d6a73f3e69eda77c04e3ff01bb30be45ae2dfee9ce79ccf9073c54e32961f267c6a1f2409862a2614b4cbf2b4747a23e2dcd0e8bad1845ce6363afcc55bd308fa0a33583d300e51f03a64dd998ea7583e3c2bfd772f6ae25a5b82339eb364665c2257f82e6c8e07d24fa862b8500e9cb19d8f445c3cdff6651861ef49734050d3ba0464ac9083902a43dd822cefa032c8f5b438d8d272ec09ce002a7280cd13f43a7c863ad2b34723344f7221e454fe7759e044155d9ce6e32e03ea273d4f51e43d51ff189f203899b76d0651ea9cf181d2cdf08913f0a059af5adc5079f95bd61a0809e4ebf971385587d2bb61b9adf359427ba3c13486399916cd902f8ae9558aa87381043b1fd14c44fcfaafc9554ad849a8186ea4c979c824db8bdff7f2943bb347bdd09441f79e8169da269bf91f89bd61d046b8668d2a2bbb82256c26d2944d5b18b31e617f2766d4d35dbabe5dbfef5af58198c4b35aeaf809d58288dfb02731cee10692d4e2b91b4c5419eb68a60603f5f99e3c87f5a74d2da7e8ea9787c8a3bbdc3b9bc469653fbf1e5dda14ffcfc1621db917954cd754c3c5563a98f62875312865cb586c60c421c1b9aec29885917045ac27862dd02213496574496984ba1fc0d835cfc1d500c1d0c684033d7b33d1d82298d5f94eaea513f0aa0bbadc852c9dc31c9cfb7957b021884195b5a8ff87e5b93992871183fcdf100607e01e3d93f1402b965695810d24b632be610d4ae29fd3960020ab3b8d189dcf85dff2c7f912f97ba62a844b4f4370684e50cc2d77896cb462039820b76d5e13c95681af1ac286990d5aa3c914b4b392530ce6a3481b67c48fe782b3e30129e729d1b3d6f8cff95812f24a06ab15b9dc6abf9fc4196bb096069930ecb16c7a965588ca0f891f20b2f153e75cc1a8cbcbc6676f8275403922d2fe652b9b932758e447580df1706ea951f92970e36b1d9577c3f4a0a49b0bc027da9fff78852815d01991b4feff4c7e772f8f887222e61612d8aee1f7feb63e4d30b01f730221993e07a128c354684ddbb37c7b9e4646b9a0c0f2b5589f8acdea9c25ebd87d347c7b123ce3d13a2ddd6de1f9336850dd885fe824349a30d724599941bdbf5d769b6f106026ea03d86d4e6e26fd25290a1fa152d07cdae9b3532b0006d4c4489f47825659b11871fba50ae9d65481701a516c0cd125704e49c032242834f99e9d081dfb8068a7833a3911d4e37d62ac5774c07279cb449c98722037ced6e5a3074e171e065c95aeaca73487030b124d65991f13ea9a564286aedd1c0e6a812ece9d5f13c3873693a1b84a38d2398955528417d4a24d8f893422043cf1334665f3fd469ff5c281ab2edfa2e1f5eb53927091bcd71c86ad9d3cd4731f7cbd305a0c7d9eda7c6abe339a7aa7b370703ed1dc35990ec903457c6bfd99b3073f40f481deafc83623debd6be2394b6047ad912bf61501a4ad287e62b30a3e030c7dcec526f1e4a244f57365a6e52f99028d85e179d9eb4331ff0c9bad679d1ccc1016d416d97ed8fd199e054f4ea458b7f54c8a34fc2b55e197d2aa8d2c1b6dd233927721328b496516b17adf17c7a53558afd05b692b4663087a1a3b59bc0f7196007cdc53b33972de3e183f9da5821d1a560c559ee44b7de501620faacda7bb7870612fefa1c2045ddddb930880e6231e34c122aa46b60ba29d5731a0ccebb63bb33d7b56caab9a1d88e246154f429d4800415dbce5630f2e31413579d3cea758ce28c61986e6a6a5ce4f2d285b7b3e66fb26d2e50d5df1abf7566c790dde0c046529c17df21bbb73b426bdf7c324eaaa5e8af8a1a368dabfe97e93bcd84bd8ccd5a7fc0fa7b5a3ac75fcd9e39ac7762e63e5d8ffa0c59a42acb1b2d7964f0d04af1f20817a14078667597761e318ba1357cf74d7cc34309ca46bf0eb7490303529c90546390e271cc4af186e254fd623101ad70957c0e395eed5d47858856492cf4b406cca523066e1e869a980ba359aa01f1e2e2430145c91914440a4794666b99d8facf89664efe0a76cf88121292c93c2cd3bc1c73353a79d0eb831b5dfc1bc3dde1e2aaf5e8fddd66905844a4e639227feeecf95f037b6fb027ee32628404f4e597bc242f9bddbd876bc7cdfe0f5bd6748d904213de82c7c2d4a37c5fd6d349885e6a99494844cb0a0a54c47676157ea41961f3faa45a8d62bfae9f66b509e5bd0989766ea85eec82174b2c49e6a3d6763d32c2d6340e84a70f85f58f7d13ae083b27b0a83cddd27596647078ddfe1e4b82e4a7e5984f165f32b682358af94357f3d0df012ee0886a43c4cbb3ec26020df07eae637a57e78ba567232cca4e8370cbbac9bb557fb95bb03125a12ea7349242caffc513d028f4f06c64ccb4c6eb7f99d07214ab261e0e0e9995b6f93f0ed9aba02d92d37996ed488665455bca3b4f5598427dde4cd86b4d65d660d8f9218a709648db8d9aa182f2615f5e04edf6f7bb22842742e50f699a70000407e4da5ed3dc74027fb1fea83446437585156ec57ea9c097f1bc4c085ae305ae4312e5742cc9db43731dc7e506d9002821a9fd3400c42ba5d3327efec7b3c863e6b91fb17b5fca6941bc72341f542591c6d930381eabad3d2318f1672cc749ebef3f70dc590106cb57b234aa06744530cf208a362ab4a05f10eaaaf5db64f53ceb73a8dd723a6e7affb6c9b427d872588136a5d3086bc8d93aca2585b541ee8612f89c036ac8146de6109ae6d5252205fc20993ca9f40b682b89779f0331e815f221ce38ec5d137bdee1e51cb5479ca90985cf634d3c829f5f2e7b2dcf9d83c7766d67abe4c1968bdccb9a1ff0c5bc2f9dddbd284715c94f499c113c2afe04a8f816efd9d9fe23c9e05bf95363d214666f91bdc52e5d32c2f08a28ce205668e64eb14242819b1cf5c26b8d278b663101ca06f0d756d7cfb4414084683d4b7df6515419ec110a232f1132e296dcfa165c78ebaeb77daf7f56370f43edfbed4234fdad5dbdd850cf8bcffadbd60aa91710bf28b7df46e25a4f1022bc4efecaeabb563dd4a3981eaf44a9ae5d6a946acbba36c120a266f8a906d9dc48d10f4412690c57bce315cb320cd7cf71251bbac15b99c100c73b2b60414bc886214b459dfff40a6c2c2151d9a3a731e8aa459567730f4579b219bb5e325c574c28d170fb78cf1b93cfd1fbaffcf746ba1084e2ca4e0609de3366ae8cfbfb86275a512676eac6c26ffff336dadd2f628111988fcab96fe38679aa5c02def00e69f7ed09990d957e7b69654bf0163c97676154859bb4a07a0097dac408fb42aad6da9d51c719faeb81617d9fb34d4ef2d386c98ca972d4484bc50ea5216614209c8d16dd0e1e31433a7283e1a1ff0835a788244f62d75a5c72cc57a8e8b1380bf336b910476a33a4ace4991235cd6ce807b3180ef31c655361d567c3b48287189d151e6cdeb26356729c022151fac35c00682534e5d9323c8fcb9ec2f86515d936adfc55a6b08b1aad59c841e6c7f380629c9590866d207e3096d0c1a0fa8e5237b40f4ac242e6b812fbfc78265df9261b73f153c98cbf74fe9c3baad4eac71cdc7f627378ed46921d38fb7b1c630c867cfc7f732c630b500f19f3feaef666970184438095ccdb2e2c62c6bdc7e1c0d52b1f4f89a2a29364d1b8a5e7eb4f44b7b5370ed85d02121825e559714fd5b6eccad7a0497154e7b813c87736eefcd9603efe84ce35a189c42225c3327f11b20d74006f3b336dbfff0858cfc6b492893103d7de9d25a1889c9ef467649ebb1cb5337e9cfa220161247bf3cc58d6871df150350e85f544708f3f82ef8ae2d5b579bf6a0f24c9479e120df04b818798fa074a0c557769d3768ffa681c5e4eb85ff1bf3147037655e942e9e44c129106eabfcf5157805bdc9b0521d8a580165a98dbccdc1edaf50904075a79e4958f002a42071ac803bcd5d46c5814676db7bcba3841f83a33cf12ae476948546bcc683b92b7b8420d73106d777c306bcd9256384f314719baf3a50254e0361e24f024490d0dfc904b0261ce3724b3b455e4d295fec84a29d926531be04b8c83d67d4b6bee371bfe1734482757b8070f52040e6f6a71d77e4f879595003dcc71c6116f201c056109f848d8dc2b687da4cfece139f092686d6a41c62b893479b8606fe155f39fc0d064042cfcf285e9837fa61589f17819c1b808d99ccc444e2800e1070651f6d6370d42fa9ad88491e1ed708fde918f6e4bb84ec43fe95c5201050f76c4532878519e7da9fa863782f681e00dfee262e7605aacb1300cda899c6a029d7325e0db48fd9d686f86a35cab4680426c3aaa3c4fbdecff026437e6d75fd2cd95e0e63e5dd0e45a2d4ba1319a4b23cfe89e2f4d58c86aa39eae0e5cf21cb820b870034091ebfdda5d2550dcbe4472f94a5480ff5069c7b1e6ccc3505e8930bbef727e3abd92b66cf529293707a04979c1d8daa69f1a8a3f983661ac05ae486a9560fec558140c52c3b163048a49a7d2444b3b54eaacaadc3dbde40e65801f2198ef27a130ba7c63de416e8dfb084616ce10cb301a51c8fbd510cb0d10727c8f85b8effce7f759829dbee20780a722a3048a5256017a7af2f9a3315458968009c0e2695e0b7169d760ceedb3b6afb02c2bf7c1c56283afdece6679f3ebcd08fdff5f27716d559f1d307f8fba048f4fc807228ff00002452b8a6d76eede22ef8a49a636ffa3b981637efccc5435161832cf45222d41c436cdad072fed542b521e7fb7ff86dda4a505a8b076b3dd186740fc754c222b96f501d1a7af45723d54ad3b417f49030d3f9c2e3ed12ace0635eae4316aa87e7ca554b45e718da2c408850c79911cb4123ae7a71466dd69980480b9d6b808704bb91eb7a3f781298a6df0ef4247db9fed1e6903626198544a62a5206129417a670d885429ddf2646843b1f4f53cb9574e99e0538d27ca5f2480dbe9f7806e3c6f9cee92db8b63dd921642bf19eb6c5e4a53571e5220e6243577b9fa534ac6c84d478550953896242681161fcbc8a22976a09cd154500d7381e282ef6768f929763f3bd984bdb7caf586561a0e08c70d430cd0041f0f58dc5eb2ce1bd91482b7f28db15cdb4edd59448cdc85f7bd73bbbf6e3153d49a266f343950f0e29f5fd17a55d502834a132ddfa5ea76ed50951fb8ff548885044a8c027fb0d7e57dcef6fffc41f06625a88a90d3dbcbca6fb87962d6d2a055900bd8c683f1133bc6e9e52ec5c995b56168ea21b8bcf0bd2749f47e1606440880a5c5ac83b8456041984557aef535d6b2b02194f642179eabd6e420d402a18d50d592bdd2058adfabdbd3d18e2226c5292d78a78f264cd8ccd87248c250a005d015ad85645a9dfa6ec618f9269105025086663367109921f48b7134b115d6cf23239e7a3d5f26db0be2f3e26285bd9c51607fe001684bdf5450f072f8cceacb9c3e6efd989ad07c540a418835f683456357ef6c6873a085271ff421c9ee803a8f057d1970b8d457bd20075b9e3ca7cdd875e3783228a028540cb560979654924d5ea26d97bd0d06ed509754e479c20f63d27d7b8cc9571ee5217888537b3eccba6abea2d3a310edf7a17cb03073d9d032e4373ad503a912b2948e8a247e8a1c693e715172b5324cdf42d0e98ff7bde34e02e31a49cef9c4b9549584e3cd34070180c6578fea8372471a5399858861230b0399ab32ee8f2bfc5fee0ec935469d9292c58d2848fcf4e13d143b677a04978709a01b7643acd5d60ea3376239f3669ab4d0c8d88781c2737ef28ecd053fb4c1878be22c3244639453318dd2b602d556a08500cbfb6fcc4d90c08d619ba8763f79d0754057b4bbe8b254a4df5458a42b979d672662d6fb4bff6d3bb72a73c8d0b32c0e2f8074acf9e696a7f86f80f7cb4c07d5fb218019218d72e49c712b024a184438b3a1bb15ddfa939434e888c16840312039a8926b91ad140649a0468d9a13bf3b7f599ade61b360eae1845873f6a218608bd5e64872841ee46f36f1c43f870e273be9a282d1fefbd04e187cb23dda0552db11a47783a04491c6e42369af8c21aa334bb4e32ac08d2a6c35ddf13ee3da2d9c561a4605d17eb3d85eeaa7f68cb47e3a1906143ee5bb3a41ab82954d5cb623c3cbb3ee6e1b56423c9800b626cc59c71af0262d99679fc6817e82908a54456de7b711f03f6834bfbff97b3bf2df48142718d42ca4cfe982ee0191889becff34dfde522371f1bb8b35e466b92a91caf487cf84cb86cd341e519df9a6ec7f2d695d566b709fedd8f92da5fbd2584b3c193e36f0e46a12007ba1873cb740b915ecc3942e1f202f72d99ab83dfc2947ac9993ea2dc97b95ceede4c9dad593172d2fe453b157fe690eff17894220e9da1a4a993c0e4a5527f4a68ab3c94f12d1f4a5d448f09fd36943d05a0017e094ab45922c222099990c38980d05b0edc45e2ef54d4439ac94a770bdae460610d5661ebf213568dcea946ba322526b43d677ee37337c55d5671fcf3b21ff9ec0982076ffe2cd806d42f3904a1f70af0236fd23d9b19e627d47ecf1254ee2919d94240f885c76d30e402d76fde4f6971dceb85c606d240db569c8fb510cf2a918823bf875887ca4282225391db5395b016e0b6a938c0982083a794bf1239142bb3e785159aba1ba0fd3c17babbf307b4282ed4c0804ae034e853aaf62075a0d6c31112e5644884006c174c4523de36c5983b6bec2fc6ae579b8e8d176186882bb88bf254cb06900ab4e8511075e98711d6cf1b0057c29553fc7d80c9127b5c61357670ab8579f5ece8a770d78c8e2c17020d5cb8f4abe8dc236bd02724843834af17399ae5ee812ab5ff5825241f6b9fcb2fdd6aa85078deb50f988dada2426aadae49f2a20e5ff27d452e00d43aeb1ccaaad8342119745140d8795572e42da4e9e6897572566819d3dd5075d5b1ce3c0716e519bde76bcd8efcee14f5ccf9e8d9a8336968963484c9b14f33cfc8f97e675486fcc313c6b1233787765b5c5ef81cdb7c27583b2371b6fda3fdd6fb631dd1f73e64900bd91f97808712ba52a6c6e21daf17310e8caa80e7ebd8d7398d299592055fe3496abc2087d000a46a49c96eb4ebb468281366c46ecf72304021f7f2ab62872931be99089177e4ead4a7ad968990aee4c6d1dcf41c843be28547d16cc7d53de4c75ae7eedfd509830f6deeac7dd6f6f796878095805aaf74c231926621e938e02003001146ee499eb9417a3d6cd387fe69351d30355a0138e9363497ccf9a73631175d29118333a0d5b9f5667e04fbf644230ee10461f926cef209eacbd5dd49b6f132634be82a593512db936901d72d14743977d4b6203a1c813750588ca7a02ef48af5c6a40253c9b502016ec385299c1a9ae05d3b286d654d8267ee1918413f62f8ef860ff7ec00143d5f11efc42bfd3cbe226ef0666123c482b267e4b5ea71e9e346109cfca801cb164d54195ee7ae8beddf7319ab53391a60a9245e23750149970d592ee1ac456bd4df77c0fc4245d2bbd51f4c33d7f289d0db6b4a11f8c4fab92f9e13a5b0825c0ae27eac398669c8c7ff3b25f9e7bad4062a186a06bda5ee220e2298bb36fcedea1d5875b53f702ab8e96357643325ca1749586d2a4993bc319ab0fe6c7c954a6caa08777e202c1eff0599e90fc1cdedbb02c337f8a6df20467ab22b867e5f02a2212466bacbcbe0a731bc710d49c5d4dd0a70d4aa28a5f22a49106263c27c862fe6994a2eb5ff2071d024c7793d3ee57faddaa3e59e9dee5b725ab3ae0d9a0a3668f0638b6faa5936d540fce5a9bb3c1c54452aadab96cbcaba1083e5335b0c9e2be5d04c4c1ef6b39495436cc4a180336ad451dd72ad5faf2466e97508b231363b264cb75f9872ff95b15605dc10623dcb1ddb50071c65693c5d3207857db96bed8b827b1f856e7b", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="0010"], 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r2, 0x0, 0x18)

1.878278077s ago: executing program 3:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$incfs(&(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)='./file0\x00', 0x0, 0x2000, 0x0)

1.836562374s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000e27b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000002000000008000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001480)={&(0x7f0000000040)='ext4_da_release_space\x00', r2}, 0x10)
write$cgroup_int(r1, &(0x7f0000000240), 0x12)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001480)={&(0x7f0000000040)='ext4_da_release_space\x00', r3}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)

1.812519217s ago: executing program 3:
r0 = socket$inet(0x2, 0x3, 0x5)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00'}, 0x80)
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r1, r3, 0x1, 0x0, @void}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000020000407b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x0, @multicast1}, 0x10)
write$binfmt_elf64(r0, &(0x7f0000000640)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x1f4, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

1.783037122s ago: executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newnexthop={0x24, 0x68, 0xa898cf170ab9f9b9, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x4}, [@NHA_ID={0x8}, @NHA_FDB={0x4}]}, 0x24}}, 0x0)

1.772447784s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000800000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000280)='jbd2_update_log_tail\x00', r2}, 0x10)
ioctl$TUNSETOFFLOAD(r0, 0x40086607, 0x20001419)

1.677008869s ago: executing program 2:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1b, 0xfffff39e, 0x0, 0x8000, 0x2440, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x0, 0x4}, 0xa8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000001800)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000005b195a22ee8636b58c3e4f524ba60ebe0c0495170c30441952f54ed0a49c14e17aaf4c9eb0f34cb4e6a6dc92c161f1e0d1a82b045faade24ccb791afaaff0a770ca28958fae29220eb68939ad0536b90a6ac2587489039cb5d70add3e88112a7161bd722ade24e1ebc4a5e4743e20b5c53ba72eef9e4b88ab21dd4"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xb, 0xc, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x200000000000000)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000040000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='block_plug\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x100002, 0x0)
timer_create(0x0, 0x0, 0x0)
write$cgroup_int(r2, &(0x7f0000000200), 0x43451)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=@newsa={0x154, 0x10, 0x633, 0x0, 0x0, {{@in=@broadcast, @in=@multicast2}, {@in6=@remote, 0x0, 0x32}, @in6=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @extra_flags={0x8, 0x18, 0x80000001}, @coaddr={0x14, 0xe, @in6=@local}]}, 0x154}}, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001ae3000000008000000000000a0000000000010000000000"], 0x1c}}, 0x0)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r9 = syz_open_procfs(0x0, &(0x7f0000000440)='net/ip6_tables_targets\x00')
sendfile(r8, r9, 0x0, 0x3)

1.661411601s ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xffffffff}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
gettid()
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0xde02})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.events\x00', 0x26e1, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, &(0x7f0000000240)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x0, "2313"}, @global=@item_4={0x3, 0x1, 0x0, "f7940ef7"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @global=@item_012={0x2, 0x1, 0x5, 'K<'}, @local=@item_012={0x2, 0x2, 0x0, "1a70"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4={0x3, 0x2, 0x0, "7441d607"}, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)

1.467221341s ago: executing program 4:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
io_submit(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r2}, 0x10)
write$cgroup_pid(r3, &(0x7f0000000980), 0x12)

1.036889728s ago: executing program 4:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x8}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r4, 0x0)
fallocate(r4, 0x0, 0x0, 0x8006)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)

941.840533ms ago: executing program 4:
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000480)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

759.419651ms ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./bus\x00', 0x5e, &(0x7f00000000c0), 0xfe, 0x440, &(0x7f00000004c0)="$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")
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000580)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x17}]}, &(0x7f00000005c0)='GPL\x00'}, 0x80)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r2, r1, 0x25, 0x0, @val=@netkit={@link_id}}, 0x40)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$packet(0x11, 0x3, 0x300)
write(r4, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x11}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x17, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
r7 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000000c0)={@cgroup=r8, r6, 0x12, 0x6}, 0x10)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
flock(r9, 0x5)
r10 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r10, 0x2)
dup3(r10, r9, 0x0)
ioctl$ASHMEM_SET_NAME(r10, 0x41007701, &(0x7f0000000240)='\x00')
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r11}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000000e40)=ANY=[], 0x0)
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)

696.443861ms ago: executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000080), 0xfd32)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r2, 0x400455c8, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

501.915331ms ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_allocate_blocks\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='ext4_allocate_blocks\x00', r2}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)

487.148804ms ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

464.139997ms ago: executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCSIFBR(r0, 0x5452, &(0x7f0000000040)=@add_del={0x2, 0x0})
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000001c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@mcast2, 0x0, 0x2}, 0x20)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, 0x7, 0x1, 0x201}, 0x14}}, 0x0)
r2 = socket(0x11, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r4=>0x0})
bind$packet(r2, &(0x7f0000000180)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="03011400012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e410820c520f061fecfdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c06304000000ffffca88facaffffff"], 0xdd12}], 0x1}, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x800, @private1={0xfc, 0x1, '\x00', 0x1}, 0x4}, 0x1c)

451.436379ms ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0xc}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000c500000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
signalfd4(r0, &(0x7f00000000c0)={[0x8000000000000001]}, 0x8, 0x800)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
chroot(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
ioprio_set$pid(0x1, 0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='rss_stat\x00', r6}, 0x10)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r7, 0x800448f0, 0x0)

366.308293ms ago: executing program 1:
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r0, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
inotify_init1(0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

323.754849ms ago: executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000500)='hrtimer_start\x00'}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000500)='hrtimer_start\x00', r2}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@local}, {@in=@local, 0x0, 0x32}, @in=@private, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)

29.792335ms ago: executing program 1:
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{}, [@snprintf={{0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc}, {0x3, 0x0}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x72}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000000)='ext4_remove_blocks\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='ext4_remove_blocks\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.stat\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000100), 0x1001)
ioctl$SIOCSIFHWADDR(r4, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}})

0s ago: executing program 4:
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
get_robust_list(r3, 0x0, &(0x7f0000000380))
getpgid(0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000002180)={'batadv_slave_0\x00'})
r4 = getgid()
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
lseek(0xffffffffffffffff, 0xd7, 0x0)
read$FUSE(r5, &(0x7f0000005fc0)={0x2020, 0x0, <r6=>0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x20014080, &(0x7f00000002c0)=ANY=[@ANYRES64=r7, @ANYRES64, @ANYRES32=r8, @ANYRES32=r8, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES8=r5, @ANYRES64=r6], 0x1, 0x14e5, &(0x7f0000002a80)="$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")
getgroups(0x4, &(0x7f0000000040)=[0x0, r4, r8, 0xee01])
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, '.'}}], [], 0x2c})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r9 = socket$inet6(0xa, 0x0, 0x8000000003c)
connect$inet6(r9, &(0x7f0000000140)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)

kernel console output (not intermixed with test programs):

 interface 4 has no altsetting 0
[  302.851159][  T876] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  302.861310][  T649] usb 4-1: New USB device found, idVendor=124a, idProduct=4023, bcdDevice=4b.17
[  302.870535][  T649] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.879728][  T649] usb 4-1: Product: syz
[  302.883790][  T649] usb 4-1: Manufacturer: syz
[  302.888149][  T649] usb 4-1: SerialNumber: syz
[  302.894006][  T649] usb 4-1: config 0 descriptor??
[  303.211018][ T7505] fuse: Unknown parameter ''
[  303.211282][  T876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  303.227025][  T876] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  303.240862][  T876] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  303.240974][   T24] audit: type=1326 audit(1718416265.020:18669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7504 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x0
[  303.250151][  T876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.285972][  T876] usb 3-1: config 0 descriptor??
[  303.351145][  T649] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  303.371419][ T7506] FAT-fs (loop4): Unrecognized mount option "" or missing value
[  303.591111][  T649] usb 2-1: Using ep0 maxpacket: 8
[  303.711175][  T649] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  303.722299][  T649] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  303.732024][  T649] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  303.740937][  T649] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.749827][  T876] plantronics 0003:047F:FFFF.003F: No inputs registered, leaving
[  303.758140][  T649] usb 2-1: config 0 descriptor??
[  303.764007][  T876] plantronics 0003:047F:FFFF.003F: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  303.786029][   T24] audit: type=1326 audit(1718416265.560:18670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7508 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x0
[  303.951621][  T876] usb 3-1: USB disconnect, device number 18
[  304.058274][ T7512] netem: incorrect gi model size
[  304.105547][   T24] audit: type=1400 audit(1718416265.880:18671): avc:  denied  { create } for  pid=7513 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  304.242902][  T649] kone 0003:1E7D:2CED.0040: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.1-1/input0
[  304.699507][  T876] usb 2-1: USB disconnect, device number 23
[  304.852734][ T7538] fuse: Unknown parameter ''
[  304.853132][   T20] usb 4-1: USB disconnect, device number 29
[  304.863749][   T24] audit: type=1326 audit(1718416266.640:18672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7537 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faf4aa53ea9 code=0x0
[  305.421222][   T20] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  305.445122][ T7566] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d)
[  305.676171][ T7569] device pim6reg1 entered promiscuous mode
[  305.928300][ T7575] device syz_tun entered promiscuous mode
[  305.934415][ T7575] device batadv_slave_1 entered promiscuous mode
[  305.941189][   T20] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  305.941247][ T7574] device batadv_slave_1 left promiscuous mode
[  305.952176][   T20] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  305.958230][ T7574] device syz_tun left promiscuous mode
[  305.971347][   T20] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  305.985464][   T20] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.994171][   T20] usb 4-1: config 0 descriptor??
[  306.344957][ T7601] device syz_tun entered promiscuous mode
[  306.351443][ T7601] device batadv_slave_1 entered promiscuous mode
[  306.358248][ T7600] device batadv_slave_1 left promiscuous mode
[  306.365970][ T7600] device syz_tun left promiscuous mode
[  306.462474][   T20] plantronics 0003:047F:FFFF.0041: No inputs registered, leaving
[  306.473830][   T20] plantronics 0003:047F:FFFF.0041: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  306.874800][   T53] usb 4-1: USB disconnect, device number 30
[  306.953166][ T7620] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.960224][ T7620] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.967819][ T7620] device bridge_slave_0 entered promiscuous mode
[  306.979070][ T7620] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.986779][ T7620] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.994657][ T7620] device bridge_slave_1 entered promiscuous mode
[  307.054954][ T7620] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.061857][ T7620] bridge0: port 2(bridge_slave_1) entered forwarding state
[  307.069042][ T7620] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.075803][ T7620] bridge0: port 1(bridge_slave_0) entered forwarding state
[  307.099179][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  307.107524][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.116823][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.132008][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  307.140378][  T876] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.147357][  T876] bridge0: port 1(bridge_slave_0) entered forwarding state
[  307.154770][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  307.163349][  T876] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.170418][  T876] bridge0: port 2(bridge_slave_1) entered forwarding state
[  307.188982][  T649] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  307.197318][  T649] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  307.217867][ T7620] device veth0_vlan entered promiscuous mode
[  307.233682][ T7620] device veth1_macvtap entered promiscuous mode
[  307.267766][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  307.286419][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  307.297130][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  307.306001][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  307.314294][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  307.321982][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  307.329390][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  307.799626][  T965] device bridge_slave_1 left promiscuous mode
[  307.807757][  T965] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.831450][  T965] device bridge_slave_0 left promiscuous mode
[  307.851274][  T965] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.871253][  T965] device veth1_macvtap left promiscuous mode
[  307.877099][  T965] device veth0_vlan left promiscuous mode
[  308.027214][ T7654] F2FS-fs (loop3): Found nat_bits in checkpoint
[  308.098542][ T7654] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  308.128443][   T24] audit: type=1400 audit(1718416269.900:18673): avc:  denied  { execute } for  pid=7652 comm="syz-executor.3" path="/root/syzkaller-testdir3757934680/syzkaller.TSg5sZ/98/file0/cpuacct.usage_sys" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  308.159638][ T7654] attempt to access beyond end of device
[  308.159638][ T7654] loop3: rw=2049, want=53384, limit=40427
[  308.242483][ T6297] attempt to access beyond end of device
[  308.242483][ T6297] loop3: rw=2049, want=45112, limit=40427
[  308.256081][   T24] audit: type=1400 audit(1718416270.030:18674): avc:  denied  { connect } for  pid=7680 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  308.638665][ T7701] input: syz1 as /devices/virtual/input/input34
[  309.035888][   T24] audit: type=1326 audit(1718416270.810:18675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.061408][   T24] audit: type=1326 audit(1718416270.810:18676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.085769][   T24] audit: type=1326 audit(1718416270.810:18677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.112992][   T24] audit: type=1326 audit(1718416270.810:18678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.143699][   T24] audit: type=1326 audit(1718416270.810:18679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.171748][   T24] audit: type=1326 audit(1718416270.810:18680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.196567][   T24] audit: type=1326 audit(1718416270.810:18681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.234682][   T24] audit: type=1326 audit(1718416270.810:18682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.259079][   T24] audit: type=1326 audit(1718416270.810:18683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7705 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  309.293350][ T7715] fuse: Unknown parameter ''
[  309.421775][ T7729] FAT-fs (loop4): Unrecognized mount option "" or missing value
[  309.946189][ T7738] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.2'.
[  310.088918][ T7761] cgroup2: Unknown parameter 'defcontextS'
[  310.133544][ T7763] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  310.151669][ T7763] kvm: pic: level sensitive irq not supported
[  310.151732][ T7763] kvm: pic: non byte read
[  310.162848][ T7763] kvm: pic: level sensitive irq not supported
[  310.163228][ T7763] kvm: pic: non byte read
[  310.173730][ T7763] kvm: pic: level sensitive irq not supported
[  310.173783][ T7763] kvm: pic: non byte read
[  310.191359][ T7763] kvm: pic: level sensitive irq not supported
[  310.191409][ T7763] kvm: pic: non byte read
[  310.511244][  T649] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  310.632367][ T7791] cgroup2: Unknown parameter 'defcontextS'
[  310.761152][  T649] usb 5-1: Using ep0 maxpacket: 16
[  310.881262][  T649] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  310.892229][  T649] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  310.903395][  T649] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  310.916286][  T649] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  310.926028][  T649] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.934384][  T364] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  310.945885][  T649] usb 5-1: config 0 descriptor??
[  311.181234][  T364] usb 4-1: Using ep0 maxpacket: 32
[  311.287657][ T7811] incfs: Can't find or create .index dir in ./file0
[  311.294459][ T7811] incfs: mount failed -14
[  311.381552][  T364] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  311.392944][  T364] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  311.404481][ T1803] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  311.412209][  T364] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  311.421920][  T364] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.430667][  T364] usb 4-1: config 0 descriptor??
[  311.461275][ T7795] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  311.481683][  T364] hub 4-1:0.0: USB hub found
[  311.542072][  T649] microsoft 0003:045E:07DA.0042: unknown main item tag 0x0
[  311.549428][  T649] microsoft 0003:045E:07DA.0042: unbalanced collection at end of report description
[  311.558766][  T649] microsoft 0003:045E:07DA.0042: parse failed
[  311.564754][  T649] microsoft: probe of 0003:045E:07DA.0042 failed with error -22
[  311.661462][ T1803] usb 3-1: Using ep0 maxpacket: 32
[  311.701280][  T364] hub 4-1:0.0: 2 ports detected
[  311.744217][  T649] usb 5-1: USB disconnect, device number 35
[  311.781267][ T1803] usb 3-1: config 0 has an invalid interface number: 49 but max is 0
[  311.789262][ T1803] usb 3-1: config 0 has no interface number 0
[  311.795181][ T1803] usb 3-1: too many endpoints for config 0 interface 49 altsetting 56: 52, using maximum allowed: 30
[  311.806000][ T1803] usb 3-1: config 0 interface 49 altsetting 56 has 0 endpoint descriptors, different from the interface descriptor's value: 52
[  311.818998][ T1803] usb 3-1: config 0 interface 49 has no altsetting 0
[  311.981246][ T1803] usb 3-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  311.990109][ T1803] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  311.998295][ T1803] usb 3-1: Product: syz
[  312.002467][ T1803] usb 3-1: Manufacturer: syz
[  312.006936][ T1803] usb 3-1: SerialNumber: syz
[  312.021369][ T1803] usb 3-1: config 0 descriptor??
[  312.301832][ T1803] hub 3-1:0.49: bad descriptor, ignoring hub
[  312.307683][ T1803] hub: probe of 3-1:0.49 failed with error -5
[  312.341339][ T1803] usb 3-1: USB disconnect, device number 19
[  312.362622][ T7825] erofs: (device loop4): mounted with root inode @ nid 36.
[  313.347983][ T2960] erofs: (device loop4): erofs_fill_dentries: bogus dirent @ nid 46
[  313.358363][ T2960] erofs: (device loop4): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  313.366987][ T2960] erofs: (device loop4): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  313.431596][ T1449] usb 4-1: USB disconnect, device number 31
[  313.502703][    T7] Bluetooth: hci0: Frame reassembly failed (-84)
[  313.691182][  T364] usb 4-1-port2: config error
[  314.411193][  T364] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  314.651318][  T364] usb 4-1: Using ep0 maxpacket: 16
[  314.690346][ T7858] syz-executor.2[7858] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  314.690391][ T7858] syz-executor.2[7858] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  314.771271][  T364] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  314.793535][  T364] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  314.803187][  T364] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  314.816112][  T364] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  314.825094][  T364] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.836009][  T364] usb 4-1: config 0 descriptor??
[  315.391917][  T364] microsoft 0003:045E:07DA.0043: unknown main item tag 0x0
[  315.399115][  T364] microsoft 0003:045E:07DA.0043: unbalanced collection at end of report description
[  315.408364][  T364] microsoft 0003:045E:07DA.0043: parse failed
[  315.414541][  T364] microsoft: probe of 0003:045E:07DA.0043 failed with error -22
[  315.581179][  T364] Bluetooth: hci0: command 0x1003 tx timeout
[  315.587363][ T2723] Bluetooth: hci0: sending frame failed (-49)
[  315.594803][   T53] usb 4-1: USB disconnect, device number 32
[  315.946844][   T24] kauditd_printk_skb: 19 callbacks suppressed
[  315.946860][   T24] audit: type=1326 audit(1718416277.720:18703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  315.977075][   T24] audit: type=1326 audit(1718416277.720:18704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.001501][   T24] audit: type=1326 audit(1718416277.720:18705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.028285][   T24] audit: type=1326 audit(1718416277.800:18706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.054539][   T24] audit: type=1326 audit(1718416277.800:18707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.079712][   T24] audit: type=1326 audit(1718416277.800:18708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.105164][   T24] audit: type=1326 audit(1718416277.800:18709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.131405][   T24] audit: type=1326 audit(1718416277.800:18710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.156508][   T24] audit: type=1326 audit(1718416277.800:18711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  316.180816][   T24] audit: type=1326 audit(1718416277.830:18712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7872 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  317.093546][ T7909] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  317.741855][  T364] Bluetooth: hci0: command 0x1001 tx timeout
[  317.862069][ T2723] Bluetooth: hci0: sending frame failed (-49)
[  317.880013][ T7935] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d)
[  318.117725][ T7952] device pim6reg1 entered promiscuous mode
[  318.415581][ T7960] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  319.901122][  T876] Bluetooth: hci0: command 0x1009 tx timeout
[  320.281242][ T1449] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  320.521192][ T1449] usb 3-1: Using ep0 maxpacket: 16
[  320.641271][ T1449] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  320.652084][ T1449] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  320.662176][ T1449] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  320.674841][ T1449] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  320.684498][ T1449] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.692896][ T1449] usb 3-1: config 0 descriptor??
[  320.973127][   T24] kauditd_printk_skb: 68 callbacks suppressed
[  320.973156][   T24] audit: type=1400 audit(1718416282.750:18781): avc:  denied  { unmount } for  pid=6297 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  321.171961][ T1449] microsoft 0003:045E:07DA.0044: unknown main item tag 0x0
[  321.179029][ T1449] microsoft 0003:045E:07DA.0044: unbalanced collection at end of report description
[  321.188730][ T1449] microsoft 0003:045E:07DA.0044: parse failed
[  321.194708][ T1449] microsoft: probe of 0003:045E:07DA.0044 failed with error -22
[  321.375466][ T1449] usb 3-1: USB disconnect, device number 20
[  322.295326][ T8042] fuse: Unknown parameter ''
[  322.303820][   T24] audit: type=1326 audit(1718416284.080:18782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8041 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x0
[  323.650002][   T24] audit: type=1400 audit(1718416285.420:18783): avc:  denied  { mount } for  pid=8072 comm="syz-executor.0" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  323.702368][ T8079] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  323.719778][ T7620] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  323.730201][ T7620] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  323.742611][ T7620] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  323.777362][ T8087] netlink: 'syz-executor.2': attribute type 27 has an invalid length.
[  323.815308][ T8087] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.822368][ T8087] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.838812][ T8093] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8093 comm=syz-executor.2
[  324.857133][ T8128] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  324.949286][ T8137] netlink: 'syz-executor.4': attribute type 27 has an invalid length.
[  324.983337][ T8137] bridge0: port 2(bridge_slave_1) entered disabled state
[  324.990592][ T8137] bridge0: port 1(bridge_slave_0) entered disabled state
[  325.000983][ T8139] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8139 comm=syz-executor.4
[  325.124962][ T8137] device macsec1 left promiscuous mode
[  325.219613][ T8143] xt_CT: You must specify a L4 protocol and not use inversions on it
[  325.342202][ T8155] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  325.372459][ T6710] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  325.400305][ T6710] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  325.420743][ T6710] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  325.557932][ T8173] syz-executor.3[8173] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  325.558749][ T8173] syz-executor.3[8173] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  325.582704][ T8173] incfs: Options parsing error. -22
[  325.599565][   T24] audit: type=1400 audit(1718416287.355:18784): avc:  denied  { read } for  pid=8175 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  325.620825][ T8173] incfs: mount failed -22
[  326.063848][ T8184] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  326.079307][ T6710] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  326.349999][ T8193] fuse: Bad value for 'fd'
[  326.429180][ T8193] device pim6reg1 entered promiscuous mode
[  326.630683][ T8194] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  327.276037][   T24] audit: type=1400 audit(1718416289.035:18785): avc:  denied  { read } for  pid=8207 comm="syz-executor.0" path="socket:[49484]" dev="sockfs" ino=49484 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  327.367050][ T8212] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  327.900614][ T8226] EXT4-fs warning (device sda1): verify_group_input:147: Cannot add at group 9 (only 8 groups)
[  327.953779][   T24] audit: type=1326 audit(1718416289.725:18786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8225 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x0
[  328.031288][ T8229] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  328.039424][ T8229] netlink: 492 bytes leftover after parsing attributes in process `syz-executor.4'.
[  328.284200][ T8239] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  328.717978][   T24] audit: type=1326 audit(1718416290.485:18787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  328.742890][   T24] audit: type=1326 audit(1718416290.485:18788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  328.767517][   T24] audit: type=1326 audit(1718416290.485:18789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  328.866545][   T24] audit: type=1326 audit(1718416290.485:18790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  328.977099][   T24] audit: type=1326 audit(1718416290.485:18791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  329.005579][   T24] audit: type=1326 audit(1718416290.485:18792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  329.041002][   T24] audit: type=1326 audit(1718416290.485:18793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  329.066467][   T24] audit: type=1326 audit(1718416290.485:18794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  329.531659][   T20] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  329.811232][  T734] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  329.915554][   T20] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  329.926784][   T20] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  329.936668][   T20] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  329.945806][   T20] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.954299][   T20] usb 5-1: config 0 descriptor??
[  330.171285][  T734] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  330.182567][  T734] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  330.193955][  T734] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  330.203404][  T734] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.231218][ T8264] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  330.431483][   T20] hid (null): bogus close delimiter
[  330.651215][   T20] usb 5-1: language id specifier not provided by device, defaulting to English
[  330.891713][ T8264] udc-core: couldn't find an available UDC or it's busy
[  330.898503][ T8264] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  331.110083][   T20] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0045/input/input36
[  331.153988][   T20] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.0045/input/input37
[  331.166596][  T734] aiptek 3-1:17.0: Aiptek using 400 ms programming speed
[  331.181658][   T20] uclogic 0003:256C:006D.0045: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.4-1/input0
[  331.198152][  T734] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input35
[  331.239353][  T734] usb 3-1: USB disconnect, device number 21
[  331.245459][    C1] aiptek 3-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  331.318730][  T876] usb 5-1: USB disconnect, device number 36
[  331.852731][ T8308] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'.
[  331.971185][   T20] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  332.090009][ T8326] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1298427216 (10387417728 ns) > initial count (4311810304 ns). Using initial count to start timer.
[  332.168713][ T8331] FAT-fs (loop4): Directory bread(block 64) failed
[  332.175427][ T8331] FAT-fs (loop4): Directory bread(block 65) failed
[  332.181948][ T8331] FAT-fs (loop4): Directory bread(block 66) failed
[  332.188504][ T8331] FAT-fs (loop4): Directory bread(block 67) failed
[  332.195438][ T8331] FAT-fs (loop4): Directory bread(block 68) failed
[  332.202202][ T8331] FAT-fs (loop4): Directory bread(block 69) failed
[  332.208628][ T8331] FAT-fs (loop4): Directory bread(block 70) failed
[  332.214941][ T8331] FAT-fs (loop4): Directory bread(block 71) failed
[  332.221505][  T876] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  332.225929][ T8331] FAT-fs (loop4): Directory bread(block 72) failed
[  332.236011][ T8331] FAT-fs (loop4): Directory bread(block 73) failed
[  332.316179][ T8336] incfs: Backing dir is not set, filesystem can't be mounted.
[  332.323809][ T8336] incfs: mount failed -2
[  332.351252][   T20] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  332.361395][   T20] usb 3-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x94, skipping
[  332.460696][ T8338] bridge0: port 3(gretap0) entered blocking state
[  332.467296][ T8338] bridge0: port 3(gretap0) entered disabled state
[  332.476769][ T8338] device gretap0 entered promiscuous mode
[  332.512108][ T8338] device gretap0 left promiscuous mode
[  332.518105][ T8338] bridge0: port 3(gretap0) entered disabled state
[  332.711234][   T20] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  332.720397][   T20] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.728419][   T20] usb 3-1: Product: syz
[  332.732371][   T20] usb 3-1: Manufacturer: syz
[  332.736767][   T20] usb 3-1: SerialNumber: syz
[  332.831220][  T876] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  332.842223][  T876] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  332.851789][  T876] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  332.865044][  T876] usb 4-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[  332.873914][  T876] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.882437][  T876] usb 4-1: config 0 descriptor??
[  333.212908][ T8340] EXT4-fs (loop4): mounted filesystem without journal. Opts: commit=0x0000000000000005,,errors=continue
[  333.227547][   T24] kauditd_printk_skb: 15 callbacks suppressed
[  333.227563][   T24] audit: type=1400 audit(1718416295.005:18810): avc:  denied  { write } for  pid=8339 comm="syz-executor.4" name="file2" dev="loop4" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  333.264389][ T8340] EXT4-fs error (device loop4): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  333.372191][  T876] logitech 0003:046D:C293.0046: item fetching failed at offset 5/7
[  333.384001][  T876] logitech 0003:046D:C293.0046: parse failed
[  333.395630][  T876] logitech: probe of 0003:046D:C293.0046 failed with error -22
[  333.574953][  T876] usb 4-1: USB disconnect, device number 33
[  333.864637][ T8361] fuse: Bad value for 'fd'
[  333.920098][ T8361] device pim6reg1 entered promiscuous mode
[  334.081209][   T20] cdc_ncm 3-1:1.0: bind() failure
[  334.087787][   T20] usb 3-1: USB disconnect, device number 22
[  334.312618][ T8369] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  334.596450][ T8368] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.603750][ T8368] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.610915][ T8368] device bridge_slave_0 entered promiscuous mode
[  334.617809][ T8368] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.624858][ T8368] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.632598][ T8368] device bridge_slave_1 entered promiscuous mode
[  334.664588][ T8376] incfs: Backing dir is not set, filesystem can't be mounted.
[  334.672193][ T8376] incfs: mount failed -2
[  334.710984][   T24] audit: type=1326 audit(1718416296.475:18811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  334.775833][   T24] audit: type=1326 audit(1718416296.475:18812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  334.854740][   T24] audit: type=1326 audit(1718416296.475:18813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  334.917789][ T8368] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.924691][ T8368] bridge0: port 2(bridge_slave_1) entered forwarding state
[  334.932077][ T8368] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.939001][ T8368] bridge0: port 1(bridge_slave_0) entered forwarding state
[  335.070722][ T8385] bridge0: port 3(gretap0) entered blocking state
[  335.077292][ T8385] bridge0: port 3(gretap0) entered disabled state
[  335.084150][ T8385] device gretap0 entered promiscuous mode
[  335.090432][ T8388] device gretap0 left promiscuous mode
[  335.096570][ T8388] bridge0: port 3(gretap0) entered disabled state
[  335.123406][   T24] audit: type=1326 audit(1718416296.475:18814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  335.157326][   T24] audit: type=1326 audit(1718416296.475:18815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  335.185210][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  335.188613][   T24] audit: type=1326 audit(1718416296.475:18816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  335.216641][  T364] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.225003][   T24] audit: type=1326 audit(1718416296.475:18817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  335.250688][  T364] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.259950][   T24] audit: type=1326 audit(1718416296.475:18818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  335.285597][   T24] audit: type=1326 audit(1718416296.475:18819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8381 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  335.324393][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  335.334707][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  335.343576][  T364] bridge0: port 1(bridge_slave_0) entered blocking state
[  335.350644][  T364] bridge0: port 1(bridge_slave_0) entered forwarding state
[  335.358101][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  335.367005][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  335.375555][  T364] bridge0: port 2(bridge_slave_1) entered blocking state
[  335.382524][  T364] bridge0: port 2(bridge_slave_1) entered forwarding state
[  335.396553][ T1223] device bridge_slave_1 left promiscuous mode
[  335.409963][ T1223] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.441639][ T1223] device bridge_slave_0 left promiscuous mode
[  335.458135][ T1223] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.472218][ T1223] device veth1_macvtap left promiscuous mode
[  335.483550][ T1223] device veth0_vlan left promiscuous mode
[  335.561137][ T8409] fuse: Bad value for 'fd'
[  335.887040][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  335.896611][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  335.904865][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  335.913555][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  335.968137][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  335.977073][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  335.990556][ T8368] device veth0_vlan entered promiscuous mode
[  336.001406][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  336.010466][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  336.024867][ T8368] device veth1_macvtap entered promiscuous mode
[  336.032867][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  336.040915][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  336.048731][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  336.081558][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  336.090370][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  336.144651][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  336.163778][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  336.182022][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  336.211202][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  336.519946][ T8477] fuse: Unknown parameter 'fd0xffffffffffffffff'
[  338.539306][ T8527] kvm [8526]: vcpu0, guest rIP: 0x20e disabled perfctr wrmsr: 0xc1 data 0x800
[  339.604944][   T24] kauditd_printk_skb: 68 callbacks suppressed
[  339.604958][   T24] audit: type=1400 audit(1718416301.375:18888): avc:  denied  { create } for  pid=8568 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  339.635577][ T8569] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=8569 comm=syz-executor.0
[  339.648992][   T24] audit: type=1400 audit(1718416301.415:18889): avc:  denied  { nlmsg_write } for  pid=8568 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  339.681793][ T8569] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  339.829124][ T8574] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[  339.907764][ T8577] fuse: Bad value for 'fd'
[  339.958847][ T8577] device pim6reg1 entered promiscuous mode
[  340.701456][   T24] audit: type=1400 audit(1718416302.245:18890): avc:  denied  { ioctl } for  pid=8578 comm="syz-executor.1" path="socket:[51403]" dev="sockfs" ino=51403 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  341.660148][ T8617] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.1'.
[  341.967861][ T8643] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=8643 comm=syz-executor.0
[  342.274877][ T8653] rtc_cmos 00:00: Alarms can be up to one day in the future
[  342.325358][ T8655] EXT4-fs (sda1): re-mounted. Opts: (null)
[  342.412802][ T8666] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET)
[  342.424796][ T8666] SELinux:  duplicate or incompatible mount options
[  342.564786][   T24] audit: type=1326 audit(1718416304.335:18891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0ae965ea9 code=0x7ffc0000
[  342.612079][   T24] audit: type=1326 audit(1718416304.365:18892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fb0ae965ea9 code=0x7ffc0000
[  342.663837][   T24] audit: type=1326 audit(1718416304.365:18893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8672 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0ae965ea9 code=0x7ffc0000
[  342.843780][ T8688] EXT4-fs (sda1): re-mounted. Opts: (null)
[  342.889490][   T24] audit: type=1326 audit(1718416304.655:18894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8691 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  342.944198][   T24] audit: type=1326 audit(1718416304.655:18895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8691 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  342.973463][   T24] audit: type=1326 audit(1718416304.675:18896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8691 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  342.977256][ T1804] rtc_cmos 00:00: Alarms can be up to one day in the future
[  343.004454][   T24] audit: type=1326 audit(1718416304.675:18897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8691 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f3f759ea9 code=0x7ffc0000
[  343.085301][ T1804] rtc_cmos 00:00: Alarms can be up to one day in the future
[  343.100352][ T1804] rtc_cmos 00:00: Alarms can be up to one day in the future
[  343.115421][ T1804] rtc_cmos 00:00: Alarms can be up to one day in the future
[  343.136936][ T1804] rtc rtc0: __rtc_set_alarm: err=-22
[  344.143647][ T8736] incfs_lookup_dentry err:-14
[  344.148307][ T8736] incfs: Can't find or create .incomplete dir in ./file0
[  344.155650][ T8736] incfs: mount failed -14
[  344.200349][ T8739] input: syz0 as /devices/virtual/input/input38
[  344.261105][ T1803] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  344.269152][ T8746] incfs: Error accessing: ./file0.
[  344.280671][ T8746] incfs: mount failed -20
[  344.513136][ T8754] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  344.541250][ T1803] usb 2-1: Using ep0 maxpacket: 8
[  344.541557][ T8756] netlink: 57 bytes leftover after parsing attributes in process `syz-executor.3'.
[  344.568887][ T8758] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.4'.
[  344.581382][   T20] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  344.704900][ T8764] xt_CT: You must specify a L4 protocol and not use inversions on it
[  344.802540][ T8766] fscrypt_msg: 2 callbacks suppressed
[  344.802558][ T8766] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  344.820938][ T8766] 9pnet: Insufficient options for proto=fd
[  344.826949][ T1803] usb 2-1: New USB device found, idVendor=04e6, idProduct=0101, bcdDevice= 2.00
[  344.841361][ T1803] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.851130][ T2960] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  344.861216][ T1803] usb 2-1: Product: syz
[  344.865243][ T1803] usb 2-1: Manufacturer: syz
[  344.869759][ T2960] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  344.880118][ T1803] usb 2-1: SerialNumber: syz
[  344.885294][ T2960] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  344.895739][ T1803] usb 2-1: config 0 descriptor??
[  344.944748][ T1803] usb-storage 2-1:0.0: USB Mass Storage device detected
[  345.011441][   T20] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  345.044968][   T20] usb 3-1: config 0 has no interfaces?
[  345.050567][   T20] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  345.059998][   T20] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.079844][   T20] usb 3-1: config 0 descriptor??
[  345.281213][ T1803] usb 2-1: USB disconnect, device number 24
[  345.283910][ T8778] syz-executor.4[8778] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  345.289208][ T8778] syz-executor.4[8778] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  345.328153][  T649] usb 3-1: USB disconnect, device number 23
[  345.498612][ T8782] SELinux:  duplicate or incompatible mount options
[  345.514013][   T24] kauditd_printk_skb: 7 callbacks suppressed
[  345.514029][   T24] audit: type=1326 audit(1718416307.285:18905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.544710][   T24] audit: type=1326 audit(1718416307.285:18906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.568672][   T24] audit: type=1326 audit(1718416307.285:18907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.594676][   T24] audit: type=1326 audit(1718416307.285:18908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.619204][   T24] audit: type=1326 audit(1718416307.285:18909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.643437][   T24] audit: type=1326 audit(1718416307.285:18910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.676534][   T24] audit: type=1326 audit(1718416307.285:18911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.710815][   T24] audit: type=1326 audit(1718416307.285:18912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.736512][   T24] audit: type=1326 audit(1718416307.285:18913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.766267][   T24] audit: type=1326 audit(1718416307.325:18914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8785 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x7ffc0000
[  345.792518][ T8791] device pim6reg1 entered promiscuous mode
[  346.074589][ T8806] fuse: Unknown parameter 'fd0xffffffffffffffff'
[  346.424126][ T8820] netlink: 57 bytes leftover after parsing attributes in process `syz-executor.1'.
[  346.548626][ T8823] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz-executor.4: bad orphan inode 8192
[  346.561410][ T8829] tipc: Failed to remove local publication {66,1,1}/1982273034
[  346.569034][ T8829] tipc: Failed to remove local publication {66,1,1}/1982273034
[  346.576467][ T8823] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  346.602330][ T8831] device pim6reg1 entered promiscuous mode
[  346.901190][ T8844] device pim6reg1 entered promiscuous mode
[  346.913476][ T8847] xt_CT: You must specify a L4 protocol and not use inversions on it
[  347.022297][ T8851] input: syz0 as /devices/virtual/input/input39
[  347.361108][  T649] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  347.478325][ T8871] syz-executor.1[8871] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.478391][ T8871] syz-executor.1[8871] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.515811][ T8871] syz-executor.1[8871] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.540931][ T8871] syz-executor.1[8871] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.771216][  T649] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  348.082007][  T649] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  348.094912][  T649] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  348.103763][  T649] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.113722][  T649] usb 3-1: config 0 descriptor??
[  348.683639][  T649] plantronics 0003:047F:FFFF.0047: No inputs registered, leaving
[  348.698924][  T649] plantronics 0003:047F:FFFF.0047: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  348.716822][ T8886] xt_CT: You must specify a L4 protocol and not use inversions on it
[  348.883355][ T8894] device batadv_slave_1 entered promiscuous mode
[  348.891516][  T734] usb 3-1: USB disconnect, device number 24
[  349.063248][ T8896] syz-executor.3[8896] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  349.063488][ T8896] syz-executor.3[8896] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  349.361105][   T53] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  349.426250][ T8900] tipc: Failed to remove local publication {66,1,1}/590448556
[  349.433950][ T8900] tipc: Failed to remove local publication {66,1,1}/590448556
[  349.470587][ T8902] device syzkaller0 entered promiscuous mode
[  349.593879][ T8910] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  349.627509][ T8891] device batadv_slave_1 left promiscuous mode
[  349.731193][   T53] usb 4-1: config index 0 descriptor too short (expected 45, got 36)
[  349.739547][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  349.750784][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  349.757418][ T8915] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  349.762058][   T53] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  349.762086][   T53] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  349.770439][ T8915] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  349.783227][   T53] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.784114][   T53] usb 4-1: config 0 descriptor??
[  349.831260][ T8896] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  350.301532][   T53] plantronics 0003:047F:FFFF.0048: unknown main item tag 0xd
[  350.310038][   T53] plantronics 0003:047F:FFFF.0048: No inputs registered, leaving
[  350.318754][   T53] plantronics 0003:047F:FFFF.0048: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  350.612105][  T649] usb 4-1: USB disconnect, device number 34
[  350.991157][ T1804] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  351.410110][ T1804] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  351.422398][ T1804] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  351.433619][ T1804] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  351.442586][ T1804] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.481203][ T8926] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  351.644989][   T24] kauditd_printk_skb: 29 callbacks suppressed
[  351.645004][   T24] audit: type=1400 audit(1718416313.415:18944): avc:  denied  { relabelfrom } for  pid=8942 comm="syz-executor.4" name="NETLINK" dev="sockfs" ino=53302 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  351.826116][ T8947] input: syz0 as /devices/virtual/input/input42
[  352.062213][ T8954] fuse: Unknown parameter 'fd0xffffffffffffffff'
[  352.400209][ T8960] syz-executor.4[8960] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  352.400254][ T8960] syz-executor.4[8960] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  352.439982][ T8964] syz-executor.4[8964] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  352.451908][ T8964] syz-executor.4[8964] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  352.531158][   T53] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  352.621246][ T1804] aiptek 3-1:17.0: Aiptek using 400 ms programming speed
[  352.628767][ T1804] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input41
[  352.639386][ T1804] usb 3-1: USB disconnect, device number 25
[  352.741179][  T734] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  352.791068][   T53] usb 4-1: Using ep0 maxpacket: 16
[  352.911156][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  352.922412][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  352.932103][   T53] usb 4-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00
[  352.941304][   T53] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.950130][   T53] usb 4-1: config 0 descriptor??
[  353.101124][  T734] usb 5-1: config index 0 descriptor too short (expected 45, got 36)
[  353.109388][  T734] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  353.129810][  T734] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  353.142372][  T734] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  353.155674][  T734] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  353.164892][  T734] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  353.175024][  T734] usb 5-1: config 0 descriptor??
[  353.201161][ T8964] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  353.433215][   T53] lenovo 0003:17EF:6009.0049: hidraw0: USB HID v0.00 Device [HID 17ef:6009] on usb-dummy_hcd.3-1/input0
[  353.632104][   T24] audit: type=1400 audit(1718416315.405:18945): avc:  denied  { append } for  pid=8957 comm="syz-executor.3" name="hidraw0" dev="devtmpfs" ino=677 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  353.662097][  T734] plantronics 0003:047F:FFFF.004A: unknown main item tag 0xd
[  353.670998][  T734] plantronics 0003:047F:FFFF.004A: No inputs registered, leaving
[  353.701624][  T734] plantronics 0003:047F:FFFF.004A: hiddev96,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  353.709496][ T8958] lenovo 0003:17EF:6009.0049: pid 8958 passed too short report
[  353.722387][  T734] usb 4-1: USB disconnect, device number 35
[  353.811938][ T8993] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  353.951644][  T734] usb 5-1: USB disconnect, device number 37
[  353.981912][   T24] audit: type=1400 audit(1718416315.755:18946): avc:  denied  { execheap } for  pid=9004 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  354.006003][ T9005] syz-executor.0[9005] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.006050][ T9005] syz-executor.0[9005] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.020696][   T24] audit: type=1400 audit(1718416315.795:18947): avc:  denied  { getopt } for  pid=9004 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  354.052332][   T24] audit: type=1326 audit(1718416315.805:18948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9004 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11c8297ea9 code=0x0
[  354.327900][ T9026] netlink: 576 bytes leftover after parsing attributes in process `syz-executor.3'.
[  354.955316][ T9043] ------------[ cut here ]------------
[  354.961682][ T9043] trace type BPF program uses run-time allocation
[  354.969491][ T9043] WARNING: CPU: 0 PID: 9043 at kernel/bpf/verifier.c:10475 check_map_prog_compatibility+0x65b/0x7c0
[  354.980883][ T9043] Modules linked in:
[  354.985415][ T9043] CPU: 1 PID: 9043 Comm: syz-executor.0 Tainted: G        W         5.10.214-syzkaller-00187-ge6f44899ce5d #0
[  354.997197][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  355.007465][ T9043] RIP: 0010:check_map_prog_compatibility+0x65b/0x7c0
[  355.014471][ T9043] Code: c8 e9 84 fe ff ff e8 54 f5 ee ff 31 db e9 85 fe ff ff e8 48 f5 ee ff c6 05 7e e9 64 05 01 48 c7 c7 40 6a 45 85 e8 65 7f c2 ff <0f> 0b e9 42 fc ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 17 fa ff
[  355.034340][ T9043] RSP: 0018:ffffc9000160ef90 EFLAGS: 00010246
[  355.040454][ T9043] RAX: 7a8168432e4afc00 RBX: ffff88811b3b7800 RCX: 0000000000040000
[  355.049167][ T9043] RDX: ffffc90001ffc000 RSI: 0000000000000942 RDI: 0000000000000943
[  355.057338][ T9043] RBP: ffffc9000160efd0 R08: ffffffff81521f08 R09: fffff520002c1d09
[  355.065475][ T9043] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000011
[  355.073723][ T9043] R13: 1ffff9200001d204 R14: ffff88810e840000 R15: ffffc900000e9020
[  355.083130][ T9043] FS:  00007f11c76126c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  355.093155][ T9043] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  355.100062][ T9043] CR2: 0000000000000000 CR3: 000000011ca91000 CR4: 00000000003506b0
[  355.108500][ T9043] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  355.188152][ T9043] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  355.196683][ T9043] Call Trace:
[  355.200064][ T9043]  ? show_regs+0x58/0x60
[  355.204860][ T9043]  ? __warn+0x160/0x2f0
[  355.209123][ T9043]  ? check_map_prog_compatibility+0x65b/0x7c0
[  355.215191][ T9043]  ? report_bug+0x3d9/0x5b0
[  355.219807][ T9043]  ? check_map_prog_compatibility+0x65b/0x7c0
[  355.225937][ T9043]  ? handle_bug+0x41/0x70
[  355.230214][ T9043]  ? exc_invalid_op+0x1b/0x50
[  355.234945][ T9043]  ? asm_exc_invalid_op+0x12/0x20
[  355.239914][ T9043]  ? wake_up_klogd+0xb8/0xf0
[  355.244706][ T9043]  ? check_map_prog_compatibility+0x65b/0x7c0
[  355.250759][ T9043]  ? __fdget+0x1bc/0x240
[  355.254933][ T9043]  resolve_pseudo_ldimm64+0x586/0x1020
[  355.260402][ T9043]  ? bpf_check+0xf2b0/0xf2b0
[  355.264900][ T9043]  ? kvmalloc_node+0x82/0x130
[  355.269484][ T9043]  bpf_check+0xaf21/0xf2b0
[  355.273758][ T9043]  ? stack_depot_save+0xe/0x10
[  355.278712][ T9043]  ? __se_sys_bpf+0x9856/0x11cb0
[  355.283754][ T9043]  ? sched_clock+0x3a/0x40
[  355.288412][ T9043]  ? 0xffffffffa002a000
[  355.292532][ T9043]  ? bpf_get_btf_vmlinux+0x60/0x60
[  355.302802][ T9043]  ? __kernel_text_address+0x9b/0x110
[  355.308189][ T9043]  ? unwind_get_return_address+0x4d/0x90
[  355.314182][ T9043]  ? arch_stack_walk+0xf3/0x140
[  355.319096][ T9043]  ? stack_trace_save+0x113/0x1c0
[  355.324457][ T9043]  ? stack_trace_snprint+0xf0/0xf0
[  355.329722][ T9043]  ? stack_trace_snprint+0xf0/0xf0
[  355.335036][ T9043]  ? selinux_bpf_prog_alloc+0x51/0x140
[  355.340479][ T9043]  ? selinux_bpf_prog_alloc+0x51/0x140
[  355.346014][ T9043]  ? ____kasan_kmalloc+0xed/0x110
[  355.351632][ T9043]  ? ____kasan_kmalloc+0xdb/0x110
[  355.356862][ T9043]  ? __kasan_kmalloc+0x9/0x10
[  355.361587][ T9043]  ? kmem_cache_alloc_trace+0x18a/0x2e0
[  355.367150][ T9043]  ? selinux_bpf_prog_alloc+0x51/0x140
[  355.372979][ T9043]  ? security_bpf_prog_alloc+0x62/0x90
[  355.378633][ T9043]  ? __se_sys_bpf+0x9f8c/0x11cb0
[  355.384055][ T9043]  ? __x64_sys_bpf+0x7b/0x90
[  355.388770][ T9043]  ? do_syscall_64+0x34/0x70
[  355.393434][ T9043]  ? entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  355.399652][ T9043]  ? __kasan_kmalloc+0x9/0x10
[  355.404544][ T9043]  __se_sys_bpf+0x107a2/0x11cb0
[  355.409340][ T9043]  ? futex_wait+0x6a0/0x7c0
[  355.414037][ T9043]  ? __x64_sys_bpf+0x90/0x90
[  355.418678][ T9043]  ? do_futex+0x17b0/0x17b0
[  355.423287][ T9043]  ? do_futex+0x139a/0x17b0
[  355.428355][ T9043]  ? __kasan_check_write+0x14/0x20
[  355.433845][ T9043]  ? __switch_to+0x5f6/0x1240
[  355.438797][ T9043]  ? futex_exit_release+0x1e0/0x1e0
[  355.444618][ T9043]  ? plist_check_list+0x254/0x270
[  355.451394][ T9043]  ? compat_start_thread+0x80/0x80
[  355.458616][ T9043]  ? native_set_ldt+0x360/0x360
[  355.464095][ T9043]  ? _raw_spin_unlock_irq+0x4e/0x70
[  355.469467][ T9043]  ? finish_task_switch+0x130/0x5a0
[  355.475647][ T9043]  ? switch_mm_irqs_off+0x71b/0x9a0
[  355.481005][ T9043]  ? __se_sys_futex+0x355/0x470
[  355.485863][ T9043]  ? fpu__clear_all+0x20/0x20
[  355.490527][ T9043]  ? __kasan_check_read+0x11/0x20
[  355.495520][ T9043]  __x64_sys_bpf+0x7b/0x90
[  355.500050][ T9043]  do_syscall_64+0x34/0x70
[  355.504814][ T9043]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  355.571114][ T9043] RIP: 0033:0x7f11c8297ea9
[  355.575769][ T9043] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  355.615591][ T9043] RSP: 002b:00007f11c76120c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  355.650226][ T9043] RAX: ffffffffffffffda RBX: 00007f11c83cef80 RCX: 00007f11c8297ea9
[  355.658395][ T9043] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  355.666646][ T9043] RBP: 00007f11c8306ff4 R08: 0000000000000000 R09: 0000000000000000
[  355.674761][ T9043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  355.682944][ T9043] R13: 000000000000000b R14: 00007f11c83cef80 R15: 00007ffea0601738
[  355.691332][ T9043] ---[ end trace 5742a9d5fd991bb5 ]---
[  355.733075][ T9063] syz-executor.3[9063] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.733133][ T9063] syz-executor.3[9063] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  356.011220][   T53] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  356.161146][ T1804] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  356.381252][   T53] usb 4-1: config index 0 descriptor too short (expected 45, got 36)
[  356.390714][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  356.401936][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  356.412847][   T53] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  356.425806][   T53] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  356.435146][   T53] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.444535][   T53] usb 4-1: config 0 descriptor??
[  356.461278][ T9063] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  356.541300][ T1804] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  356.552499][ T1804] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  356.563604][ T1804] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  356.572583][ T1804] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.601202][ T9056] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  356.921904][   T53] plantronics 0003:047F:FFFF.004B: unknown main item tag 0xd
[  356.930283][   T53] plantronics 0003:047F:FFFF.004B: No inputs registered, leaving
[  356.938883][   T53] plantronics 0003:047F:FFFF.004B: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  357.011149][  T876] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  357.199201][   T53] usb 4-1: USB disconnect, device number 36
[  357.261535][ T9056] udc-core: couldn't find an available UDC or it's busy
[  357.268363][ T9056] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  357.391264][  T876] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  357.403581][  T876] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  357.413378][  T876] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  357.422647][  T876] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.431351][  T876] usb 5-1: config 0 descriptor??
[  357.501183][ T1804] aiptek 3-1:17.0: Aiptek using 400 ms programming speed
[  357.508626][ T1804] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input44
[  357.519012][ T1804] usb 3-1: USB disconnect, device number 26
[  359.071339][  T876] uclogic 0003:256C:006D.004C: failed retrieving Huion firmware version: -71
[  359.081805][  T876] uclogic 0003:256C:006D.004C: failed probing parameters: -71
[  359.089255][  T876] uclogic: probe of 0003:256C:006D.004C failed with error -71
[  359.097725][  T876] usb 5-1: USB disconnect, device number 38
[  359.858515][ T9131] device pim6reg1 entered promiscuous mode
[  360.534918][   T53] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  361.243525][   T53] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  361.254144][   T53] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.262949][   T53] usb 3-1: config 0 descriptor??
[  361.312311][ T9177] syz-executor.4[9177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  361.312356][ T9177] syz-executor.4[9177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  361.325438][ T9177] syz-executor.4[9177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  361.380116][ T9177] syz-executor.4[9177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  362.181369][   T20] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  362.440537][   T20] usb 5-1: Using ep0 maxpacket: 8
[  362.551152][   T53] usb 3-1: Cannot set autoneg
[  362.555767][   T53] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -32
[  362.601280][   T20] usb 5-1: config 135 has an invalid interface number: 230 but max is 0
[  362.609996][   T20] usb 5-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  362.620433][   T20] usb 5-1: config 135 has no interface number 0
[  362.626695][   T20] usb 5-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  362.791554][   T20] usb 5-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  362.801295][   T20] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.809311][   T20] usb 5-1: Product: syz
[  362.813652][   T20] usb 5-1: Manufacturer: syz
[  362.818160][   T20] usb 5-1: SerialNumber: syz
[  362.999673][ T9245] netlink: 'syz-executor.0': attribute type 46 has an invalid length.
[  363.007767][ T9245] netlink: 'syz-executor.0': attribute type 46 has an invalid length.
[  363.081227][   T20] uvcvideo: Found UVC 0.00 device syz (18ec:3288)
[  363.087967][   T20] uvcvideo: No valid video chain found.
[  363.174764][ T9259] syz-executor.0[9259] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  363.174825][ T9259] syz-executor.0[9259] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  363.221657][ T9263] kvm: apic: phys broadcast and lowest prio
[  363.282527][  T364] usb 5-1: USB disconnect, device number 39
[  363.743980][  T364] usb 3-1: USB disconnect, device number 27
[  363.779689][ T9287] syz-executor.0[9287] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  363.779735][ T9287] syz-executor.0[9287] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  363.841551][ T9291] kvm: apic: phys broadcast and lowest prio
[  363.876618][ T9296] syz-executor.4[9296] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  363.876682][ T9296] syz-executor.4[9296] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  364.412822][ T9315] tipc: Started in network mode
[  364.429228][ T9315] tipc: Own node identity ac1414aa, cluster identity 4711
[  364.436803][ T9315] tipc: New replicast peer: 100.1.1.1
[  364.442230][ T9315] tipc: Enabled bearer <udp:syz2>, priority 10
[  364.521553][ T9325] kvm: apic: phys broadcast and lowest prio
[  364.909441][ T9333] EXT4-fs error (device loop4): ext4_ext_check_inode:500: inode #15: comm syz-executor.4: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  364.928697][ T9333] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz-executor.4: couldn't read orphan inode 15 (err -117)
[  364.934050][ T1448] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  364.941840][ T9333] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  364.959303][ T9333] ext4 filesystem being mounted at /root/syzkaller-testdir645510544/syzkaller.tt8zhw/584/file2 supports timestamps until 2038 (0x7fffffff)
[  365.311203][ T1448] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  365.320099][ T1448] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.328790][ T1448] usb 4-1: config 0 descriptor??
[  365.453199][ T9348] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  365.561356][  T381] tipc: 32-bit node address hash set to aa1414ac
[  366.029081][ T9361] kvm: apic: phys broadcast and lowest prio
[  366.395042][ T9383] device pim6reg1 entered promiscuous mode
[  366.411139][ T1449] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  366.539386][ T9390] 9p: Unknown uid 18446744073709551615
[  366.746005][ T9404] geneve1: tun_chr_ioctl cmd 1074025681
[  366.771210][ T1449] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  366.782520][ T1448] usb 4-1: Cannot set autoneg
[  366.787190][ T1448] MOSCHIP usb-ethernet driver: probe of 4-1:0.0 failed with error -32
[  366.795512][ T1449] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  366.807760][ T1449] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  366.817856][ T1449] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.841319][ T9368] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  367.446415][ T9426] incfs: iterate_incfs_dir / -22
[  367.451803][ T9426] incfs: iterate_incfs_dir / -22
[  367.541345][ T1449] aiptek 5-1:17.0: Aiptek using 400 ms programming speed
[  367.550019][ T1449] input: Aiptek as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:17.0/input/input46
[  367.560721][ T1449] usb 5-1: USB disconnect, device number 40
[  367.591766][ T9428] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.598913][ T9428] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.606773][ T9428] device bridge_slave_0 entered promiscuous mode
[  367.615318][ T9428] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.622412][ T9428] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.629855][ T9428] device bridge_slave_1 entered promiscuous mode
[  367.674924][ T9428] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.682069][ T9428] bridge0: port 2(bridge_slave_1) entered forwarding state
[  367.689264][ T9428] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.696051][ T9428] bridge0: port 1(bridge_slave_0) entered forwarding state
[  367.722306][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  367.730203][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.738450][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.753350][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  367.762264][ T1448] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.769277][ T1448] bridge0: port 1(bridge_slave_0) entered forwarding state
[  367.776718][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  367.785444][ T1448] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.792386][ T1448] bridge0: port 2(bridge_slave_1) entered forwarding state
[  367.807151][ T9435] 9p: Unknown uid 18446744073709551615
[  367.815566][  T381] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  367.825493][  T381] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  367.842051][  T381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  367.854144][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  367.862294][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  367.869680][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  367.879985][ T9428] device veth0_vlan entered promiscuous mode
[  367.891342][  T381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  367.900733][ T9428] device veth1_macvtap entered promiscuous mode
[  367.913958][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  367.924445][ T1803] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  367.961783][ T1448] usb 4-1: USB disconnect, device number 37
[  368.022055][ T1223] device bridge_slave_1 left promiscuous mode
[  368.028050][ T1223] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.035957][ T1223] device bridge_slave_0 left promiscuous mode
[  368.053533][ T1223] bridge0: port 1(bridge_slave_0) entered disabled state
[  368.063317][ T1223] device veth1_macvtap left promiscuous mode
[  368.069158][ T1223] device veth0_vlan left promiscuous mode
[  368.367288][ T9449] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.375562][ T9449] bridge0: port 1(bridge_slave_0) entered disabled state
[  368.383881][ T9449] device bridge_slave_0 entered promiscuous mode
[  368.392744][ T9449] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.400075][ T9449] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.409024][ T9449] device bridge_slave_1 entered promiscuous mode
[  368.506404][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  368.514787][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  368.531578][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  368.540102][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  368.549122][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.556026][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  368.564847][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  368.573805][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  368.583435][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.590338][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  368.606706][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  368.623637][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  368.631954][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  368.644479][  T381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  368.667226][ T9449] device veth0_vlan entered promiscuous mode
[  368.690606][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  368.702043][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  368.709608][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  368.740206][ T9449] device veth1_macvtap entered promiscuous mode
[  368.749826][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  368.766856][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  368.775788][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  368.926056][ T9472] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.3'.
[  368.935914][ T9472] device gretap0 entered promiscuous mode
[  368.950865][ T9472] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.3'.
[  368.960370][ T9472] 0ªX¹¦D: renamed from gretap0
[  368.965894][ T9472] device 
30ªX¹¦D left promiscuous mode
[  368.972268][ T9472] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  369.009384][ T9476] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  369.034913][ T9478] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  369.049595][ T9478] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  369.165700][ T9462] F2FS-fs (loop4): invalid crc value
[  369.172767][ T9462] F2FS-fs (loop4): Found nat_bits in checkpoint
[  369.211098][   T53] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  369.350640][ T9462] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  369.571228][   T53] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  369.580559][   T53] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.589947][   T53] usb 3-1: config 0 descriptor??
[  370.821578][   T53] usb 3-1: Cannot set autoneg
[  370.827015][   T53] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -32
[  371.757505][ T9528] bridge0: port 1(bridge_slave_0) entered blocking state
[  371.764536][ T9528] bridge0: port 1(bridge_slave_0) entered disabled state
[  371.771905][ T9528] device bridge_slave_0 entered promiscuous mode
[  371.778933][ T9528] bridge0: port 2(bridge_slave_1) entered blocking state
[  371.785924][ T9528] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.793656][ T9528] device bridge_slave_1 entered promiscuous mode
[  371.836796][ T9528] bridge0: port 2(bridge_slave_1) entered blocking state
[  371.844094][ T9528] bridge0: port 2(bridge_slave_1) entered forwarding state
[  371.851547][ T9528] bridge0: port 1(bridge_slave_0) entered blocking state
[  371.858811][ T9528] bridge0: port 1(bridge_slave_0) entered forwarding state
[  371.882174][  T381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  371.890013][  T381] bridge0: port 1(bridge_slave_0) entered disabled state
[  371.898011][  T381] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.908292][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  371.917145][ T1449] bridge0: port 1(bridge_slave_0) entered blocking state
[  371.924416][ T1449] bridge0: port 1(bridge_slave_0) entered forwarding state
[  371.927376][  T876] usb 3-1: USB disconnect, device number 28
[  371.943679][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  371.952188][ T1449] bridge0: port 2(bridge_slave_1) entered blocking state
[  371.959433][ T1449] bridge0: port 2(bridge_slave_1) entered forwarding state
[  371.975231][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  371.995820][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  372.024463][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  372.041875][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  372.050148][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  372.058224][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  372.067678][ T9528] device veth0_vlan entered promiscuous mode
[  372.086847][ T9528] device veth1_macvtap entered promiscuous mode
[  372.093998][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  372.109185][ T1448] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  372.126982][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  373.337381][ T9557] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  373.349253][ T9557] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  373.363837][ T9428] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  373.374681][ T9428] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  373.384604][  T876] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  373.392772][ T9428] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  373.745330][ T9575] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.752729][ T9575] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.760167][ T9575] device bridge_slave_0 entered promiscuous mode
[  373.767120][ T9575] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.774383][  T876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  373.781164][ T9575] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.785407][  T876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  373.792388][ T1449] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  373.802119][  T876] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  373.810318][ T9575] device bridge_slave_1 entered promiscuous mode
[  373.818615][  T876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.834287][  T876] usb 3-1: config 0 descriptor??
[  373.877547][ T9575] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.884735][ T9575] bridge0: port 2(bridge_slave_1) entered forwarding state
[  373.892440][ T9575] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.899430][ T9575] bridge0: port 1(bridge_slave_0) entered forwarding state
[  373.924581][  T751] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  373.933421][  T751] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.940930][  T751] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.952313][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  373.960446][  T364] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.967467][  T364] bridge0: port 1(bridge_slave_0) entered forwarding state
[  373.977046][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  373.985891][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.993261][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  374.011471][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  374.031914][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  374.040164][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  374.049160][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  374.057683][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  374.065564][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  374.077177][ T9575] device veth0_vlan entered promiscuous mode
[  374.088363][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  374.098372][ T9575] device veth1_macvtap entered promiscuous mode
[  374.114389][ T1804] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  374.123467][ T1804] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  374.181171][ T1449] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  374.192375][ T1449] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  374.202883][ T1449] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  374.212296][ T1449] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  374.221906][ T1449] usb 4-1: config 0 descriptor??
[  374.375963][  T876] hid (null): bogus close delimiter
[  374.659632][   T24] audit: type=1400 audit(1718416336.425:18949): avc:  denied  { mounton } for  pid=9588 comm="syz-executor.0" path="/syzcgroup/unified/syz0" dev="cgroup2" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  374.701528][ T9593] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  374.710719][ T9593] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  374.720330][  T876] usb 3-1: language id specifier not provided by device, defaulting to English
[  374.832475][  T965] device bridge_slave_1 left promiscuous mode
[  374.838695][  T965] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.846652][  T965] device bridge_slave_0 left promiscuous mode
[  374.852753][  T965] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.860902][  T965] device veth1_macvtap left promiscuous mode
[  374.862794][ T1449] hid (null): bogus close delimiter
[  374.867185][  T965] device veth0_vlan left promiscuous mode
[  375.096714][ T1449] usb 4-1: language id specifier not provided by device, defaulting to English
[  375.152403][  T876] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.004D/input/input48
[  375.427708][  T876] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.004D/input/input49
[  375.440425][  T876] uclogic 0003:256C:006D.004D: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.2-1/input0
[  375.453917][  T876] usb 3-1: USB disconnect, device number 29
[  375.581807][ T1449] uclogic 0003:256C:006D.004E: interface is invalid, ignoring
[  375.788350][ T1449] usb 4-1: USB disconnect, device number 38
[  375.871230][ T9609] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  375.931575][ T9613] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  375.942289][ T9613] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  375.956253][ T9575] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  375.967205][ T9575] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  375.977762][ T9575] fscrypt: key with descriptor 0000111122223333 is too short (got 16 bytes, need 32+ bytes)
[  376.161189][  T876] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  376.322680][   T24] audit: type=1326 audit(1718416338.095:18950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9626 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa5953b1ea9 code=0x0
[  376.401118][  T876] usb 3-1: Using ep0 maxpacket: 16
[  376.531326][  T876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  376.542597][  T876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  376.552446][  T876] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  376.565281][  T876] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  376.574771][  T876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.583522][  T876] usb 3-1: config 0 descriptor??
[  376.615044][ T9644] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.3'.
[  376.626167][ T9644] device gretap0 entered promiscuous mode
[  376.634996][ T9644] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.3'.
[  376.644333][ T9644] 0ªX¹¦D: renamed from gretap0
[  376.650361][ T9644] device 
30ªX¹¦D left promiscuous mode
[  376.656615][ T9644] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  377.072091][  T876] microsoft 0003:045E:07DA.004F: ignoring exceeding usage max
[  377.087405][  T876] HID 045e:07da: Invalid code 65791 type 1
[  377.093565][  T876] HID 045e:07da: Invalid code 768 type 1
[  377.099590][  T876] HID 045e:07da: Invalid code 769 type 1
[  377.106239][  T876] HID 045e:07da: Invalid code 770 type 1
[  377.112186][  T876] HID 045e:07da: Invalid code 771 type 1
[  377.118738][  T876] HID 045e:07da: Invalid code 772 type 1
[  377.124665][  T876] HID 045e:07da: Invalid code 773 type 1
[  377.131080][  T876] HID 045e:07da: Invalid code 774 type 1
[  377.137587][  T876] HID 045e:07da: Invalid code 775 type 1
[  377.143792][  T876] HID 045e:07da: Invalid code 776 type 1
[  377.158478][  T876] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.004F/input/input50
[  377.232364][  T876] microsoft 0003:045E:07DA.004F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  377.275880][  T876] usb 3-1: USB disconnect, device number 30
[  377.427031][ T9665] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  377.437025][ T9665] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  377.446403][ T9665] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[  377.455713][ T9665] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[  377.469698][   T24] audit: type=1326 audit(1718416339.245:18951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5953af627 code=0x7ffc0000
[  377.495384][   T24] audit: type=1326 audit(1718416339.245:18952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa595375309 code=0x7ffc0000
[  377.520619][   T24] audit: type=1326 audit(1718416339.245:18953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5953b1ea9 code=0x7ffc0000
[  377.545639][   T24] audit: type=1326 audit(1718416339.245:18954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5953af627 code=0x7ffc0000
[  377.569737][   T24] audit: type=1326 audit(1718416339.245:18955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa595375309 code=0x7ffc0000
[  377.593851][   T24] audit: type=1326 audit(1718416339.245:18956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5953b1ea9 code=0x7ffc0000
[  377.617712][   T24] audit: type=1326 audit(1718416339.245:18957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5953af627 code=0x7ffc0000
[  377.641871][   T24] audit: type=1326 audit(1718416339.245:18958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9660 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa595375309 code=0x7ffc0000
[  377.781088][ T1449] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  378.021076][ T1449] usb 4-1: Using ep0 maxpacket: 16
[  378.141603][ T1449] usb 4-1: config 0 has no interfaces?
[  378.147588][ T1449] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  378.160752][ T1449] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.171195][ T1449] usb 4-1: config 0 descriptor??
[  379.303855][ T9703] fscrypt (sda1, inode 2057): Unsupported encryption flags (0x3a)
[  379.684522][ T9713] 9p: Unknown uid 18446744073709551615
[  380.369455][ T9730] fscrypt (sda1, inode 2035): Unsupported encryption flags (0x3a)
[  380.536802][   T53] usb 4-1: USB disconnect, device number 39
[  380.691877][   T24] kauditd_printk_skb: 5097 callbacks suppressed
[  380.691892][   T24] audit: type=1400 audit(1718416342.465:24056): avc:  denied  { mounton } for  pid=9750 comm="syz-executor.1" path="/root/syzkaller-testdir4239896125/syzkaller.0TfUQ6/26/file0" dev="ramfs" ino=57700 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  380.846206][ T9758] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.854039][ T9758] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.861619][ T9758] device bridge_slave_0 entered promiscuous mode
[  380.868637][ T9758] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.875903][ T9758] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.883409][ T9758] device bridge_slave_1 entered promiscuous mode
[  380.926190][ T9758] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.933455][ T9758] bridge0: port 2(bridge_slave_1) entered forwarding state
[  380.940794][ T9758] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.947575][ T9758] bridge0: port 1(bridge_slave_0) entered forwarding state
[  380.971957][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  380.979758][   T25] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.987443][   T25] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.005293][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  381.011265][ T1449] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  381.013591][  T364] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.027672][  T364] bridge0: port 1(bridge_slave_0) entered forwarding state
[  381.035230][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  381.043721][  T364] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.050640][  T364] bridge0: port 2(bridge_slave_1) entered forwarding state
[  381.057991][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  381.073446][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  381.087540][ T9758] device veth0_vlan entered promiscuous mode
[  381.095049][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  381.103667][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  381.112155][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  381.120017][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  381.135910][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  381.147769][ T9758] device veth1_macvtap entered promiscuous mode
[  381.158196][  T364] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  381.171855][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  381.180049][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  381.251213][ T1449] usb 4-1: Using ep0 maxpacket: 8
[  381.292265][  T965] device bridge_slave_1 left promiscuous mode
[  381.298525][  T965] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.305826][  T965] device bridge_slave_0 left promiscuous mode
[  381.312513][  T965] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.320599][  T965] device veth1_macvtap left promiscuous mode
[  381.327008][  T965] device veth0_vlan left promiscuous mode
[  381.371584][ T1449] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  381.461325][ T1449] usb 4-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  381.475773][ T1449] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[  381.481343][ T1804] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  381.484072][ T1449] usb 4-1: SerialNumber: syz
[  381.496687][ T1449] usb 4-1: config 0 descriptor??
[  381.731157][ T1804] usb 2-1: Using ep0 maxpacket: 16
[  381.761192][ T1449] uvcvideo: Found UVC 0.00 device <unnamed> (05ac:8501)
[  381.768616][ T1449] uvcvideo: No valid video chain found.
[  381.871188][ T1804] usb 2-1: config 0 has no interfaces?
[  381.876756][ T1804] usb 2-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  381.885848][ T1804] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.894240][ T1804] usb 2-1: config 0 descriptor??
[  381.965556][   T53] usb 4-1: USB disconnect, device number 40
[  382.930189][ T9833] 9p: Unknown uid 18446744073709551615
[  383.165967][ T9836] overlayfs: statfs failed on './file0'
[  383.211789][   T24] audit: type=1326 audit(1718416344.985:24057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.238513][   T24] audit: type=1326 audit(1718416344.985:24058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.263375][   T24] audit: type=1326 audit(1718416344.985:24059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.291789][   T24] audit: type=1326 audit(1718416344.985:24060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.317138][   T24] audit: type=1326 audit(1718416344.985:24061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.343250][   T24] audit: type=1326 audit(1718416344.985:24062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=269 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.370885][   T24] audit: type=1326 audit(1718416344.985:24063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.397328][   T24] audit: type=1326 audit(1718416344.985:24064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9837 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  383.718022][ T9858] overlayfs: missing 'lowerdir'
[  383.725809][ T9858] tipc: Started in network mode
[  383.730502][ T9858] tipc: Own node identity , cluster identity 4711
[  383.737503][ T9858] tipc: Failed to set node id, please configure manually
[  383.744618][ T9858] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  383.822708][ T9863] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=58138 sclass=netlink_route_socket pid=9863 comm=syz-executor.2
[  384.039632][ T9861] kvm: pic: non byte read
[  384.220760][  T381] usb 2-1: USB disconnect, device number 25
[  384.265252][ T9872] device pim6reg1 entered promiscuous mode
[  384.297174][   T24] audit: type=1400 audit(1718416346.065:24065): avc:  denied  { create } for  pid=9875 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  384.511385][ T9892] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev sda1, type ext4) errno=-22
[  384.591751][ T9900] syz-executor.1[9900] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.591974][ T9900] syz-executor.1[9900] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.681400][   T53] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  384.931145][   T53] usb 4-1: Using ep0 maxpacket: 32
[  385.051201][   T53] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  385.063957][   T53] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  385.231342][   T53] usb 4-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[  385.241519][   T53] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.250097][   T53] usb 4-1: Product: syz
[  385.255368][   T53] usb 4-1: Manufacturer: syz
[  385.260012][   T53] usb 4-1: SerialNumber: syz
[  385.266053][   T53] usb 4-1: config 0 descriptor??
[  385.312242][   T53] snd-usb-audio: probe of 4-1:0.0 failed with error -12
[  385.518710][ T9909] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  385.534567][   T53] usb 4-1: USB disconnect, device number 41
[  385.861120][  T751] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  386.055023][ T9918] xt_CT: netfilter: NOTRACK target is deprecated, use CT instead or upgrade iptables
[  386.112336][ T9920] EXT4-fs (loop3): Test dummy encryption mode enabled
[  386.119206][ T9920] EXT4-fs (loop3): Test dummy encryption mode enabled
[  386.126255][ T9920] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  386.140309][ T9920] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz-executor.3: casefold flag without casefold feature
[  386.153609][ T9920] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz-executor.3: missing EA_INODE flag
[  386.165568][ T9920] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz-executor.3: error while reading EA inode 12 err=-117
[  386.178543][ T9920] EXT4-fs (loop3): 1 orphan inode deleted
[  386.184878][ T9920] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,abort,max_dir_size_kb=0x0000000000009c7c,max_dir_size_kb=0x0000000000000000,bsddf,usrjquota=,test_dummy_encryption,nogrpid,test_dummy_encryption,,errors=continue
[  386.231580][  T751] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  386.242900][  T751] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  386.252514][  T751] usb 3-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00
[  386.261765][  T751] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.270798][  T751] usb 3-1: config 0 descriptor??
[  386.289949][ T9926] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'.
[  386.610236][   T24] kauditd_printk_skb: 1 callbacks suppressed
[  386.610251][   T24] audit: type=1326 audit(1718416348.375:24067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9943 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x0
[  386.752380][  T751] hid-multitouch 0003:0EEF:72D0.0050: unbalanced delimiter at end of report description
[  386.762494][  T751] hid-multitouch: probe of 0003:0EEF:72D0.0050 failed with error -22
[  386.954368][  T751] usb 3-1: USB disconnect, device number 31
[  387.586604][ T9970] overlayfs: unrecognized mount option "Œ8" or missing value
[  388.794493][ T9997] 9p: Unknown uid 18446744073709551615
[  389.040875][T10006] syz-executor.2[10006] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  389.040946][T10006] syz-executor.2[10006] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  389.135710][   T24] audit: type=1400 audit(1718416350.905:24068): avc:  denied  { lock } for  pid=10024 comm="syz-executor.2" path="socket:[59227]" dev="sockfs" ino=59227 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  389.195902][T10027] device pim6reg1 entered promiscuous mode
[  389.638964][T10083] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  389.648354][T10083] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  389.663863][   T24] audit: type=1400 audit(1718416351.425:24069): avc:  denied  { create } for  pid=10082 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  389.857265][   T24] audit: type=1400 audit(1718416351.435:24070): avc:  denied  { read } for  pid=10082 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  389.980406][T10086] 9p: Unknown uid 18446744073709551615
[  390.534444][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.542087][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.549506][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.557501][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.564989][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.572749][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.580156][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.587736][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.588327][   T24] audit: type=1326 audit(1718416352.355:24071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10093 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f531d21a627 code=0x7ffc0000
[  390.595498][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.627542][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.632849][   T24] audit: type=1326 audit(1718416352.395:24072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10093 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f531d1e0309 code=0x7ffc0000
[  390.634959][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.658896][   T24] audit: type=1326 audit(1718416352.395:24073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10093 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  390.666132][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.690963][   T24] audit: type=1326 audit(1718416352.395:24074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10093 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f531d21cea9 code=0x7ffc0000
[  390.697662][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.729545][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.736914][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.744144][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.751396][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.753796][   T24] audit: type=1326 audit(1718416352.395:24075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10093 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f531d21a627 code=0x7ffc0000
[  390.758853][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.783606][   T24] audit: type=1326 audit(1718416352.395:24076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10093 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f531d1e0309 code=0x7ffc0000
[  390.795495][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.850303][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.881090][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.888326][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.911178][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.918509][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.941073][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.948303][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.971066][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.978534][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.991121][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  390.998610][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  391.005864][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  391.013056][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  391.020796][  T876] hid-generic 0000:0000:0000.0051: unknown main item tag 0x0
[  391.029022][  T876] hid-generic 0000:0000:0000.0051: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  391.122753][T10100] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  391.130612][T10100] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  391.254375][T10100] F2FS-fs (loop3): Found nat_bits in checkpoint
[  391.300007][T10100] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  391.799416][T10100] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  391.808495][   T24] kauditd_printk_skb: 2336 callbacks suppressed
[  391.808510][   T24] audit: type=1326 audit(1718416353.585:26413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10093 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f531d21a627 code=0x7ffc0000
[  392.010259][T10128] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  392.019619][T10128] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  392.474192][T10135] netlink: 660 bytes leftover after parsing attributes in process `syz-executor.3'.
[  393.270511][   T24] audit: type=1326 audit(1718416355.035:26414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  393.296165][   T24] audit: type=1326 audit(1718416355.035:26415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  393.320512][   T24] audit: type=1326 audit(1718416355.035:26416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  393.345177][   T24] audit: type=1326 audit(1718416355.075:26417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  393.375685][   T24] audit: type=1326 audit(1718416355.075:26418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  393.406139][   T24] audit: type=1326 audit(1718416355.135:26419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2533bb3ea9 code=0x7ffc0000
[  393.435758][   T24] audit: type=1326 audit(1718416355.135:26420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2533bb1627 code=0x7ffc0000
[  393.475807][   T24] audit: type=1326 audit(1718416355.135:26421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2533b77309 code=0x7ffc0000
[  393.512345][   T24] audit: type=1326 audit(1718416355.135:26422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10158 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2533bb1627 code=0x7ffc0000
[  394.301061][  T876] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  394.541152][  T876] usb 3-1: Using ep0 maxpacket: 16
[  394.671207][  T876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  394.682265][  T876] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  394.695430][  T876] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  394.704358][  T876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.712930][  T876] usb 3-1: config 0 descriptor??
[  394.829297][T10197] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.836632][T10197] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.844083][T10197] device bridge_slave_0 entered promiscuous mode
[  394.853207][T10197] bridge0: port 2(bridge_slave_1) entered blocking state
[  394.860277][T10197] bridge0: port 2(bridge_slave_1) entered disabled state
[  394.868096][T10197] device bridge_slave_1 entered promiscuous mode
[  394.930316][T10197] bridge0: port 2(bridge_slave_1) entered blocking state
[  394.937231][T10197] bridge0: port 2(bridge_slave_1) entered forwarding state
[  394.944465][T10197] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.951445][T10197] bridge0: port 1(bridge_slave_0) entered forwarding state
[  394.957653][T10206] syz-executor.1[10206] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  394.958646][T10206] syz-executor.1[10206] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  395.008154][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  395.037788][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  395.045349][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.065396][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  395.074492][ T1449] bridge0: port 1(bridge_slave_0) entered blocking state
[  395.081364][ T1449] bridge0: port 1(bridge_slave_0) entered forwarding state
[  395.088756][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  395.097242][ T1449] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.104130][ T1449] bridge0: port 2(bridge_slave_1) entered forwarding state
[  395.121985][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  395.131516][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  395.151359][  T381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  395.208554][  T876] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0052/input/input51
[  395.239418][T10219] EXT4-fs (loop3): Ignoring removed orlov option
[  395.246310][T10219] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  395.249544][T10197] device veth0_vlan entered promiscuous mode
[  395.260257][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  395.268968][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  395.273627][T10219] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,errors=continue,noauto_da_alloc,nomblk_io_submit,,errors=continue
[  395.276972][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  395.299620][  T876] microsoft 0003:045E:07DA.0052: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  395.315259][T10197] device veth1_macvtap entered promiscuous mode
[  395.328078][   T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  395.375821][T10224] 9p: Unknown uid 18446744073709551615
[  395.459745][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  395.578776][  T876] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  395.608424][T10229] device pim6reg1 entered promiscuous mode
[  395.693766][T10236] incfs: Can't find or create .index dir in ./file0
[  395.700595][T10236] incfs: mount failed -14
[  395.719375][ T1804] usb 3-1: USB disconnect, device number 32
[  395.785400][T10237] netlink: 660 bytes leftover after parsing attributes in process `syz-executor.3'.
[  396.012704][  T965] device bridge_slave_1 left promiscuous mode
[  396.021586][  T965] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.029499][  T965] device bridge_slave_0 left promiscuous mode
[  396.035813][  T965] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.044040][  T965] device veth1_macvtap left promiscuous mode
[  396.049979][  T965] device veth0_vlan left promiscuous mode
[  396.512895][T10270] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  396.828887][T10300] SELinux:  Context system_u:object_r:systemd_notify_exec_t:s0 is not valid (left unmapped).
[  396.841548][   T24] kauditd_printk_skb: 132 callbacks suppressed
[  396.841563][   T24] audit: type=1400 audit(1718416358.615:26555): avc:  denied  { relabelto } for  pid=10299 comm="syz-executor.4" name="file0" dev="sda1" ino=2060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_notify_exec_t:s0"
[  396.920065][   T24] audit: type=1400 audit(1718416358.685:26556): avc:  denied  { rmdir } for  pid=10197 comm="syz-executor.4" name="file0" dev="sda1" ino=2060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_notify_exec_t:s0"
[  396.953403][T10303] overlayfs: unrecognized mount option "Œ8" or missing value
[  396.999329][T10301] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=58138 sclass=netlink_route_socket pid=10301 comm=syz-executor.2
[  397.291340][  T364] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  397.541050][  T364] usb 4-1: Using ep0 maxpacket: 16
[  397.682467][  T364] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  397.693611][  T364] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  397.707209][  T364] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  397.716514][  T364] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.731547][  T364] usb 4-1: config 0 descriptor??
[  397.746992][ T2723] Bluetooth: hci0: sending frame failed (-49)
[  397.758387][T10312] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz-executor.4: bg 0: block 131: padding at end of block bitmap is not set
[  397.781589][T10312] EXT4-fs error (device loop4) in ext4_mb_clear_bb:5643: Corrupt filesystem
[  397.796941][T10312] EXT4-fs (loop4): 1 truncate cleaned up
[  397.803874][T10312] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  397.845625][   T24] audit: type=1400 audit(1718416359.615:26557): avc:  denied  { create } for  pid=10311 comm="syz-executor.4" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  398.011971][T10330] EXT4-fs (loop4): Ignoring removed orlov option
[  398.018516][T10330] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  398.051949][T10330] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,errors=continue,noauto_da_alloc,nomblk_io_submit,,errors=continue
[  398.080172][   T24] audit: type=1400 audit(1718416359.845:26558): avc:  denied  { create } for  pid=10336 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  398.122061][   T24] audit: type=1400 audit(1718416359.885:26559): avc:  denied  { write open } for  pid=10329 comm="syz-executor.4" path="/root/syzkaller-testdir3995428263/syzkaller.UkULG7/18/file1/file0/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  398.151309][   T24] audit: type=1400 audit(1718416359.885:26560): avc:  denied  { mounton } for  pid=10329 comm="syz-executor.4" path="/root/syzkaller-testdir3995428263/syzkaller.UkULG7/18/file1/file0/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  398.181134][   T24] audit: type=1400 audit(1718416359.885:26561): avc:  denied  { map } for  pid=10329 comm="syz-executor.4" path="/root/syzkaller-testdir3995428263/syzkaller.UkULG7/18/file1/file0/bus" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  398.201884][T10338] EXT4-fs error (device loop4): get_max_inline_xattr_value_size:68: inode #12: comm syz-executor.4: corrupt xattr in inline inode
[  398.211622][   T24] audit: type=1400 audit(1718416359.885:26562): avc:  denied  { write } for  pid=10336 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  398.249576][   T24] audit: type=1400 audit(1718416359.885:26563): avc:  denied  { nlmsg_write } for  pid=10336 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  398.272889][  T364] microsoft 0003:045E:07DA.0053: No inputs registered, leaving
[  398.286979][  T364] microsoft 0003:045E:07DA.0053: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  398.298550][  T364] microsoft 0003:045E:07DA.0053: no inputs found
[  398.305381][T10338] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2204: inode #12: comm syz-executor.4: corrupted in-inode xattr
[  398.317512][  T364] microsoft 0003:045E:07DA.0053: could not initialize ff, continuing anyway
[  398.375560][T10197] ==================================================================
[  398.381074][   T24] audit: type=1400 audit(1718416360.145:26564): avc:  denied  { unlink } for  pid=10197 comm="syz-executor.4" name="bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  398.383754][T10197] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xc67/0xc80
[  398.383774][T10197] Read of size 4 at addr ffff888152a08000 by task syz-executor.4/10197
[  398.423591][T10197] 
[  398.426555][T10197] CPU: 1 PID: 10197 Comm: syz-executor.4 Tainted: G        W         5.10.214-syzkaller-00187-ge6f44899ce5d #0
[  398.439135][T10197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  398.449893][T10197] Call Trace:
[  398.453414][T10197]  dump_stack_lvl+0x1e2/0x24b
[  398.458009][T10197]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  398.463569][T10197]  ? panic+0x80b/0x80b
[  398.467472][T10197]  ? ext4_mark_iloc_dirty+0x2c23/0x3e60
[  398.473321][T10197]  print_address_description+0x81/0x3b0
[  398.477540][  T364] usb 4-1: USB disconnect, device number 42
[  398.478808][T10197]  kasan_report+0x179/0x1c0
[  398.489025][T10197]  ? __ext4_journal_ensure_credits+0x470/0x470
[  398.495109][T10197]  ? ext4_xattr_delete_inode+0xc67/0xc80
[  398.500589][T10197]  ? ext4_xattr_delete_inode+0xc67/0xc80
[  398.506216][T10197]  __asan_report_load4_noabort+0x14/0x20
[  398.511781][T10197]  ext4_xattr_delete_inode+0xc67/0xc80
[  398.517420][T10197]  ? sb_end_intwrite+0x110/0x110
[  398.522388][T10197]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  398.528521][T10197]  ? __kasan_check_read+0x11/0x20
[  398.533392][T10197]  ext4_evict_inode+0x1095/0x1730
[  398.538590][T10197]  ? ext4_inode_is_fast_symlink+0x360/0x360
[  398.544935][T10197]  ? inode_io_list_del_locked+0x1ad/0x210
[  398.550581][T10197]  ? _raw_spin_unlock+0x4d/0x70
[  398.555268][T10197]  ? ext4_inode_is_fast_symlink+0x360/0x360
[  398.561770][T10197]  evict+0x2a3/0x6c0
[  398.565514][T10197]  iput+0x632/0x7e0
[  398.569161][T10197]  vfs_rmdir+0x271/0x3f0
[  398.573410][T10197]  do_rmdir+0x2cf/0x5c0
[  398.577498][T10197]  ? d_delete_notify+0xd0/0xd0
[  398.582119][T10197]  ? strncpy_from_user+0x18e/0x2d0
[  398.587033][T10197]  ? getname_flags+0x1fd/0x520
[  398.591627][T10197]  __x64_sys_unlinkat+0xdf/0xf0
[  398.596465][T10197]  do_syscall_64+0x34/0x70
[  398.600709][T10197]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  398.606528][T10197] RIP: 0033:0x7fe58ce20687
[  398.610776][T10197] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  398.630477][T10197] RSP: 002b:00007fff48290368 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  398.638712][T10197] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007fe58ce20687
[  398.646523][T10197] RDX: 0000000000000200 RSI: 00007fff48291510 RDI: 00000000ffffff9c
[  398.654336][T10197] RBP: 00007fe58ce7d636 R08: 0000000000000000 R09: 0000000000000000
[  398.662151][T10197] R10: 0000000000000100 R11: 0000000000000207 R12: 00007fff48291510
[  398.669962][T10197] R13: 00007fe58ce7d636 R14: 000000000006127a R15: 0000000000000008
[  398.677949][T10197] 
[  398.680103][T10197] The buggy address belongs to the page:
[  398.685714][T10197] page:ffffea00054a8200 refcount:0 mapcount:-128 mapping:0000000000000000 index:0x1 pfn:0x152a08
[  398.696511][T10197] flags: 0x4000000000000000()
[  398.701033][T10197] raw: 4000000000000000 ffffea00054a4608 ffffea0004cd2a08 0000000000000000
[  398.709639][T10197] raw: 0000000000000001 0000000000000003 00000000ffffff7f 0000000000000000
[  398.718127][T10197] page dumped because: kasan: bad access detected
[  398.724647][T10197] page_owner tracks the page as freed
[  398.730020][T10197] page last allocated via order 0, migratetype Movable, gfp_mask 0x100cca(GFP_HIGHUSER_MOVABLE), pid 10227, ts 395648905940, free_ts 396483271369
[  398.744804][T10197]  prep_new_page+0x166/0x180
[  398.749204][T10197]  get_page_from_freelist+0x2d8c/0x2f30
[  398.754768][T10197]  __alloc_pages_nodemask+0x435/0xaf0
[  398.760140][T10197]  shmem_alloc_page+0x257/0x420
[  398.764846][T10197]  shmem_alloc_and_acct_page+0x395/0x8e0
[  398.770377][T10197]  shmem_getpage_gfp+0x891/0x2480
[  398.775268][T10197]  shmem_fault+0x2d4/0x7b0
[  398.779678][T10197]  handle_pte_fault+0x23a9/0x3e30
[  398.784538][T10197]  handle_mm_fault+0x11d6/0x1a10
[  398.789423][T10197]  __get_user_pages+0xb31/0x11b0
[  398.794173][T10197]  __mm_populate+0x363/0x520
[  398.798607][T10197]  vm_mmap_pgoff+0x264/0x390
[  398.803024][T10197]  ksys_mmap_pgoff+0xf8/0x1f0
[  398.807539][T10197]  __x64_sys_mmap+0x103/0x120
[  398.812398][T10197]  do_syscall_64+0x34/0x70
[  398.816654][T10197]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  398.822463][T10197] page last free stack trace:
[  398.826980][T10197]  free_unref_page_prepare+0x2ae/0x2d0
[  398.832298][T10197]  free_unref_page_list+0x122/0xb20
[  398.837412][T10197]  release_pages+0xea0/0xef0
[  398.841942][T10197]  __pagevec_release+0x84/0x100
[  398.846688][T10197]  shmem_undo_range+0x7d1/0x1a60
[  398.851454][T10197]  shmem_evict_inode+0x215/0x9d0
[  398.856225][T10197]  evict+0x2a3/0x6c0
[  398.859957][T10197]  iput+0x632/0x7e0
[  398.863605][T10197]  dentry_unlink_inode+0x2e5/0x3d0
[  398.869006][T10197]  __dentry_kill+0x447/0x650
[  398.873409][T10197]  dentry_kill+0xc0/0x2a0
[  398.877574][T10197]  dput+0x40/0x80
[  398.881049][T10197]  __fput+0x4f4/0x760
[  398.884870][T10197]  ____fput+0x15/0x20
[  398.888814][T10197]  task_work_run+0x129/0x190
[  398.893941][T10197]  do_exit+0xc83/0x2a50
[  398.898092][T10197] 
[  398.900262][T10197] Memory state around the buggy address:
[  398.905747][T10197]  ffff888152a07f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  398.913718][T10197]  ffff888152a07f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2024/06/15 01:52:40 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  398.921634][T10197] >ffff888152a08000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  398.930230][T10197]                    ^
[  398.934138][T10197]  ffff888152a08080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  398.942111][T10197]  ffff888152a08100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  398.950026][T10197] ==================================================================
[  398.958014][T10197] Disabling lock debugging due to kernel taint
[  399.212153][T10346] exfat: Unknown parameter 'ess '