last executing test programs:

13.110276599s ago: executing program 0 (id=1739):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r3, &(0x7f0000000200), 0x43400)

13.026684331s ago: executing program 0 (id=1740):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[], 0x1c}}, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x800448d2, &(0x7f0000000100))

10.94896029s ago: executing program 0 (id=1758):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000080))
mknodat$loop(0xffffffffffffffff, &(0x7f0000000340)='./file1\x00', 0x0, 0x0)
linkat(0xffffffffffffffff, &(0x7f0000001180)='./file1\x00', 0xffffffffffffffff, &(0x7f00000011c0)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
unlink(0x0)
link(&(0x7f0000000600)='./file1\x00', &(0x7f0000000640)='./bus\x00')
lseek(r0, 0x0, 0x1)

10.925992344s ago: executing program 0 (id=1759):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r3, &(0x7f0000000200), 0x43400)

10.859059834s ago: executing program 0 (id=1760):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'syztnl1\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x36, 0x4, 0x0, 0x0, 0xd8, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x4}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_read_part_table(0x1051, &(0x7f0000001080)="$eJzsz8ENgkAQBdC/QkRoxSK0Bo9WA2VYjrES+jDBbITECtTDe4fN393JTCb8VF+S51Kd7p/vbT1KUn+GJI8uyXxLkybJJUm3Vk65Du/U7MYk5yT7Mi9rg2yhzZQc+no7lm3M+L1NAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB/vQIAAP//ppAThA==")

10.136671325s ago: executing program 0 (id=1773):
ptrace(0x10, 0x1)
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000380)={0x0, <r1=>0x0})
ptrace$setsig(0x4203, r1, 0x0, &(0x7f00000000c0)={0xf, 0x0, 0x6})

4.963205429s ago: executing program 4 (id=1819):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_tracing={0x1a, 0xf, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, 0x0}, 0x90)
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r3], 0x20}}, 0x0)
close(0x3)

4.750872621s ago: executing program 4 (id=1823):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000380))
r3 = socket$unix(0x1, 0x2, 0x0)
accept4$unix(r3, &(0x7f0000000100), &(0x7f0000000000)=0x6e, 0x80000)
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
r5 = epoll_create1(0x0)
epoll_wait(r5, &(0x7f0000000240)=[{}], 0x1, 0x7ff)
ppoll(&(0x7f0000000080)=[{r5, 0x8201}], 0x1, 0x0, 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f00000000c0)={0x10000001})
read(r4, &(0x7f0000000580)=""/119, 0x77)
getegid()
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xef, 0xe5, 0x4e, 0x40, 0x1bc7, 0x1071, 0x6e9b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0xe}}]}}]}}, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r7, <r8=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r9}, 0x10)

2.73454129s ago: executing program 3 (id=1841):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000003c0)={<r0=>0xffffffffffffffff, 0x92a6, 0x10001, 0x9})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x1, 0x4}, 0x48)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x13}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000380)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), r0)
r3 = socket(0x40000000002, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x60, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x4, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

2.706240535s ago: executing program 3 (id=1843):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder0\x00', 0x0, 0x0)
madvise(&(0x7f0000025000/0x2000)=nil, 0x2000, 0x8)

2.679115199s ago: executing program 3 (id=1845):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000079000000090000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000070018110000", @ANYRES32=r0], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0xa, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan0\x00'})
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x210000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000900", @ANYRES16=0x0, @ANYBLOB="00032cbd7000fddbdf2563000000"], 0x14}, 0x1, 0x0, 0x0, 0xc1}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r3 = io_uring_setup(0x3453, &(0x7f0000000100))
close(r3)
clock_nanosleep(0xb, 0x0, &(0x7f00000000c0)={0x77359400}, 0xfffffffffffffffe)
mkdir(0x0, 0x0)
chdir(0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getrandom(&(0x7f0000000080)=""/240, 0xfffffffffffffe77, 0x0)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000300), 0x0)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000200)='.\x00', 0x10000a0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
preadv(r5, 0x0, 0x0, 0x0, 0x0)

2.637907135s ago: executing program 2 (id=1847):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r4, &(0x7f0000000200)=0x3, 0x43400)

2.637525655s ago: executing program 2 (id=1848):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
waitid(0x0, 0x0, 0x0, 0x60000009, 0x0)

2.618687218s ago: executing program 2 (id=1849):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x80000001}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r2}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newnexthop={0x24, 0x68, 0xa898cf170ab9f9b9, 0x0, 0x0, {}, [@NHA_ID={0x8, 0x1, 0x12}, @NHA_FDB={0x4}]}, 0x24}}, 0x0)

2.593436662s ago: executing program 2 (id=1851):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)

2.329681923s ago: executing program 4 (id=1852):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
syz_emit_ethernet(0xfdef, &(0x7f0000000580)={@broadcast, @link_local, @val, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private, @broadcast}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
setresuid(0x0, 0xee00, 0x0)
setrlimit(0x7, &(0x7f0000000000))
inotify_init()

2.312569815s ago: executing program 4 (id=1853):
open(0x0, 0x4c37e, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f00000000c0)=""/82, 0x0})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000900))
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x20000)
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000001e80))

1.704657938s ago: executing program 2 (id=1859):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r2}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r4, &(0x7f0000000200)=0x3, 0x43400)

1.690369981s ago: executing program 2 (id=1861):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x6cb, 0x81a7, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x8, "6790f848"}]}}, 0x0}, 0x0)

1.420240642s ago: executing program 4 (id=1866):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000003c0)={<r0=>0xffffffffffffffff, 0x92a6, 0x10001, 0x9})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x1, 0x4}, 0x48)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x13}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000380)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), r0)
r3 = socket(0x40000000002, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x60, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x4, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

1.405194844s ago: executing program 4 (id=1867):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x9e, 0x17, 0x36, 0x10, 0x17ef, 0x721e, 0xde06, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6}}]}}]}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000a80)={@map=r0, 0xffffffffffffffff, 0x15, 0x0, 0x0, @prog_id}, 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000000180), 0xfc, 0x57c, &(0x7f00000013c0)="$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")
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
mount(&(0x7f00000004c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000280), 0x208e24b)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r2, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x7500}], 0x1, 0x0, 0x0, 0x0)

1.379657328s ago: executing program 3 (id=1854):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'syztnl1\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x36, 0x4, 0x0, 0x0, 0xd8, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x4}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_read_part_table(0x1051, &(0x7f0000001080)="$eJzsz8ENgkAQBdC/QkRoxSK0Bo9WA2VYjrES+jDBbITECtTDe4fN393JTCb8VF+S51Kd7p/vbT1KUn+GJI8uyXxLkybJJUm3Vk65Du/U7MYk5yT7Mi9rg2yhzZQc+no7lm3M+L1NAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB/vQIAAP//ppAThA==")

984.272489ms ago: executing program 3 (id=1873):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000005efe2100850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
unshare(0x22020600)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000000840)={[{@grpjquota}, {@noblock_validity}, {@data_err_ignore}, {@errors_remount}, {@nogrpid}, {@nombcache}, {@stripe={'stripe', 0x3d, 0xa797}}, {@data_err_abort}, {@grpid}, {@jqfmt_vfsold}]}, 0xfe, 0x506, &(0x7f0000001200)="$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")
r2 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
setns(r2, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

760.461573ms ago: executing program 3 (id=1874):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000008000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = fcntl$dupfd(r6, 0x0, r5)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x468, 0xc, 0x5002004a, 0xb, 0x310, 0xea13, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00'}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2}}, @common=@ttl={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4c8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080), 0x0, &(0x7f0000000000))
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x1000806, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'cp949'}}, {@errors_continue}]}, 0x9, 0x150a, &(0x7f0000000200)="$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")
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mount(0x0, 0x0, &(0x7f0000000100)='tmpfs\x00', 0x0, 0x0)
getresgid(&(0x7f0000000140), &(0x7f0000000580), &(0x7f0000000180))
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000002a80)={@empty}, &(0x7f0000002ac0)=0x14)

179.707822ms ago: executing program 1 (id=1875):
r0 = inotify_init1(0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x0)
inotify_add_watch(r0, &(0x7f0000000140)='./file0\x00', 0x203)
ftruncate(r1, 0x6000000)
pread64(r1, &(0x7f0000000000)=""/20, 0x14, 0x0)

68.353059ms ago: executing program 1 (id=1877):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x56}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000001140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

24.662216ms ago: executing program 1 (id=1878):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpu.stat\x00', 0x26e1, 0x0)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000080)='ext4_es_insert_delayed_block\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000540)='ext4_es_insert_delayed_block\x00', r0}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000100), 0x1001)

24.400036ms ago: executing program 1 (id=1879):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioperm(0x0, 0x3, 0x7)
bpf$LINK_DETACH(0x22, 0x0, 0x0)

398.07µs ago: executing program 1 (id=1880):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)

0s ago: executing program 1 (id=1881):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000004000000000000000000190095"], &(0x7f00000001c0)='syzkaller\x00'}, 0x90)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r0, r2, 0x25, 0x0, @val=@netfilter}, 0x40)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_emit_ethernet(0xd81, &(0x7f0000001540)={@empty, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0xd73, 0x0, 0x0, 0x0, 0x2f, 0x0, @broadcast, @multicast1}, {{}, {}, {}, {}, {}, {0x8, 0x6558, 0x0, "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"}}}}}}, 0x0)

kernel console output (not intermixed with test programs):

v6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  101.113368][ T3160] device veth0_vlan entered promiscuous mode
[  101.127228][  T355] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  101.129101][ T3183] loop0: detected capacity change from 0 to 1024
[  101.148800][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  101.149489][ T3183] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  101.167474][ T3160] device veth1_macvtap entered promiscuous mode
[  101.180604][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  101.193420][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  101.220084][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.230772][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.241131][   T28] audit: type=1400 audit(1719582653.434:349): avc:  denied  { create } for  pid=3191 comm="syz.3.1101" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=udp_socket permissive=1
[  101.261314][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.265610][   T28] audit: type=1400 audit(1719582653.434:350): avc:  denied  { create } for  pid=3191 comm="syz.3.1101" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=rawip_socket permissive=1
[  101.292255][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.303021][   T28] audit: type=1400 audit(1719582653.434:351): avc:  denied  { setopt } for  pid=3191 comm="syz.3.1101" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=rawip_socket permissive=1
[  101.307558][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.324627][   T28] audit: type=1400 audit(1719582653.434:352): avc:  denied  { create } for  pid=3191 comm="syz.3.1101" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=vsock_socket permissive=1
[  101.354315][   T28] audit: type=1400 audit(1719582653.434:353): avc:  denied  { create } for  pid=3191 comm="syz.3.1101" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  101.354532][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.375460][   T28] audit: type=1400 audit(1719582653.434:354): avc:  denied  { getattr } for  pid=3191 comm="syz.3.1101" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  101.406479][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.409554][   T28] audit: type=1400 audit(1719582653.434:355): avc:  denied  { setopt } for  pid=3191 comm="syz.3.1101" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=vsock_socket permissive=1
[  101.425453][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.437588][   T28] audit: type=1400 audit(1719582653.434:356): avc:  denied  { create } for  pid=3191 comm="syz.3.1101" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=packet_socket permissive=1
[  101.448859][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.468168][   T43] device bridge_slave_1 left promiscuous mode
[  101.483619][ T2560] EXT4-fs error (device loop0): ext4_empty_dir:3087: inode #11: comm syz-executor: invalid size
[  101.493375][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.502343][   T43] device bridge_slave_0 left promiscuous mode
[  101.512828][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.522233][   T43] device veth1_macvtap left promiscuous mode
[  101.528173][   T43] device veth0_vlan left promiscuous mode
[  101.567300][  T355] usb 3-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  101.576830][  T355] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.586301][  T355] usb 3-1: config 0 descriptor??
[  101.779179][ T2560] EXT4-fs (loop0): unmounting filesystem.
[  101.936285][ T3204] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.944389][ T3204] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.952091][ T3204] device bridge_slave_0 entered promiscuous mode
[  101.966050][ T3204] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.977014][ T3204] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.984607][ T3204] device bridge_slave_1 entered promiscuous mode
[  102.052655][ T3204] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.059536][ T3204] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.066603][ T3204] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.073444][ T3204] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.105150][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  102.113792][  T371] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.128878][  T371] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.152501][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  102.163788][  T374] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.170658][  T374] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.177907][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  102.185810][  T374] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.192571][  T374] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.200197][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  102.208070][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  102.225367][ T3204] device veth0_vlan entered promiscuous mode
[  102.232100][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  102.257223][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  102.265046][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  102.284986][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  102.298955][ T3218] loop4: detected capacity change from 0 to 256
[  102.316459][ T3204] device veth1_macvtap entered promiscuous mode
[  102.331594][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  102.347806][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  102.373405][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  102.426533][ T3219] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.433431][ T3219] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.441038][ T3219] device bridge_slave_0 entered promiscuous mode
[  102.448098][ T3219] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.454975][ T3219] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.462571][ T3219] device bridge_slave_1 entered promiscuous mode
[  102.504873][ T3219] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.511731][ T3219] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.518841][ T3219] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.525606][ T3219] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.545948][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  102.553540][  T374] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.560742][  T374] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.571226][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  102.579213][  T374] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.586061][  T374] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.610049][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  102.613211][ T3230] loop0: detected capacity change from 0 to 512
[  102.624313][  T374] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.631189][  T374] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.634851][ T3230] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz.0.1111: inline data xattr refers to an external xattr inode
[  102.641730][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  102.653306][ T3230] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1111: couldn't read orphan inode 12 (err -117)
[  102.675290][ T3230] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  102.722858][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  102.737300][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  102.745425][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  102.756383][ T3219] device veth0_vlan entered promiscuous mode
[  102.763014][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  102.771133][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  102.779160][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  102.792146][ T3204] EXT4-fs (loop0): unmounting filesystem.
[  102.956177][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  102.970788][ T3219] device veth1_macvtap entered promiscuous mode
[  102.986650][ T3238] netlink: 272 bytes leftover after parsing attributes in process `syz.0.1113'.
[  102.999308][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  103.010925][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  103.019479][  T355] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  103.029488][   T43] device bridge_slave_1 left promiscuous mode
[  103.035689][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.043386][   T43] device bridge_slave_0 left promiscuous mode
[  103.049516][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.058528][   T43] device veth1_macvtap left promiscuous mode
[  103.064368][   T43] device veth0_vlan left promiscuous mode
[  103.117803][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  103.125834][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  103.134025][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  103.142028][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  103.175936][ T3251] loop3: detected capacity change from 0 to 512
[  103.190229][ T3251] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  103.198479][ T3251] EXT4-fs (loop3): 1 truncate cleaned up
[  103.203969][ T3251] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  103.317506][ T3219] EXT4-fs (loop3): unmounting filesystem.
[  103.395275][ T3262] loop3: detected capacity change from 0 to 512
[  103.428781][ T3262] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:164: inode #12: comm syz.3.1122: inline data xattr refers to an external xattr inode
[  103.445796][ T3266] netlink: 272 bytes leftover after parsing attributes in process `syz.1.1123'.
[  103.455268][ T3262] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1122: couldn't read orphan inode 12 (err -117)
[  103.478769][ T3262] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  103.542103][ T3270] tun0: tun_chr_ioctl cmd 1074025681
[  103.610422][ T3219] EXT4-fs (loop3): unmounting filesystem.
[  103.880770][  T374] usb 3-1: USB disconnect, device number 13
[  103.898273][ T3280] loop4: detected capacity change from 0 to 512
[  103.911386][ T3280] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  103.928754][ T3280] EXT4-fs (loop4): 1 truncate cleaned up
[  103.937337][ T3280] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  104.024043][ T3297] loop0: detected capacity change from 0 to 16
[  104.054269][ T3297] erofs: (device loop0): mounted with root inode @ nid 36.
[  104.062491][   T43] device bridge_slave_1 left promiscuous mode
[  104.072684][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.097080][   T43] device bridge_slave_0 left promiscuous mode
[  104.120637][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.197420][   T43] device veth1_macvtap left promiscuous mode
[  104.204039][   T43] device veth0_vlan left promiscuous mode
[  104.205369][ T3304] loop2: detected capacity change from 0 to 512
[  104.269637][ T3308] syz.0.1135: attempt to access beyond end of device
[  104.269637][ T3308] loop0: rw=0, sector=8, nr_sectors = 16 limit=16
[  104.307370][ T3304] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  104.316764][ T3304] ext4 filesystem being mounted at /root/syzkaller.jXskSf/54/file0 supports timestamps until 2038 (0x7fffffff)
[  104.374150][ T2542] EXT4-fs (loop2): unmounting filesystem.
[  104.452236][ T3302] netlink: 'syz.0.1135': attribute type 12 has an invalid length.
[  104.461546][ T3318] tun0: tun_chr_ioctl cmd 1074025681
[  104.534025][ T3317] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1143'.
[  104.637170][  T355] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  104.730254][ T3063] EXT4-fs (loop4): unmounting filesystem.
[  105.187391][  T355] usb 2-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  105.196261][  T355] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.204939][  T355] usb 2-1: config 0 descriptor??
[  105.672770][ T3357] loop0: detected capacity change from 0 to 16
[  105.686476][ T3357] erofs: (device loop0): mounted with root inode @ nid 36.
[  105.752143][ T3358] netlink: 'syz.0.1155': attribute type 12 has an invalid length.
[  105.907240][   T28] kauditd_printk_skb: 3 callbacks suppressed
[  105.907285][   T28] audit: type=1400 audit(1719582658.044:360): avc:  denied  { accept } for  pid=3354 comm="syz.4.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  106.036423][ T3357] syz.0.1155: attempt to access beyond end of device
[  106.036423][ T3357] loop0: rw=0, sector=8, nr_sectors = 16 limit=16
[  106.337205][  T374] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  106.650418][ T3385] loop4: detected capacity change from 0 to 512
[  106.658880][ T3385] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  106.666814][ T3385] EXT4-fs (loop4): 1 truncate cleaned up
[  106.672349][ T3385] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  106.759691][ T3063] EXT4-fs (loop4): unmounting filesystem.
[  106.787207][  T374] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  106.877181][  T374] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  106.886165][  T374] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  106.894237][  T374] usb 4-1: SerialNumber: syz
[  107.079909][ T3398] loop2: detected capacity change from 0 to 256
[  107.559264][  T307] usb 2-1: USB disconnect, device number 13
[  107.569487][  T488] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65380 sclass=netlink_xfrm_socket pid=488 comm=kworker/0:6
[  107.598364][  T374] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  107.616519][   T28] audit: type=1400 audit(1719582659.804:361): avc:  denied  { read } for  pid=148 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  107.644262][   T28] audit: type=1400 audit(1719582659.824:362): avc:  denied  { read } for  pid=148 comm="dhcpcd" name="n15" dev="tmpfs" ino=7439 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  107.668188][   T28] audit: type=1400 audit(1719582659.824:363): avc:  denied  { open } for  pid=148 comm="dhcpcd" path="/run/udev/data/n15" dev="tmpfs" ino=7439 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  107.692198][   T28] audit: type=1400 audit(1719582659.824:364): avc:  denied  { getattr } for  pid=148 comm="dhcpcd" path="/run/udev/data/n15" dev="tmpfs" ino=7439 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  107.782255][   T28] audit: type=1400 audit(1719582659.974:365): avc:  denied  { create } for  pid=3409 comm="dhcpcd-run-hook" name="resolv.conf.usb0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  107.809883][  T374] usb 4-1: USB disconnect, device number 15
[  107.816066][  T374] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  107.825742][   T28] audit: type=1400 audit(1719582659.974:366): avc:  denied  { write } for  pid=3409 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.usb0.link" dev="tmpfs" ino=7454 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  107.825770][   T28] audit: type=1400 audit(1719582659.974:367): avc:  denied  { append } for  pid=3409 comm="dhcpcd-run-hook" name="resolv.conf.usb0.link" dev="tmpfs" ino=7454 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  107.875977][   T28] audit: type=1400 audit(1719582660.054:368): avc:  denied  { unlink } for  pid=3426 comm="rm" name="resolv.conf.usb0.link" dev="tmpfs" ino=7454 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  108.541140][ T3457] request_module fs-autofs succeeded, but still no fs?
[  108.558941][   T28] audit: type=1400 audit(1719582660.724:369): avc:  denied  { create } for  pid=3454 comm="syz.1.1177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  108.811557][ T3471] loop0: detected capacity change from 0 to 2048
[  108.819971][ T3473] x_tables: ip6_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  108.851901][ T3471] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  108.860979][ T3471] ext4 filesystem being mounted at /root/syzkaller.x8iLw8/19/file1 supports timestamps until 2038 (0x7fffffff)
[  108.887055][ T3204] EXT4-fs (loop0): unmounting filesystem.
[  108.929208][  T374] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65380 sclass=netlink_xfrm_socket pid=374 comm=kworker/1:5
[  109.071772][ T3487] loop2: detected capacity change from 0 to 256
[  109.087989][ T3487] FAT-fs (loop2): Directory bread(block 64) failed
[  109.094330][ T3487] FAT-fs (loop2): Directory bread(block 65) failed
[  109.101106][ T3487] FAT-fs (loop2): Directory bread(block 66) failed
[  109.107657][ T3487] FAT-fs (loop2): Directory bread(block 67) failed
[  109.114090][ T3487] FAT-fs (loop2): Directory bread(block 68) failed
[  109.120479][ T3487] FAT-fs (loop2): Directory bread(block 69) failed
[  109.126883][ T3487] FAT-fs (loop2): Directory bread(block 70) failed
[  109.133284][ T3487] FAT-fs (loop2): Directory bread(block 71) failed
[  109.139597][ T3487] FAT-fs (loop2): Directory bread(block 72) failed
[  109.145870][ T3487] FAT-fs (loop2): Directory bread(block 73) failed
[  109.936597][ T3515] loop4: detected capacity change from 0 to 128
[  110.071556][ T3523] loop0: detected capacity change from 0 to 256
[  110.082637][ T3523] FAT-fs (loop0): Directory bread(block 64) failed
[  110.089684][ T3523] FAT-fs (loop0): Directory bread(block 65) failed
[  110.096031][ T3523] FAT-fs (loop0): Directory bread(block 66) failed
[  110.161482][ T3524] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check.
[  110.374114][ T3523] FAT-fs (loop0): Directory bread(block 67) failed
[  110.381258][ T3510] loop3: detected capacity change from 0 to 40427
[  110.396642][ T3523] FAT-fs (loop0): Directory bread(block 68) failed
[  110.407885][ T3523] FAT-fs (loop0): Directory bread(block 69) failed
[  110.414255][ T3523] FAT-fs (loop0): Directory bread(block 70) failed
[  110.420724][ T3523] FAT-fs (loop0): Directory bread(block 71) failed
[  110.427298][ T3523] FAT-fs (loop0): Directory bread(block 72) failed
[  110.434149][ T3523] FAT-fs (loop0): Directory bread(block 73) failed
[  110.450021][ T3510] F2FS-fs (loop3): Found nat_bits in checkpoint
[  110.499906][ T3537] SELinux:  Context system_u:object_r:gpg_agent_exec_t:s0 is not valid (left unmapped).
[  110.505369][ T3510] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  110.530613][  T326] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65380 sclass=netlink_xfrm_socket pid=326 comm=kworker/0:3
[  110.551231][ T3510] syz.3.1197: attempt to access beyond end of device
[  110.551231][ T3510] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  110.569795][ T3219] syz-executor: attempt to access beyond end of device
[  110.569795][ T3219] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  110.793713][ T3549] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1210'.
[  110.802517][ T3549] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1210'.
[  111.237141][  T371] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  111.307174][  T326] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  111.597212][  T371] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  111.617200][  T371] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  111.637016][  T371] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  111.664683][  T371] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  111.683562][  T371] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.703556][  T371] usb 5-1: config 0 descriptor??
[  111.747578][ T3574] loop0: detected capacity change from 0 to 40427
[  111.769409][ T3574] F2FS-fs (loop0): Found nat_bits in checkpoint
[  111.814466][ T3574] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  111.854502][ T3574] syz.0.1220: attempt to access beyond end of device
[  111.854502][ T3574] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  111.868180][  T326] usb 4-1: New USB device found, idVendor=1bc7, idProduct=1071, bcdDevice=6e.9b
[  111.877021][  T326] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.897130][  T326] usb 4-1: Product: syz
[  111.901108][  T326] usb 4-1: Manufacturer: syz
[  111.905536][  T326] usb 4-1: SerialNumber: syz
[  111.914607][ T3204] syz-executor: attempt to access beyond end of device
[  111.914607][ T3204] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  111.928812][  T326] usb 4-1: config 0 descriptor??
[  111.967557][  T326] cdc_mbim 4-1:0.0: CDC Union missing and no IAD found
[  111.974237][  T326] cdc_mbim 4-1:0.0: bind() failure
[  112.188266][  T371] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  112.204260][  T371] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  112.226857][  T371] plantronics 0003:047F:FFFF.001E: No inputs registered, leaving
[  112.258764][  T371] plantronics 0003:047F:FFFF.001E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  112.464211][  T371] usb 5-1: USB disconnect, device number 11
[  112.499963][ T3592] loop0: detected capacity change from 0 to 40427
[  112.517864][ T3592] F2FS-fs (loop0): invalid crc value
[  112.537777][ T3592] F2FS-fs (loop0): Found nat_bits in checkpoint
[  112.588749][  T488] usb 4-1: USB disconnect, device number 16
[  112.593012][ T3592] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  112.626084][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  112.626099][   T28] audit: type=1400 audit(1719582664.814:372): avc:  denied  { read } for  pid=3599 comm="syz.1.1227" laddr=::1 lport=255 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  112.669110][ T3602] loop1: detected capacity change from 0 to 16
[  112.675931][ T3602] erofs: (device loop1): mounted with root inode @ nid 36.
[  112.680368][ T3204] syz-executor: attempt to access beyond end of device
[  112.680368][ T3204] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  112.966417][ T3627] loop2: detected capacity change from 0 to 128
[  113.060858][ T3629] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1229'.
[  113.069633][ T3629] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1229'.
[  113.379213][ T3631] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check.
[  113.535823][ T3636] loop4: detected capacity change from 0 to 16
[  113.542814][ T3636] erofs: (device loop4): mounted with root inode @ nid 36.
[  113.803198][ T3653] loop3: detected capacity change from 0 to 256
[  113.826545][ T3653] FAT-fs (loop3): Directory bread(block 64) failed
[  113.832986][  T307] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  113.840224][ T3653] FAT-fs (loop3): Directory bread(block 65) failed
[  113.846700][ T3653] FAT-fs (loop3): Directory bread(block 66) failed
[  113.853003][ T3653] FAT-fs (loop3): Directory bread(block 67) failed
[  113.859522][ T3653] FAT-fs (loop3): Directory bread(block 68) failed
[  113.865891][ T3653] FAT-fs (loop3): Directory bread(block 69) failed
[  113.872303][ T3653] FAT-fs (loop3): Directory bread(block 70) failed
[  113.878953][ T3653] FAT-fs (loop3): Directory bread(block 71) failed
[  113.885297][ T3653] FAT-fs (loop3): Directory bread(block 72) failed
[  113.891689][ T3653] FAT-fs (loop3): Directory bread(block 73) failed
[  114.057319][   T24] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  114.317159][  T307] usb 5-1: Using ep0 maxpacket: 16
[  114.373899][ T3664] loop3: detected capacity change from 0 to 40427
[  114.381771][ T3664] F2FS-fs (loop3): invalid crc value
[  114.388223][ T3664] F2FS-fs (loop3): Found nat_bits in checkpoint
[  114.412650][ T3664] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  114.434986][ T3219] syz-executor: attempt to access beyond end of device
[  114.434986][ T3219] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  114.467223][   T24] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  114.577246][   T24] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  114.586174][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  114.593996][   T24] usb 2-1: SerialNumber: syz
[  114.659910][ T3673] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1254'.
[  114.668738][ T3673] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1254'.
[  114.843401][  T307] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  114.852660][  T307] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.860565][  T307] usb 5-1: Product: syz
[  114.864479][  T307] usb 5-1: Manufacturer: syz
[  114.869218][  T307] usb 5-1: SerialNumber: syz
[  114.877716][  T307] r8152-cfgselector 5-1: config 0 descriptor??
[  114.989087][   T28] audit: type=1326 audit(1719582667.184:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3687 comm="syz.2.1261" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22e8375b99 code=0x0
[  115.128565][ T3638] loop4: detected capacity change from 0 to 1024
[  115.141283][ T3638] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  115.185222][ T3638] EXT4-fs error (device loop4): ext4_xattr_ibody_get:603: inode #15: comm syz.4.1242: corrupted in-inode xattr
[  115.197610][ T3638] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz.4.1242: corrupted in-inode xattr
[  115.210146][ T3638] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.1242: bg 0: block 4294967295: invalid block bitmap
[  115.223707][ T3638] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  115.236358][ T3638] EXT4-fs (loop4): This should not happen!! Data will be lost
[  115.236358][ T3638] 
[  115.267220][  T307] r8152-cfgselector 5-1: Unknown version 0x0000
[  115.287200][  T371] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  115.287282][  T307] r8152-cfgselector 5-1: Unknown version 0x0000
[  115.300788][  T307] r8152-cfgselector 5-1: bad CDC descriptors
[  115.317202][  T307] r8152-cfgselector 5-1: Unknown version 0x0000
[  115.318671][   T24] cdc_ether 2-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42
[  115.324133][  T307] r8152-cfgselector 5-1: USB disconnect, device number 12
[  115.394391][ T3702] loop3: detected capacity change from 0 to 16
[  115.401945][ T3702] erofs: (device loop3): mounted with root inode @ nid 36.
[  115.470542][ T3710] netlink: 'syz.3.1262': attribute type 12 has an invalid length.
[  115.483629][ T3710] syz.3.1262: attempt to access beyond end of device
[  115.483629][ T3710] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[  115.569731][  T326] usb 2-1: USB disconnect, device number 14
[  115.595053][  T326] cdc_ether 2-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device
[  115.802766][ T3063] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /root/syzkaller.tOx0BL/40/bus: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  115.828823][  T350] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:5: corrupted in-inode xattr
[  116.056887][  T350] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:5: corrupted in-inode xattr
[  116.069411][ T3063] EXT4-fs (loop4): Inode 15 (ffff888138133930): i_reserved_data_blocks (1) not cleared!
[  116.079381][ T3063] EXT4-fs (loop4): unmounting filesystem.
[  116.087208][  T371] usb 1-1: New USB device found, idVendor=1bc7, idProduct=1071, bcdDevice=6e.9b
[  116.096140][  T371] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.104242][  T371] usb 1-1: Product: syz
[  116.117173][  T371] usb 1-1: Manufacturer: syz
[  116.121785][  T371] usb 1-1: SerialNumber: syz
[  116.130397][  T371] usb 1-1: config 0 descriptor??
[  116.207317][  T371] cdc_mbim 1-1:0.0: CDC Union missing and no IAD found
[  116.256183][  T371] cdc_mbim 1-1:0.0: bind() failure
[  116.440148][  T371] usb 1-1: USB disconnect, device number 10
[  116.486979][ T3755] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.493869][ T3755] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.501077][ T3755] device bridge_slave_0 entered promiscuous mode
[  116.508976][ T3755] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.515819][ T3755] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.523075][ T3755] device bridge_slave_1 entered promiscuous mode
[  116.611464][ T3762] loop3: detected capacity change from 0 to 128
[  116.626221][ T3755] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.633117][ T3755] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.640194][ T3755] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.646967][ T3755] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.674377][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  116.687899][   T24] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.727357][   T24] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.746663][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  116.757661][  T374] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.764516][  T374] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.772758][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  116.781252][  T374] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.788130][  T374] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.820677][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  116.881108][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  116.898245][  T350] device bridge_slave_1 left promiscuous mode
[  116.904222][  T350] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.921767][  T350] device bridge_slave_0 left promiscuous mode
[  116.931642][  T350] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.210500][  T350] device veth1_macvtap left promiscuous mode
[  117.218222][  T350] device veth0_vlan left promiscuous mode
[  117.363983][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  117.373673][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  117.387041][ T3755] device veth0_vlan entered promiscuous mode
[  117.396862][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  117.405145][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  117.419591][ T3755] device veth1_macvtap entered promiscuous mode
[  117.426451][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  117.434151][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  117.447299][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  117.459905][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  117.472424][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  117.488290][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  117.496591][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  117.505009][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  117.513354][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  118.334890][   T60] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  118.363521][ T3812] loop2: detected capacity change from 0 to 512
[  118.382195][ T3812] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  118.391914][ T3812] ext4 filesystem being mounted at /root/syzkaller.jXskSf/96/file0 supports timestamps until 2038 (0x7fffffff)
[  118.604047][ T2542] EXT4-fs (loop2): unmounting filesystem.
[  118.727234][   T60] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  118.754819][ T3829] fuse: Invalid rootmode
[  118.760255][ T3829] loop2: detected capacity change from 0 to 256
[  118.775089][   T28] audit: type=1400 audit(1719582670.964:374): avc:  denied  { mounton } for  pid=3828 comm="syz.2.1294" path="/root/syzkaller.jXskSf/98/file1/file0" dev="loop2" ino=1048710 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  118.781034][ T2542] FAT-fs (loop2): error, corrupted directory (invalid entries)
[  118.804351][ T3831] loop4: detected capacity change from 0 to 128
[  118.807841][ T2542] FAT-fs (loop2): Filesystem has been set read-only
[  118.813654][   T24] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  118.820776][ T2542] FAT-fs (loop2): error, corrupted directory (invalid entries)
[  118.837560][   T60] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  118.847235][   T60] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  118.856396][   T60] usb 1-1: SerialNumber: syz
[  119.014176][ T3833] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check.
[  119.287552][ T3838] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.294599][ T3838] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.301948][ T3838] device bridge_slave_0 entered promiscuous mode
[  119.310607][ T3838] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.317504][ T3838] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.324550][ T3838] device bridge_slave_1 entered promiscuous mode
[  119.388642][ T3838] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.395644][ T3838] bridge0: port 2(bridge_slave_1) entered forwarding state
[  119.402737][ T3838] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.409524][ T3838] bridge0: port 1(bridge_slave_0) entered forwarding state
[  119.434720][ T3849] loop3: detected capacity change from 0 to 512
[  119.437784][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  119.449645][  T307] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.456716][  T307] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.458640][ T3849] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  119.472347][   T24] usb 2-1: New USB device found, idVendor=1bc7, idProduct=1071, bcdDevice=6e.9b
[  119.472672][ T3849] ext4 filesystem being mounted at /root/syzkaller.xHFyxx/42/file0 supports timestamps until 2038 (0x7fffffff)
[  119.481526][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.497295][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  119.509227][  T488] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.516071][  T488] bridge0: port 1(bridge_slave_0) entered forwarding state
[  119.523784][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  119.524284][   T24] usb 2-1: Product: syz
[  119.531775][  T488] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.539735][   T24] usb 2-1: Manufacturer: syz
[  119.542439][  T488] bridge0: port 2(bridge_slave_1) entered forwarding state
[  119.547029][   T24] usb 2-1: SerialNumber: syz
[  119.563224][   T24] usb 2-1: config 0 descriptor??
[  119.569748][ T3219] EXT4-fs (loop3): unmounting filesystem.
[  119.576676][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  119.584488][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  119.598930][ T3838] device veth0_vlan entered promiscuous mode
[  119.609071][   T24] cdc_mbim 2-1:0.0: CDC Union missing and no IAD found
[  119.611465][ T3838] device veth1_macvtap entered promiscuous mode
[  119.622049][   T24] cdc_mbim 2-1:0.0: bind() failure
[  119.633593][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  119.641884][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  119.650210][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  119.658549][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  119.665917][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  119.688714][   T60] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  119.700389][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  119.724907][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  119.737019][   T28] audit: type=1400 audit(1719582671.924:375): avc:  denied  { search } for  pid=148 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  119.740268][ T3858] loop3: detected capacity change from 0 to 16
[  119.785788][   T28] audit: type=1400 audit(1719582671.974:376): avc:  denied  { read } for  pid=3863 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=300 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  119.835846][ T3858] erofs: (device loop3): mounted with root inode @ nid 36.
[  119.893255][ T1046] usb 1-1: USB disconnect, device number 11
[  119.908911][ T1046] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  119.934234][   T28] audit: type=1400 audit(1719582672.024:377): avc:  denied  { open } for  pid=3863 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=300 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  119.951837][ T3872] loop2: detected capacity change from 0 to 256
[  120.007891][ T3873] netlink: 'syz.3.1305': attribute type 12 has an invalid length.
[  120.040346][   T43] device bridge_slave_1 left promiscuous mode
[  120.046958][ T3873] syz.3.1305: attempt to access beyond end of device
[  120.046958][ T3873] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[  120.067617][ T3872] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  120.071798][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.084502][ T3872] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x111a0c70)
[  120.101414][   T43] device bridge_slave_0 left promiscuous mode
[  120.101773][   T28] audit: type=1400 audit(1719582672.024:378): avc:  denied  { getattr } for  pid=3863 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=300 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  120.108086][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.139383][ T3872] exFAT-fs (loop2): invalid boot region
[  120.166026][ T3872] exFAT-fs (loop2): failed to recognize exfat type
[  120.174101][   T28] audit: type=1400 audit(1719582672.334:379): avc:  denied  { write } for  pid=3862 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=299 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  120.198588][   T28] audit: type=1400 audit(1719582672.334:380): avc:  denied  { add_name } for  pid=3862 comm="dhcpcd-run-hook" name="resolv.conf.usb0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  120.223726][   T43] device veth1_macvtap left promiscuous mode
[  120.223793][   T28] audit: type=1400 audit(1719582672.374:381): avc:  denied  { remove_name } for  pid=3883 comm="rm" name="resolv.conf.usb0.link" dev="tmpfs" ino=8346 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  120.231817][   T43] device veth0_vlan left promiscuous mode
[  120.700229][ T3928] loop2: detected capacity change from 0 to 256
[  120.707052][ T3928] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  120.715936][ T3928] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x111a0c70)
[  120.726106][ T3928] exFAT-fs (loop2): invalid boot region
[  120.731809][ T3928] exFAT-fs (loop2): failed to recognize exfat type
[  120.751741][ T3932] loop0: detected capacity change from 0 to 256
[  120.817148][  T307] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  120.859270][ T3934] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1324'.
[  120.880063][ T3934] loop0: detected capacity change from 0 to 512
[  120.893747][ T3934] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.1324: casefold flag without casefold feature
[  120.906392][ T3934] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.1324: missing EA_INODE flag
[  120.918226][ T3934] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1324: error while reading EA inode 12 err=-117
[  120.930555][ T3934] EXT4-fs (loop0): 1 orphan inode deleted
[  120.936134][ T3934] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  120.965137][ T3204] EXT4-fs (loop0): unmounting filesystem.
[  121.337726][  T307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  121.348660][  T307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  121.361142][  T307] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  121.374130][  T307] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  121.383432][  T307] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.392351][  T307] usb 4-1: config 0 descriptor??
[  121.417377][  T326] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  121.446912][ T1046] usb 2-1: USB disconnect, device number 15
[  121.690653][ T3968] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  121.783162][ T3970] x_tables: ip6_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  121.807542][  T326] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  121.911738][  T307] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  121.926925][  T307] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  121.934633][  T326] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  121.950956][  T326] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  121.972876][  T307] plantronics 0003:047F:FFFF.001F: No inputs registered, leaving
[  121.987238][  T326] usb 3-1: SerialNumber: syz
[  122.018179][  T307] plantronics 0003:047F:FFFF.001F: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  122.207378][ T3985] loop4: detected capacity change from 0 to 512
[  122.217079][ T3985] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  122.234474][ T3985] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  122.236156][   T60] usb 4-1: USB disconnect, device number 17
[  122.267761][ T3985] EXT4-fs (loop4): 1 truncate cleaned up
[  122.273384][ T3985] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  122.430006][ T3755] EXT4-fs (loop4): unmounting filesystem.
[  122.526227][ T3995] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1346'.
[  122.542465][ T3995] loop1: detected capacity change from 0 to 512
[  122.550831][ T3995] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz.1.1346: casefold flag without casefold feature
[  122.563884][ T3995] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.1346: missing EA_INODE flag
[  122.575696][ T3995] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1346: error while reading EA inode 12 err=-117
[  122.588198][ T3995] EXT4-fs (loop1): 1 orphan inode deleted
[  122.593745][ T3995] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  122.630039][ T1427] EXT4-fs (loop1): unmounting filesystem.
[  122.683491][   T28] audit: type=1400 audit(1719582674.874:382): avc:  denied  { getopt } for  pid=4008 comm="syz.1.1351" lport=141 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  122.684055][ T4009] netlink: 'syz.1.1351': attribute type 4 has an invalid length.
[  122.718751][  T326] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42
[  122.734960][ T4009] x_tables: duplicate underflow at hook 2
[  122.796904][ T4017] loop4: detected capacity change from 0 to 512
[  122.806260][ T4017] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  122.834356][ T4017] EXT4-fs (loop4): 1 truncate cleaned up
[  122.840000][ T4017] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  122.921491][  T326] usb 3-1: USB disconnect, device number 14
[  122.942067][  T326] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device
[  122.966269][ T3755] EXT4-fs (loop4): unmounting filesystem.
[  123.003601][ T4039] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  123.274242][ T4049] loop4: detected capacity change from 0 to 2048
[  123.299818][ T4052] loop3: detected capacity change from 0 to 256
[  123.346863][ T4052] FAT-fs (loop3): Unrecognized mount option "" or missing value
[  123.361229][ T4049] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  123.438861][   T28] audit: type=1400 audit(1719582675.634:383): avc:  denied  { view } for  pid=4051 comm="syz.3.1363" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  123.498386][ T4052] loop3: detected capacity change from 0 to 512
[  123.600488][ T4052] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  123.604010][ T4044] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1360'.
[  123.627429][ T4052] ext4 filesystem being mounted at /root/syzkaller.xHFyxx/51/file0 supports timestamps until 2038 (0x7fffffff)
[  123.778607][ T4044] loop0: detected capacity change from 0 to 512
[  123.786529][ T4049] IPv6: Can't replace route, no match found
[  123.831445][ T3755] EXT4-fs (loop4): unmounting filesystem.
[  123.836182][ T4072] netlink: 'syz.1.1365': attribute type 4 has an invalid length.
[  123.852424][ T4044] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.1360: casefold flag without casefold feature
[  123.877081][ T4072] x_tables: duplicate underflow at hook 2
[  123.893723][ T4044] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.1360: missing EA_INODE flag
[  123.918964][ T4044] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1360: error while reading EA inode 12 err=-117
[  123.931764][ T3219] EXT4-fs (loop3): unmounting filesystem.
[  123.965380][ T4044] EXT4-fs (loop0): 1 orphan inode deleted
[  123.987373][ T4044] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  124.050222][ T3204] EXT4-fs (loop0): unmounting filesystem.
[  124.061294][ T4092] loop2: detected capacity change from 0 to 2048
[  124.099138][ T4092]  loop2: p1 p2 p3
[  124.127520][ T4102] loop1: detected capacity change from 0 to 128
[  124.154051][  T329] udevd[329]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  124.154082][  T695] udevd[695]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  124.164961][  T422] udevd[422]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  124.186255][ T4106] loop2: detected capacity change from 0 to 256
[  124.187789][ T4102] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  124.211119][ T4104] loop4: detected capacity change from 0 to 2048
[  124.257965][  T695] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  124.260913][ T4106] loop2: detected capacity change from 0 to 256
[  124.272993][  T695] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  124.283408][ T4104] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  124.297294][ T4106] exfat: Deprecated parameter 'utf8'
[  124.300314][  T695] Buffer I/O error on dev loop2, logical block 0, async page read
[  124.307155][ T4106] exfat: Unexpected value for 'utf8'
[  124.336294][ T4115] loop1: detected capacity change from 0 to 256
[  124.374108][ T4115] FAT-fs (loop1): Unrecognized mount option "" or missing value
[  124.402109][ T4104] IPv6: Can't replace route, no match found
[  124.432059][ T4115] loop1: detected capacity change from 0 to 512
[  124.447637][ T3755] EXT4-fs (loop4): unmounting filesystem.
[  124.513635][ T4115] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  124.528959][ T4115] ext4 filesystem being mounted at /root/syzkaller.JpmQpz/171/file0 supports timestamps until 2038 (0x7fffffff)
[  124.591570][ T4144] syz.4.1390[4144] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.591665][ T4144] syz.4.1390[4144] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.594242][ T4146] loop3: detected capacity change from 0 to 128
[  124.628296][ T4146] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  124.637603][ T1427] EXT4-fs (loop1): unmounting filesystem.
[  124.997154][ T4171] loop1: detected capacity change from 0 to 512
[  125.004018][ T4171] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  125.015245][ T4171] EXT4-fs (loop1): 1 truncate cleaned up
[  125.020782][ T4171] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  125.055741][ T1427] EXT4-fs (loop1): unmounting filesystem.
[  125.090844][ T4176] loop1: detected capacity change from 0 to 256
[  125.099132][ T4178] loop0: detected capacity change from 0 to 128
[  125.109656][ T4176] FAT-fs (loop1): Unrecognized mount option "" or missing value
[  125.117352][  T488] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  125.117888][ T4178] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  125.155790][ T4180] syz.0.1405[4180] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.155847][ T4180] syz.0.1405[4180] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.182553][ T4176] loop1: detected capacity change from 0 to 512
[  125.209098][ T4176] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  125.220191][ T4176] ext4 filesystem being mounted at /root/syzkaller.JpmQpz/177/file0 supports timestamps until 2038 (0x7fffffff)
[  125.278402][ T1427] EXT4-fs (loop1): unmounting filesystem.
[  125.517353][  T371] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  125.545530][ T4205] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1415'.
[  125.554405][ T4205] tipc: Started in network mode
[  125.559096][ T4205] tipc: Node identity @emory.en, cluster identity 8
[  125.575361][ T4207] loop4: detected capacity change from 0 to 128
[  125.583155][ T4207] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  125.585871][ T4209] syz.3.1417[4209] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.598429][ T4209] syz.3.1417[4209] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.697258][  T488] usb 3-1: New USB device found, idVendor=1bc7, idProduct=1071, bcdDevice=6e.9b
[  125.717296][  T488] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.725655][  T488] usb 3-1: Product: syz
[  125.729969][  T488] usb 3-1: Manufacturer: syz
[  125.734371][  T488] usb 3-1: SerialNumber: syz
[  125.745909][  T488] usb 3-1: config 0 descriptor??
[  125.751034][   T28] audit: type=1400 audit(1719582677.944:384): avc:  denied  { setcurrent } for  pid=4216 comm="syz.3.1421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  125.766026][ T4220] loop3: detected capacity change from 0 to 256
[  125.803070][ T4221] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1420'.
[  125.811890][ T4221] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1420'.
[  125.839627][ T4220] FAT-fs (loop3): Unrecognized mount option "" or missing value
[  125.959763][   T28] audit: type=1401 audit(1719582677.944:385): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t
[  125.976906][  T371] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  125.992415][ T4220] loop3: detected capacity change from 0 to 512
[  125.998611][  T371] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  126.008246][  T371] usb 1-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  126.017062][  T371] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.017566][  T488] cdc_mbim 3-1:0.0: CDC Union missing and no IAD found
[  126.027665][  T371] usb 1-1: config 0 descriptor??
[  126.031692][  T488] cdc_mbim 3-1:0.0: bind() failure
[  126.039210][ T4220] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  126.050112][ T4220] ext4 filesystem being mounted at /root/syzkaller.xHFyxx/61/file0 supports timestamps until 2038 (0x7fffffff)
[  126.099641][ T3219] EXT4-fs (loop3): unmounting filesystem.
[  126.324090][ T4230] netlink: 'syz.3.1424': attribute type 1 has an invalid length.
[  126.341086][ T2682] usb 3-1: USB disconnect, device number 15
[  126.504828][ T4240] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1428'.
[  126.513687][ T4240] tipc: Started in network mode
[  126.518569][ T4240] tipc: Node identity @emory.en, cluster identity 8
[  126.520208][  T371] hid-rmi 0003:06CB:81A7.0020: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.0-1/input0
[  126.580758][ T4251] loop1: detected capacity change from 0 to 512
[  126.590117][ T4251] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  126.600792][ T4251] EXT4-fs (loop1): 1 truncate cleaned up
[  126.606288][ T4251] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  126.640405][ T1427] EXT4-fs (loop1): unmounting filesystem.
[  126.660874][ T4259] syz.1.1435[4259] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.660937][ T4259] syz.1.1435[4259] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.730634][   T60] usb 1-1: USB disconnect, device number 12
[  126.760797][ T4270] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1440'.
[  126.769627][ T4270] tipc: Cannot configure node identity twice
[  126.942544][ T4282] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1439'.
[  126.951416][ T4282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1439'.
[  127.150484][ T4289] loop4: detected capacity change from 0 to 512
[  127.150753][ T4288] loop2: detected capacity change from 0 to 256
[  127.163911][ T4288] FAT-fs (loop2): Unrecognized mount option "" or missing value
[  127.170880][ T4289] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  127.179833][ T4289] EXT4-fs (loop4): orphan cleanup on readonly fs
[  127.186156][ T4289] Quota error (device loop4): v2_read_file_info: Block with free entry too big (32513 >= 6).
[  127.196491][ T4289] EXT4-fs warning (device loop4): ext4_enable_quotas:6987: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  127.225617][ T4289] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  127.234889][ T4289] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #16: comm syz.4.1447: casefold flag without casefold feature
[  127.236571][ T4288] loop2: detected capacity change from 0 to 512
[  127.250735][ T4289] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1447: bg 0: block 40: padding at end of block bitmap is not set
[  127.268129][ T4289] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6157: Corrupt filesystem
[  127.276895][ T4289] EXT4-fs (loop4): 1 truncate cleaned up
[  127.282514][ T4289] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  127.299106][ T4288] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  127.307960][ T4288] ext4 filesystem being mounted at /root/syzkaller.QvdW9r/16/file0 supports timestamps until 2038 (0x7fffffff)
[  127.320249][ T3755] EXT4-fs (loop4): unmounting filesystem.
[  127.376289][ T4303] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1452'.
[  127.385374][ T4303] tipc: Started in network mode
[  127.390546][ T4303] tipc: Node identity @emory.en, cluster identity 8
[  127.391397][ T3838] EXT4-fs (loop2): unmounting filesystem.
[  127.663960][   T28] audit: type=1400 audit(1719582679.854:386): avc:  denied  { read } for  pid=4332 comm="syz.1.1464" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  127.717178][  T371] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  127.755408][   T28] audit: type=1400 audit(1719582679.944:387): avc:  denied  { read append } for  pid=4334 comm="syz.1.1465" name="loop-control" dev="devtmpfs" ino=113 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  127.785125][   T28] audit: type=1400 audit(1719582679.944:388): avc:  denied  { open } for  pid=4334 comm="syz.1.1465" path="/dev/loop-control" dev="devtmpfs" ino=113 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  127.811177][   T28] audit: type=1400 audit(1719582679.944:389): avc:  denied  { ioctl } for  pid=4334 comm="syz.1.1465" path="/dev/loop-control" dev="devtmpfs" ino=113 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  127.957145][  T371] usb 1-1: Using ep0 maxpacket: 32
[  128.157241][  T371] usb 1-1: config 1 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 128, changing to 11
[  128.168377][  T371] usb 1-1: config 1 interface 0 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  128.181983][  T371] usb 1-1: config 1 interface 0 has no altsetting 0
[  128.369414][  T371] usb 1-1: New USB device found, idVendor=18d1, idProduct=5030, bcdDevice= 0.40
[  128.378498][  T371] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.386303][  T371] usb 1-1: Product: ч
[  128.393397][  T371] usb 1-1: Manufacturer: ⠁
[  128.398169][  T371] usb 1-1: SerialNumber: 껵ભ럤⩮啥ᦛ瓅蚟䤠
[  128.401077][ T4364] loop3: detected capacity change from 0 to 256
[  128.560431][ T4369] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1473'.
[  128.569301][ T4369] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1473'.
[  128.982187][   T28] audit: type=1326 audit(1719582681.174:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4374 comm="syz.1.1479" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f14e2175b99 code=0x0
[  129.005888][ T4315] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.012915][ T4315] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.022503][ T4315] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.029378][ T4315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  129.036486][ T4315] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.043272][ T4315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.049329][   T28] audit: type=1400 audit(1719582681.244:391): avc:  denied  { create } for  pid=4374 comm="syz.1.1479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  129.050512][ T4315] device bridge0 entered promiscuous mode
[  129.070975][   T28] audit: type=1400 audit(1719582681.244:392): avc:  denied  { write } for  pid=4374 comm="syz.1.1479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  129.217555][  T371] usbhid 1-1:1.0: can't add hid device: -71
[  129.223725][  T371] usbhid: probe of 1-1:1.0 failed with error -71
[  129.232352][  T371] usb 1-1: USB disconnect, device number 13
[  129.312985][ T4390] loop4: detected capacity change from 0 to 256
[  129.321629][ T4390] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3289bd7c, utbl_chksum : 0xe619d30d)
[  129.625339][ T4401] loop4: detected capacity change from 0 to 256
[  129.976241][ T4418] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1493'.
[  129.985034][ T4418] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1493'.
[  130.097302][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  130.522444][ T4429] loop3: detected capacity change from 0 to 256
[  130.542719][ T4429] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  130.578434][ T4433] loop3: detected capacity change from 0 to 256
[  130.867205][ T2682] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  130.957162][ T4461] loop4: detected capacity change from 0 to 256
[  130.970579][ T4461] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  131.039622][ T4465] loop4: detected capacity change from 0 to 256
[  131.052642][ T4465] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3289bd7c, utbl_chksum : 0xe619d30d)
[  131.258390][ T4480] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1515'.
[  131.497219][ T2682] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.508007][ T2682] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.518294][ T2682] usb 1-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  131.527199][ T2682] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.537494][ T2682] usb 1-1: config 0 descriptor??
[  131.782739][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  131.902832][   T28] audit: type=1326 audit(1719582683.934:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  131.951232][   T28] audit: type=1326 audit(1719582683.934:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  131.987928][   T28] audit: type=1326 audit(1719582683.944:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.015664][ T4497] loop1: detected capacity change from 0 to 256
[  132.020738][   T28] audit: type=1326 audit(1719582683.944:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.025517][ T4497] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  132.056987][   T28] audit: type=1326 audit(1719582683.944:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.071238][ T4501] loop4: detected capacity change from 0 to 256
[  132.080526][   T28] audit: type=1326 audit(1719582683.944:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.110217][   T28] audit: type=1326 audit(1719582683.944:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.141858][   T28] audit: type=1326 audit(1719582683.944:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.167249][ T2682] hid-rmi 0003:06CB:81A7.0021: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.0-1/input0
[  132.187967][   T28] audit: type=1326 audit(1719582683.954:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.212964][   T28] audit: type=1326 audit(1719582683.954:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4488 comm="syz.3.1521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  132.320692][ T4515] raw_sendmsg: syz.4.1532 forgot to set AF_INET. Fix it!
[  132.369149][   T60] usb 1-1: USB disconnect, device number 14
[  132.597172][  T371] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  132.717171][ T1046] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  132.837210][  T371] usb 5-1: Using ep0 maxpacket: 32
[  132.922736][ T4515] loop4: detected capacity change from 0 to 1024
[  132.938072][ T4515] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  132.977207][ T1046] usb 4-1: Using ep0 maxpacket: 32
[  132.997223][  T371] usb 5-1: unable to get BOS descriptor or descriptor too short
[  133.054232][ T4528] __nla_validate_parse: 1 callbacks suppressed
[  133.054265][ T4528] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1535'.
[  133.069143][ T4528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1535'.
[  133.082998][  T371] usb 5-1: unable to read config index 0 descriptor/start: -71
[  133.090895][  T371] usb 5-1: can't read configurations, error -71
[  133.201635][ T4532] loop1: detected capacity change from 0 to 256
[  133.215051][ T4532] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  133.297272][ T1046] usb 4-1: config 1 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 128, changing to 11
[  133.308434][ T1046] usb 4-1: config 1 interface 0 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  133.322508][ T1046] usb 4-1: config 1 interface 0 has no altsetting 0
[  133.344892][ T4539] tipc: Started in network mode
[  133.349629][ T4539] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[  133.358714][ T4539] tipc: Enabled bearer <udp:syz0>, priority 10
[  133.365392][ T4539] netlink: 'syz.2.1539': attribute type 13 has an invalid length.
[  133.472794][ T4541] loop2: detected capacity change from 0 to 40427
[  133.479839][ T4541] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  133.487557][ T4541] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  133.487626][ T1046] usb 4-1: New USB device found, idVendor=18d1, idProduct=5030, bcdDevice= 0.40
[  133.497635][ T4541] F2FS-fs (loop2): Found nat_bits in checkpoint
[  133.504591][ T1046] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.518404][ T1046] usb 4-1: Product: ч
[  133.522322][ T1046] usb 4-1: Manufacturer: ⠁
[  133.526742][ T1046] usb 4-1: SerialNumber: 껵ભ럤⩮啥ᦛ瓅蚟䤠
[  133.538815][ T4541] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  133.545677][ T4541] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  133.553327][ T3755] EXT4-fs (loop4): unmounting filesystem.
[  133.877832][ T4553] overlayfs: missing 'lowerdir'
[  133.950819][ T4555] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  134.083473][ T4561] loop1: detected capacity change from 0 to 256
[  134.114961][ T4561] exfat: Deprecated parameter 'utf8'
[  134.122133][ T4561] exfat: Deprecated parameter 'namecase'
[  134.128234][ T4561] exfat: Deprecated parameter 'utf8'
[  134.302445][ T4561] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  134.356096][ T4519] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.363136][ T4519] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.377467][ T2682] tipc: Node number set to 4269801491
[  134.388129][ T4561] exFAT-fs (loop1): error, tried to truncate zeroed cluster.
[  134.395802][ T4561] exFAT-fs (loop1): error, tried to truncate zeroed cluster.
[  134.409086][ T4519] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.415955][ T4519] bridge0: port 2(bridge_slave_1) entered forwarding state
[  134.423072][ T4519] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.429841][ T4519] bridge0: port 1(bridge_slave_0) entered forwarding state
[  134.437447][ T4519] device bridge0 entered promiscuous mode
[  134.499537][ T4570] netlink: 23 bytes leftover after parsing attributes in process `syz.2.1547'.
[  134.567242][ T1046] usbhid 4-1:1.0: can't add hid device: -71
[  134.573260][ T1046] usbhid: probe of 4-1:1.0 failed with error -71
[  134.580731][ T1046] usb 4-1: USB disconnect, device number 18
[  134.840348][ T2190] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  134.901631][ T4582] loop0: detected capacity change from 0 to 512
[  134.914679][ T4582] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  134.924058][ T4582] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  134.932407][ T4582] System zones: 0-2, 18-18, 34-35
[  134.938461][ T4582] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  134.945294][ T4588] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  134.959849][ T4582] EXT4-fs (loop0): re-mounted. Quota mode: none.
[  134.966600][ T4582] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  134.975794][ T4582] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  134.983785][ T4582] EXT4-fs (loop0): re-mounted. Quota mode: none.
[  134.990649][ T4582] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 3: comm syz.0.1553: path /root/syzkaller.x8iLw8/77/file0: bad entry in directory: inode out of bounds - offset=24, inode=134217739, rec_len=20, size=2048 fake=0
[  135.041816][ T3204] EXT4-fs (loop0): unmounting filesystem.
[  135.087223][ T2190] usb 3-1: Using ep0 maxpacket: 32
[  135.100302][ T4597] loop0: detected capacity change from 0 to 256
[  135.116348][ T4599] netlink: 23 bytes leftover after parsing attributes in process `syz.4.1560'.
[  135.125650][ T4597] exfat: Deprecated parameter 'utf8'
[  135.130967][ T4597] exfat: Deprecated parameter 'namecase'
[  135.136502][ T4597] exfat: Deprecated parameter 'utf8'
[  135.144309][ T4597] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  135.164376][ T4597] exFAT-fs (loop0): error, tried to truncate zeroed cluster.
[  135.183433][ T4577] loop2: detected capacity change from 0 to 1024
[  135.185659][ T4597] exFAT-fs (loop0): error, tried to truncate zeroed cluster.
[  135.204026][ T4577] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  135.267159][ T2190] usb 3-1: unable to get BOS descriptor or descriptor too short
[  135.327161][ T2190] usb 3-1: unable to read config index 0 descriptor/start: -71
[  135.337422][ T2190] usb 3-1: can't read configurations, error -71
[  135.371262][ T4619] overlayfs: upper fs does not support tmpfile.
[  135.417223][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  135.451179][ T4630] netlink: 23 bytes leftover after parsing attributes in process `syz.1.1572'.
[  135.720111][ T3838] EXT4-fs (loop2): unmounting filesystem.
[  135.797184][  T371] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  135.826709][ T4653] overlayfs: upper fs does not support tmpfile.
[  135.852205][ T4657] netlink: 23 bytes leftover after parsing attributes in process `syz.2.1585'.
[  136.047145][  T371] usb 1-1: Using ep0 maxpacket: 16
[  136.227202][ T2190] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  136.327228][  T326] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  136.327239][  T371] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  136.327262][  T371] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.351722][  T371] usb 1-1: Product: syz
[  136.355605][  T371] usb 1-1: Manufacturer: syz
[  136.360065][  T371] usb 1-1: SerialNumber: syz
[  136.364867][  T371] r8152-cfgselector 1-1: config 0 descriptor??
[  136.464918][ T4679] overlayfs: upper fs does not support tmpfile.
[  136.482760][ T4681] loop1: detected capacity change from 0 to 256
[  136.489655][ T4681] exfat: Unknown parameter '��0xffffffffffffffff���2��6'
[  136.577147][  T326] usb 4-1: Using ep0 maxpacket: 32
[  136.587204][ T2190] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.597910][ T2190] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.614051][ T4639] loop0: detected capacity change from 0 to 1024
[  136.620301][ T2190] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  136.638664][ T2190] usb 3-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  136.647982][ T2190] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.656611][ T2190] usb 3-1: config 0 descriptor??
[  136.666744][ T4668] loop3: detected capacity change from 0 to 1024
[  136.681263][ T4639] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  136.681769][ T4668] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  136.748600][ T4639] EXT4-fs error (device loop0): ext4_xattr_ibody_get:603: inode #15: comm syz.0.1577: corrupted in-inode xattr
[  136.760907][ T4639] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz.0.1577: corrupted in-inode xattr
[  136.773381][ T4639] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.1577: bg 0: block 4294967295: invalid block bitmap
[  136.786719][ T4639] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  136.799088][  T326] usb 4-1: unable to get BOS descriptor or descriptor too short
[  136.806646][ T4639] EXT4-fs (loop0): This should not happen!! Data will be lost
[  136.806646][ T4639] 
[  136.827190][  T371] r8152-cfgselector 1-1: Unknown version 0x0000
[  136.847172][  T371] r8152-cfgselector 1-1: Unknown version 0x0000
[  136.853296][  T371] r8152-cfgselector 1-1: bad CDC descriptors
[  136.867286][  T326] usb 4-1: unable to read config index 0 descriptor/start: -71
[  136.874668][  T326] usb 4-1: can't read configurations, error -71
[  136.877185][  T371] r8152-cfgselector 1-1: Unknown version 0x0000
[  136.888024][  T371] r8152-cfgselector 1-1: USB disconnect, device number 15
[  137.252560][ T3219] EXT4-fs (loop3): unmounting filesystem.
[  137.390353][ T3204] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /root/syzkaller.x8iLw8/85/bus: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  137.416524][   T43] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:2: corrupted in-inode xattr
[  137.429100][   T43] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:2: corrupted in-inode xattr
[  137.441528][ T3204] EXT4-fs (loop0): Inode 15 (ffff88812e216138): i_reserved_data_blocks (1) not cleared!
[  137.452985][ T3204] EXT4-fs (loop0): unmounting filesystem.
[  137.515750][ T4691] loop3: detected capacity change from 0 to 40427
[  137.524984][    T8] tipc: Left network mode
[  137.542482][ T4691] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  137.550571][ T4691] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  137.560468][ T4691] F2FS-fs (loop3): Found nat_bits in checkpoint
[  137.586791][ T4706] loop1: detected capacity change from 0 to 512
[  137.616151][ T4706] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  137.626309][ T4706] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  137.637196][ T4706] System zones: 0-2, 18-18, 34-35
[  137.643383][ T4691] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  137.646678][ T4706] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  137.659661][ T4691] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  137.690191][ T4706] EXT4-fs (loop1): re-mounted. Quota mode: none.
[  137.698052][ T4706] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  137.708719][ T4706] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  137.716535][ T4706] EXT4-fs (loop1): re-mounted. Quota mode: none.
[  137.722836][ T2190] usbhid 3-1:0.0: can't add hid device: -71
[  137.729183][   T28] kauditd_printk_skb: 27 callbacks suppressed
[  137.729197][   T28] audit: type=1400 audit(1719582689.924:434): avc:  denied  { execute } for  pid=4690 comm="syz.3.1599" path="/root/syzkaller.xHFyxx/92/file0/bus" dev="loop3" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  137.730398][ T4706] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 3: comm syz.1.1607: path /root/syzkaller.JpmQpz/227/file0: bad entry in directory: inode out of bounds - offset=24, inode=134217739, rec_len=20, size=2048 fake=0
[  137.735192][ T2190] usbhid: probe of 3-1:0.0 failed with error -71
[  137.821645][ T1427] EXT4-fs (loop1): unmounting filesystem.
[  137.831710][   T43] kworker/u4:2: attempt to access beyond end of device
[  137.831710][   T43] loop3: rw=1, sector=45096, nr_sectors = 8 limit=40427
[  137.846376][ T2190] usb 3-1: USB disconnect, device number 17
[  137.876397][ T4711] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.883838][ T4711] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.891357][ T4711] device bridge_slave_0 entered promiscuous mode
[  137.907944][ T4711] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.914900][ T4711] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.922694][ T4711] device bridge_slave_1 entered promiscuous mode
[  138.291318][    T8] device bridge_slave_1 left promiscuous mode
[  138.298448][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.320604][    T8] device bridge_slave_0 left promiscuous mode
[  138.353410][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.364769][    T8] device veth1_macvtap left promiscuous mode
[  138.371130][    T8] device veth0_vlan left promiscuous mode
[  138.433453][   T28] audit: type=1400 audit(1719582690.624:435): avc:  denied  { read } for  pid=4713 comm="syz.2.1609" dev="sockfs" ino=36961 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  138.509741][ T4732] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1614'.
[  138.531865][ T4735] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1614'.
[  138.578339][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  138.585559][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  138.594322][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  138.898859][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  138.907006][  T326] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.913880][  T326] bridge0: port 1(bridge_slave_0) entered forwarding state
[  138.938721][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  138.966953][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  138.977237][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  138.985404][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  138.993901][  T488] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.000849][  T488] bridge0: port 2(bridge_slave_1) entered forwarding state
[  139.008405][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  139.016194][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  139.026063][ T4711] device veth0_vlan entered promiscuous mode
[  139.033926][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  139.042087][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  139.058700][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  139.072070][ T4711] device veth1_macvtap entered promiscuous mode
[  139.079715][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  139.094996][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  139.104317][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  139.114434][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  139.122953][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  139.139558][ T4749] loop3: detected capacity change from 0 to 40427
[  139.147596][ T4749] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  139.155854][ T4749] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  139.166270][ T4749] F2FS-fs (loop3): Found nat_bits in checkpoint
[  139.209767][ T4749] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  139.218378][ T4749] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  139.335802][ T4763] input: syz1 as /devices/virtual/input/input19
[  139.516662][  T342] kworker/u4:3: attempt to access beyond end of device
[  139.516662][  T342] loop3: rw=1, sector=45096, nr_sectors = 8 limit=40427
[  139.531181][   T28] audit: type=1400 audit(1719582691.724:436): avc:  denied  { read } for  pid=87 comm="acpid" name="event3" dev="devtmpfs" ino=931 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  139.565694][   T28] audit: type=1400 audit(1719582691.724:437): avc:  denied  { open } for  pid=87 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=931 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  139.590532][   T28] audit: type=1400 audit(1719582691.724:438): avc:  denied  { ioctl } for  pid=87 comm="acpid" path="/dev/input/event3" dev="devtmpfs" ino=931 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  139.958959][ T4785] xt_bpf: check failed: parse error
[  140.015524][ T4785] loop2: detected capacity change from 0 to 256
[  140.225436][ T4785] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d)
[  140.602729][ T4798] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1633'.
[  140.686341][ T4807] loop0: detected capacity change from 0 to 256
[  140.723493][ T4807] FAT-fs (loop0): Directory bread(block 64) failed
[  140.730889][ T4807] FAT-fs (loop0): Directory bread(block 65) failed
[  140.739238][ T4807] FAT-fs (loop0): Directory bread(block 66) failed
[  140.756277][ T4807] FAT-fs (loop0): Directory bread(block 67) failed
[  140.763435][ T4807] FAT-fs (loop0): Directory bread(block 68) failed
[  140.770153][ T4807] FAT-fs (loop0): Directory bread(block 69) failed
[  140.776623][ T4807] FAT-fs (loop0): Directory bread(block 70) failed
[  140.783697][ T4807] FAT-fs (loop0): Directory bread(block 71) failed
[  140.790337][ T4807] FAT-fs (loop0): Directory bread(block 72) failed
[  140.796736][ T4807] FAT-fs (loop0): Directory bread(block 73) failed
[  140.889255][ T4820] x_tables: duplicate entry at hook 2
[  140.895817][   T28] audit: type=1400 audit(1719582693.084:439): avc:  denied  { setopt } for  pid=4819 comm="syz.2.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  140.932085][   T28] audit: type=1400 audit(1719582693.084:440): avc:  denied  { bind } for  pid=4819 comm="syz.2.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  141.150562][   T28] audit: type=1400 audit(1719582693.084:441): avc:  denied  { listen } for  pid=4819 comm="syz.2.1645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  141.170153][   T28] audit: type=1400 audit(1719582693.084:442): avc:  denied  { write } for  pid=4819 comm="syz.2.1645" path="socket:[37104]" dev="sockfs" ino=37104 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  141.233503][ T4827] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1647'.
[  141.245075][ T4827] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1647'.
[  141.404110][ T4825] loop2: detected capacity change from 0 to 256
[  141.415926][ T4825] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d)
[  141.721931][ T4854] loop1: detected capacity change from 0 to 512
[  141.739196][ T4854] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  141.748460][ T4854] ext4 filesystem being mounted at /root/syzkaller.JpmQpz/240/file0 supports timestamps until 2038 (0x7fffffff)
[  141.775697][ T4854] EXT4-fs error (device loop1): ext4_do_update_inode:5212: inode #2: comm syz.1.1656: corrupted inode contents
[  141.788318][ T4854] EXT4-fs error (device loop1): ext4_dirty_inode:6074: inode #2: comm syz.1.1656: mark_inode_dirty error
[  141.799822][ T4854] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3836: comm syz.1.1656: Allocating blocks 18-19 which overlap fs metadata
[  141.927645][ T1427] EXT4-fs (loop1): unmounting filesystem.
[  142.266427][ T4879] KVM: debugfs: duplicate directory 4879-6
[  142.617224][ T2190] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  142.775249][   T28] audit: type=1400 audit(1719582694.964:443): avc:  denied  { setopt } for  pid=4893 comm="syz.2.1670" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  142.853817][ T4906] KVM: debugfs: duplicate directory 4906-6
[  142.859867][ T2190] usb 2-1: Using ep0 maxpacket: 16
[  143.154271][ T4923] x_tables: duplicate entry at hook 2
[  143.207675][ T2190] usb 2-1: New USB device found, idVendor=1a0a, idProduct=0104, bcdDevice=dd.d4
[  143.227673][ T2190] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.235863][ T2190] usb 2-1: Product: syz
[  143.241083][ T2190] usb 2-1: Manufacturer: syz
[  143.245554][ T2190] usb 2-1: SerialNumber: syz
[  143.255167][ T2190] usb 2-1: config 0 descriptor??
[  143.289616][ T4928] loop3: detected capacity change from 0 to 128
[  143.296833][ T4928] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  143.306514][ T2190] usb_ehset_test: probe of 2-1:0.0 failed with error -32
[  143.316634][ T4928] FAT-fs (loop3): error, invalid FAT chain (i_pos 548, last_block 8)
[  143.324618][ T4928] FAT-fs (loop3): Filesystem has been set read-only
[  143.331402][ T4928] FAT-fs (loop3): error, corrupted file size (i_pos 548, 522)
[  143.509330][  T488] usb 2-1: USB disconnect, device number 16
[  143.779766][ T4931] loop2: detected capacity change from 0 to 40427
[  143.786919][ T4931] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  143.794560][ T4931] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  143.804306][ T4931] F2FS-fs (loop2): Found nat_bits in checkpoint
[  143.828953][ T4931] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  143.835932][ T4931] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  144.605203][   T28] audit: type=1326 audit(1719582696.274:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  144.685238][ T4944] overlayfs: missing 'lowerdir'
[  144.883128][   T28] audit: type=1326 audit(1719582696.274:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  144.906649][   T28] audit: type=1326 audit(1719582696.274:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  144.939393][   T28] audit: type=1326 audit(1719582696.274:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  144.963222][   T28] audit: type=1326 audit(1719582696.274:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  144.987668][   T28] audit: type=1326 audit(1719582696.284:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  145.014907][   T28] audit: type=1326 audit(1719582696.284:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  145.038650][   T28] audit: type=1326 audit(1719582696.284:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  145.061829][ T4959] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1694'.
[  145.085660][   T28] audit: type=1326 audit(1719582696.284:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.3.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f49fd975b99 code=0x7ffc0000
[  145.146377][ T4961] KVM: debugfs: duplicate directory 4961-6
[  145.214962][ T4970] Bluetooth: hci0: sending frame failed (-49)
[  145.221053][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  145.571691][ T5000] xt_bpf: check failed: parse error
[  145.592982][ T5000] loop1: detected capacity change from 0 to 256
[  145.655485][ T5000] exFAT-fs (loop1): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d)
[  145.738626][ T4998] syz.2.1709 (4998) used greatest stack depth: 20200 bytes left
[  145.852942][ T5003] EXT4-fs (sda1): re-mounted. Quota mode: none.
[  146.148686][  T342] Bluetooth: hci0: Frame reassembly failed (-84)
[  146.284436][ T5016] KVM: debugfs: duplicate directory 5016-6
[  146.697211][   T60] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  146.807700][ T5036] xt_bpf: check failed: parse error
[  146.829899][ T5036] loop2: detected capacity change from 0 to 256
[  146.846642][ T5036] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d)
[  147.147233][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.157994][   T60] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.167492][   T60] usb 2-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  147.176321][   T60] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.185723][   T60] usb 2-1: config 0 descriptor??
[  147.805979][   T60] hid-rmi 0003:06CB:81A7.0022: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.1-1/input0
[  147.972565][   T60] usb 2-1: USB disconnect, device number 17
[  148.160184][ T5053] loop0: detected capacity change from 0 to 40427
[  148.197719][  T695] I/O error, dev loop0, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  148.217141][ T4970] Bluetooth: hci0: command 0x1003 tx timeout
[  148.217260][ T4971] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  148.251834][ T5055] syz.3.1729 (5055): /proc/5054/oom_adj is deprecated, please use /proc/5054/oom_score_adj instead.
[  148.375916][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  148.375931][   T28] audit: type=1400 audit(1719582700.564:464): avc:  denied  { create } for  pid=5052 comm="syz.0.1728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  148.421778][ T5064] EXT4-fs (sda1): re-mounted. Quota mode: none.
[  149.436657][ T5078] xt_bpf: check failed: parse error
[  149.447021][ T5078] loop1: detected capacity change from 0 to 256
[  149.473728][ T5078] exFAT-fs (loop1): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d)
[  149.743069][ T5081] loop3: detected capacity change from 0 to 256
[  149.765368][ T5081] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  149.777770][ T5081] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  149.809728][ T5085] syz.2.1737[5085] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.809799][ T5085] syz.2.1737[5085] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.845773][   T43] Bluetooth: hci0: Frame reassembly failed (-84)
[  149.937260][   T28] audit: type=1400 audit(1719582702.134:465): avc:  denied  { mount } for  pid=5097 comm="syz.3.1745" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  149.959784][ T5098] devtmpfs: Unknown parameter 'nr_biocS��T'
[  149.965665][   T28] audit: type=1400 audit(1719582702.154:466): avc:  denied  { remount } for  pid=5097 comm="syz.3.1745" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  149.987584][   T28] audit: type=1400 audit(1719582702.174:467): avc:  denied  { unmount } for  pid=3219 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  150.083796][ T5103] loop3: detected capacity change from 0 to 512
[  150.102419][ T5103] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  150.111302][ T5103] ext4 filesystem being mounted at /root/syzkaller.xHFyxx/121/file0 supports timestamps until 2038 (0x7fffffff)
[  150.119798][ T5099] loop2: detected capacity change from 0 to 8192
[  150.129718][ T5103] EXT4-fs error (device loop3): ext4_do_update_inode:5212: inode #2: comm syz.3.1747: corrupted inode contents
[  150.141717][ T5103] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #2: comm syz.3.1747: mark_inode_dirty error
[  150.153103][ T5103] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3836: comm syz.3.1747: Allocating blocks 18-19 which overlap fs metadata
[  150.167167][  T371] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  150.178790][ T3219] EXT4-fs (loop3): unmounting filesystem.
[  150.408127][ T5111] loop3: detected capacity change from 0 to 40427
[  150.530310][  T371] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.541549][  T371] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.551192][  T371] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  150.560020][  T371] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.571263][  T371] usb 2-1: config 0 descriptor??
[  150.908989][ T5124] xt_bpf: check failed: parse error
[  150.931782][ T5124] loop2: detected capacity change from 0 to 256
[  150.950695][ T5124] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d)
[  151.407184][  T326] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  151.587322][  T371] usb 2-1: string descriptor 0 read error: -71
[  151.607219][  T371] uclogic 0003:256C:006D.0023: failed retrieving string descriptor #200: -71
[  151.607262][ T5130] loop2: detected capacity change from 0 to 256
[  151.615817][  T371] uclogic 0003:256C:006D.0023: failed retrieving pen parameters: -71
[  151.622562][ T5130] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  151.633045][  T371] uclogic 0003:256C:006D.0023: failed probing pen v2 parameters: -71
[  151.649792][ T5130] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  151.650324][  T371] uclogic 0003:256C:006D.0023: failed probing parameters: -71
[  151.667523][  T371] uclogic: probe of 0003:256C:006D.0023 failed with error -71
[  151.679445][  T371] usb 2-1: USB disconnect, device number 18
[  151.796915][ T5133] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1756'.
[  151.814112][ T5135] loop2: detected capacity change from 0 to 256
[  151.825622][ T5135] FAT-fs (loop2): Directory bread(block 64) failed
[  151.832065][ T5135] FAT-fs (loop2): Directory bread(block 65) failed
[  151.837256][  T326] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.838572][ T5135] FAT-fs (loop2): Directory bread(block 66) failed
[  151.849901][  T326] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  151.855360][ T5135] FAT-fs (loop2): Directory bread(block 67) failed
[  151.865121][  T326] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  151.871299][ T5135] FAT-fs (loop2): Directory bread(block 68) failed
[  151.887764][ T5135] FAT-fs (loop2): Directory bread(block 69) failed
[  151.894217][ T5135] FAT-fs (loop2): Directory bread(block 70) failed
[  151.900645][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  151.900852][ T4971] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  151.906486][ T5135] FAT-fs (loop2): Directory bread(block 71) failed
[  151.918842][ T5135] FAT-fs (loop2): Directory bread(block 72) failed
[  151.925169][ T5135] FAT-fs (loop2): Directory bread(block 73) failed
[  152.057295][  T326] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  152.327425][  T326] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.335255][  T326] usb 4-1: Product: syz
[  152.347330][  T326] usb 4-1: Manufacturer: syz
[  152.351773][  T326] usb 4-1: SerialNumber: syz
[  152.448524][ T5155] syz.1.1765[5155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.448596][ T5155] syz.1.1765[5155] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.462621][  T342] tipc: Left network mode
[  152.561090][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.584172][ T5156] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.594163][ T5163] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1767'.
[  152.603929][ T5156] device bridge_slave_0 entered promiscuous mode
[  152.609217][ T5144] loop0: detected capacity change from 0 to 8192
[  152.619696][ T5156] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.627174][ T5156] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.634539][ T5156] device bridge_slave_1 entered promiscuous mode
[  152.749430][ T5156] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.756324][ T5156] bridge0: port 2(bridge_slave_1) entered forwarding state
[  152.763428][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.770332][ T5156] bridge0: port 1(bridge_slave_0) entered forwarding state
[  152.797019][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  152.804808][  T488] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.813541][  T488] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.841012][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  152.849309][  T307] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.856153][  T307] bridge0: port 1(bridge_slave_0) entered forwarding state
[  152.863846][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  152.871878][  T307] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.878976][  T307] bridge0: port 2(bridge_slave_1) entered forwarding state
[  152.886142][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  152.899903][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  152.910567][ T5181] EXT4-fs (sda1): re-mounted. Quota mode: none.
[  152.913303][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  152.927823][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  152.935611][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  152.942736][  T371] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  152.950741][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  152.960158][ T5156] device veth0_vlan entered promiscuous mode
[  152.969926][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  152.978756][ T5156] device veth1_macvtap entered promiscuous mode
[  152.987851][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  152.997923][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  153.078717][  T342] device bridge_slave_1 left promiscuous mode
[  153.084789][  T342] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.092543][  T342] device bridge_slave_0 left promiscuous mode
[  153.098620][  T342] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.106783][  T342] device veth1_macvtap left promiscuous mode
[  153.112996][  T342] device veth0_vlan left promiscuous mode
[  153.318462][  T371] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.331767][  T371] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  153.341732][  T371] usb 2-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  153.350841][  T371] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.359588][  T371] usb 2-1: config 0 descriptor??
[  153.507467][  T326] cdc_ncm 4-1:1.0: bind() failure
[  153.514296][  T326] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  153.521004][  T326] cdc_ncm 4-1:1.1: bind() failure
[  153.528704][ T5194] loop4: detected capacity change from 0 to 256
[  153.535816][ T5194] FAT-fs (loop4): IO charset none not found
[  153.720510][ T2190] usb 4-1: USB disconnect, device number 21
[  153.839213][  T371] hid-rmi 0003:06CB:81A7.0024: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.1-1/input0
[  153.927713][ T5207] loop2: detected capacity change from 0 to 40427
[  154.042276][  T488] usb 2-1: USB disconnect, device number 19
[  154.988956][ T5228] loop2: detected capacity change from 0 to 256
[  155.009052][ T5228] FAT-fs (loop2): IO charset none not found
[  155.086280][ T5236] EXT4-fs (sda1): re-mounted. Quota mode: none.
[  155.417295][  T374] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  155.577180][  T488] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  155.777194][  T374] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.787905][  T374] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  155.797342][  T374] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  155.827167][  T307] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  155.834561][  T488] usb 5-1: Using ep0 maxpacket: 16
[  155.957199][  T374] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  155.966113][  T374] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.974100][  T374] usb 3-1: Product: syz
[  155.978099][  T374] usb 3-1: Manufacturer: syz
[  155.982491][  T374] usb 3-1: SerialNumber: syz
[  156.167238][  T488] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  156.176157][  T488] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.183969][  T488] usb 5-1: Product: syz
[  156.188020][  T488] usb 5-1: Manufacturer: syz
[  156.192339][  T488] usb 5-1: SerialNumber: syz
[  156.197309][  T488] r8152-cfgselector 5-1: config 0 descriptor??
[  156.227228][  T307] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.238012][  T307] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.247947][  T307] usb 2-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  156.256828][  T307] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.265188][  T307] usb 2-1: config 0 descriptor??
[  156.452208][ T5249] loop4: detected capacity change from 0 to 1024
[  156.468110][ T5249] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  156.498324][ T5249] EXT4-fs error (device loop4): ext4_xattr_ibody_get:603: inode #15: comm syz.4.1799: corrupted in-inode xattr
[  156.510350][ T5249] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz.4.1799: corrupted in-inode xattr
[  156.522513][ T5249] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.1799: bg 0: block 4294967295: invalid block bitmap
[  156.535773][ T5249] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  156.548001][ T5249] EXT4-fs (loop4): This should not happen!! Data will be lost
[  156.548001][ T5249] 
[  156.577209][  T488] r8152-cfgselector 5-1: Unknown version 0x0000
[  156.597329][  T488] r8152-cfgselector 5-1: Unknown version 0x0000
[  156.603421][  T488] r8152-cfgselector 5-1: bad CDC descriptors
[  156.637218][  T488] r8152-cfgselector 5-1: Unknown version 0x0000
[  156.643915][  T488] r8152-cfgselector 5-1: USB disconnect, device number 15
[  156.769212][  T307] hid-rmi 0003:06CB:81A7.0025: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.1-1/input0
[  156.971444][  T307] usb 2-1: USB disconnect, device number 20
[  157.073982][ T5156] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /root/syzkaller.wMjrTz/8/bus: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  157.098489][  T342] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:3: corrupted in-inode xattr
[  157.110602][  T374] cdc_ncm 3-1:1.0: bind() failure
[  157.111061][  T342] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:3: corrupted in-inode xattr
[  157.116498][  T374] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  157.127949][ T5156] EXT4-fs (loop4): Inode 15 (ffff88810bdc05b8): i_reserved_data_blocks (1) not cleared!
[  157.134127][  T371] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  157.143985][ T5156] EXT4-fs (loop4): unmounting filesystem.
[  157.151021][  T374] cdc_ncm 3-1:1.1: bind() failure
[  157.292883][ T5276] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.299826][ T5276] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.306817][ T5276] device bridge_slave_0 entered promiscuous mode
[  157.314051][ T5276] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.321133][ T5276] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.326704][  T488] usb 3-1: USB disconnect, device number 18
[  157.328534][ T5276] device bridge_slave_1 entered promiscuous mode
[  157.378906][ T5276] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.385765][ T5276] bridge0: port 2(bridge_slave_1) entered forwarding state
[  157.392885][ T5276] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.399653][ T5276] bridge0: port 1(bridge_slave_0) entered forwarding state
[  157.406757][  T371] usb 4-1: Using ep0 maxpacket: 8
[  157.421505][ T2190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  157.429132][ T2190] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.436092][ T2190] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.444462][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  157.457367][  T326] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.464214][  T326] bridge0: port 1(bridge_slave_0) entered forwarding state
[  157.478316][ T2190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  157.486195][ T2190] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.492990][ T2190] bridge0: port 2(bridge_slave_1) entered forwarding state
[  157.500243][ T2190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  157.508255][ T2190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  157.524651][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  157.537202][  T371] usb 4-1: config 0 has too many interfaces: 65, using maximum allowed: 32
[  157.539411][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  157.545608][  T371] usb 4-1: config 0 has an invalid interface number: 233 but max is 64
[  157.545631][  T371] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  157.553620][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  157.576657][  T371] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 65
[  157.584392][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  157.594038][  T371] usb 4-1: config 0 has no interface number 0
[  157.594996][ T5276] device veth0_vlan entered promiscuous mode
[  157.605793][  T371] usb 4-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6
[  157.614648][  T371] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.623910][  T371] usb 4-1: config 0 descriptor??
[  157.631968][ T5276] device veth1_macvtap entered promiscuous mode
[  157.642825][  T326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  157.661815][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  157.667487][  T371] cdc_acm 4-1:0.233: Zero length descriptor references
[  157.677765][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  157.687187][  T371] cdc_acm: probe of 4-1:0.233 failed with error -22
[  157.698886][ T5284] loop1: detected capacity change from 0 to 256
[  157.711473][ T5286] loop4: detected capacity change from 0 to 256
[  157.724797][ T5284] FAT-fs (loop1): IO charset none not found
[  157.731594][ T5286] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  157.746250][ T5286] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  157.808210][  T342] device bridge_slave_1 left promiscuous mode
[  157.814177][  T342] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.823276][  T342] device bridge_slave_0 left promiscuous mode
[  157.829666][  T342] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.837830][  T342] device veth1_macvtap left promiscuous mode
[  157.843671][  T342] device veth0_vlan left promiscuous mode
[  157.887462][  T488] usb 4-1: USB disconnect, device number 22
[  157.939575][ T5296] loop1: detected capacity change from 0 to 256
[  157.952126][ T5296] exfat: Deprecated parameter 'utf8'
[  157.956750][ T5300] loop2: detected capacity change from 0 to 256
[  157.963944][ T5296] exfat: Deprecated parameter 'utf8'
[  157.974544][ T5296] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  157.976337][ T5300] FAT-fs (loop2): Directory bread(block 64) failed
[  157.993733][ T5300] FAT-fs (loop2): Directory bread(block 65) failed
[  158.000453][ T5300] FAT-fs (loop2): Directory bread(block 66) failed
[  158.006822][ T5300] FAT-fs (loop2): Directory bread(block 67) failed
[  158.013749][ T5300] FAT-fs (loop2): Directory bread(block 68) failed
[  158.027433][ T5300] FAT-fs (loop2): Directory bread(block 69) failed
[  158.040179][ T5300] FAT-fs (loop2): Directory bread(block 70) failed
[  158.046619][ T5300] FAT-fs (loop2): Directory bread(block 71) failed
[  158.053583][ T5300] FAT-fs (loop2): Directory bread(block 72) failed
[  158.060492][ T5300] FAT-fs (loop2): Directory bread(block 73) failed
[  158.397187][  T374] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  158.637197][ T2190] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  158.638510][   T28] audit: type=1400 audit(1719582710.834:468): avc:  denied  { mounton } for  pid=5315 comm="syz.3.1824" path="/root/syzkaller.xHFyxx/136/file0" dev="ramfs" ino=40479 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  158.757194][  T374] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.768355][  T374] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.778283][  T374] usb 2-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  158.787398][  T374] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.798532][  T374] usb 2-1: config 0 descriptor??
[  158.880011][ T5318] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.886936][ T5318] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.894311][ T5318] device bridge_slave_0 entered promiscuous mode
[  158.901272][ T5318] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.908493][ T5318] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.915900][ T5318] device bridge_slave_1 entered promiscuous mode
[  158.961323][ T5318] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.963089][ T5320] kvm [5319]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0xc639
[  158.968213][ T5318] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.968291][ T5318] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.980950][ T5320] kvm [5319]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x7f19
[  158.984094][ T5318] bridge0: port 1(bridge_slave_0) entered forwarding state
[  158.992906][ T5320] kvm [5319]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x92e5
[  159.016149][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  159.018477][ T5320] kvm [5319]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x8cbd
[  159.032077][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.040367][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.042189][ T5320] kvm [5319]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x6379
[  159.065329][ T5320] kvm [5319]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0xde45
[  159.075948][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  159.084124][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.090995][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.098413][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  159.106408][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.113300][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.120812][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  159.136974][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  159.149859][ T5318] device veth0_vlan entered promiscuous mode
[  159.156020][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  159.164423][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  159.172775][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  159.180131][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  159.193196][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  159.201031][ T2190] usb 5-1: New USB device found, idVendor=1bc7, idProduct=1071, bcdDevice=6e.9b
[  159.210098][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  159.217954][ T2190] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.225685][ T2190] usb 5-1: Product: syz
[  159.230411][ T2190] usb 5-1: Manufacturer: syz
[  159.234819][ T2190] usb 5-1: SerialNumber: syz
[  159.239916][ T2190] usb 5-1: config 0 descriptor??
[  159.242644][ T5318] device veth1_macvtap entered promiscuous mode
[  159.255713][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  159.263489][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  159.271606][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  159.279989][ T2190] cdc_mbim 5-1:0.0: CDC Union missing and no IAD found
[  159.286661][ T2190] cdc_mbim 5-1:0.0: bind() failure
[  159.304638][ T2190] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  159.312868][ T2190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  159.368766][  T374] hid-rmi 0003:06CB:81A7.0026: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.1-1/input0
[  159.622144][ T2190] usb 2-1: USB disconnect, device number 21
[  159.900213][  T326] usb 5-1: USB disconnect, device number 16
[  160.141576][ T5361] af_packet: tpacket_rcv: packet too big, clamped from 64989 to 3952. macoff=96
[  160.203462][ T5370] tipc: MTU too low for tipc bearer
[  160.494732][ T5383] kvm [5382]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0xc639
[  160.507881][ T5383] kvm [5382]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x7f19
[  160.519192][ T5383] kvm [5382]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x92e5
[  160.528939][ T5383] kvm [5382]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x8cbd
[  161.034926][ T5400] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.041902][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.049116][ T5400] device bridge_slave_0 entered promiscuous mode
[  161.056964][ T5400] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.063940][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.071761][ T5400] device bridge_slave_1 entered promiscuous mode
[  161.164586][ T5400] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.171496][ T5400] bridge0: port 2(bridge_slave_1) entered forwarding state
[  161.178567][ T5400] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.185329][ T5400] bridge0: port 1(bridge_slave_0) entered forwarding state
[  161.214663][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  161.223700][  T371] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.231317][  T371] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.249987][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  161.250316][ T5422] netlink: 'syz.1.1862': attribute type 16 has an invalid length.
[  161.258615][  T371] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.265525][ T5422] netlink: 'syz.1.1862': attribute type 3 has an invalid length.
[  161.272301][  T371] bridge0: port 1(bridge_slave_0) entered forwarding state
[  161.272533][  T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  161.280726][ T5422] netlink: 64066 bytes leftover after parsing attributes in process `syz.1.1862'.
[  161.292279][  T371] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.310575][  T371] bridge0: port 2(bridge_slave_1) entered forwarding state
[  161.327032][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  161.335285][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  161.355390][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  161.371030][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  161.379379][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  161.386673][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  161.394536][ T5400] device veth0_vlan entered promiscuous mode
[  161.401568][ T5428] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5428 comm=syz.1.1865
[  161.420904][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  161.430406][ T5400] device veth1_macvtap entered promiscuous mode
[  161.441020][  T488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  161.475175][ T2682] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  161.487161][  T307] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  161.557990][    T8] device bridge_slave_1 left promiscuous mode
[  161.564025][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.571517][    T8] device bridge_slave_0 left promiscuous mode
[  161.577757][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.585694][    T8] device veth1_macvtap left promiscuous mode
[  161.591632][    T8] device veth0_vlan left promiscuous mode
[  161.705301][ T5438] loop3: detected capacity change from 0 to 8192
[  161.777251][ T2682] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  161.877295][  T307] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  161.894724][  T307] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  161.906485][  T307] usb 3-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  161.915629][  T307] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.924437][  T307] usb 3-1: config 0 descriptor??
[  161.966864][ T5450] loop3: detected capacity change from 0 to 512
[  161.980820][ T5450] EXT4-fs (loop3): filesystem is read-only
[  161.986547][ T5450] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  161.998459][ T5450] EXT4-fs (loop3): filesystem is read-only
[  162.004081][ T5450] EXT4-fs (loop3): orphan cleanup on readonly fs
[  162.010658][ T5450] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1873: bg 0: block 64: padding at end of block bitmap is not set
[  162.025332][ T5450] EXT4-fs (loop3): Remounting filesystem read-only
[  162.031786][ T2682] usb 5-1: Using ep0 maxpacket: 16
[  162.036800][ T5450] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6157: Corrupt filesystem
[  162.046030][ T5450] EXT4-fs (loop3): 1 orphan inode deleted
[  162.051793][ T5450] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  162.073764][ T5450] EXT4-fs (loop3): unmounting filesystem.
[  162.302822][ T5455] xt_bpf: check failed: parse error
[  162.323665][ T5455] loop3: detected capacity change from 0 to 256
[  162.401591][ T5455] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d)
[  162.507411][  T307] hid-rmi 0003:06CB:81A7.0027: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.2-1/input0
[  162.617028][ T5448] loop1: detected capacity change from 0 to 131072
[  162.625043][ T5448] F2FS-fs (loop1): invalid crc value
[  162.631590][ T5448] F2FS-fs (loop1): Found nat_bits in checkpoint
[  162.637902][ T2682] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  162.646967][ T2682] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.654853][ T2682] usb 5-1: Product: syz
[  162.658869][ T2682] usb 5-1: Manufacturer: syz
[  162.663297][ T2682] usb 5-1: SerialNumber: syz
[  162.668719][ T2682] r8152-cfgselector 5-1: config 0 descriptor??
[  162.676477][ T5448] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  162.684263][  T374] usb 3-1: USB disconnect, device number 19
[  162.896523][ T5472] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  162.908089][ T5472] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  162.916409][ T5472] CPU: 0 PID: 5472 Comm: syz.1.1881 Not tainted 6.1.78-syzkaller-00045-g7682e638eb17 #0
[  162.925956][ T5472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  162.935858][ T5472] RIP: 0010:dev_map_generic_redirect+0x90/0x7d0
[  162.941926][ T5472] Code: f1 f1 00 f2 f2 f2 4b 89 04 26 43 c7 44 26 0f f3 f3 f3 f3 43 c6 44 26 13 f3 e8 ac 07 de ff 48 89 d8 48 c1 e8 03 48 89 44 24 48 <42> 80 3c 20 00 74 08 48 89 df e8 41 0a 25 00 48 89 5c 24 18 4c 8b
[  162.961752][ T5472] RSP: 0018:ffffc900011976c0 EFLAGS: 00010246
[  162.967650][ T5472] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000040000
[  162.975461][ T5472] RDX: ffffc90000d19000 RSI: 00000000000000bb RDI: 00000000000000bc
[  162.983271][ T5472] RBP: ffffc90001197818 R08: 0000000000000005 R09: ffffffff8411fca3
[  162.991091][ T5472] R10: 0000000000000004 R11: ffff8881269d1440 R12: dffffc0000000000
[  162.998894][ T5472] R13: ffff8881276e5a00 R14: 1ffff92000232ee4 R15: 0000000000000000
[  163.006705][ T5472] FS:  00007f14e2f646c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  163.015560][ T5472] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  163.021983][ T5472] CR2: 0000000020002000 CR3: 0000000123aaf000 CR4: 00000000003506b0
[  163.029797][ T5472] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  163.037604][ T5472] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  163.045416][ T5472] Call Trace:
[  163.048541][ T5472]  <TASK>
[  163.051319][ T5472]  ? __die_body+0x62/0xb0
[  163.055486][ T5472]  ? die_addr+0x9f/0xd0
[  163.059478][ T5472]  ? exc_general_protection+0x317/0x4c0
[  163.064865][ T5472]  ? asm_exc_general_protection+0x27/0x30
[  163.070414][ T5472]  ? xdp_do_generic_redirect+0x303/0xad0
[  163.075883][ T5472]  ? dev_map_generic_redirect+0x90/0x7d0
[  163.081354][ T5472]  ? bq_enqueue+0x3e0/0x3e0
[  163.085691][ T5472]  ? bpf_prog_run_generic_xdp+0x9aa/0x1110
[  163.091334][ T5472]  xdp_do_generic_redirect+0x411/0xad0
[  163.096628][ T5472]  do_xdp_generic+0x53e/0x800
[  163.101149][ T5472]  ? generic_xdp_tx+0x560/0x560
[  163.105828][ T5472]  ? tun_get_user+0x2340/0x3a90
[  163.110512][ T5472]  tun_get_user+0x238a/0x3a90
[  163.115029][ T5472]  ? cpu_curr_snapshot+0x90/0x90
[  163.119801][ T5472]  ? tun_do_read+0x1ee0/0x1ee0
[  163.124398][ T5472]  ? ref_tracker_alloc+0x31d/0x450
[  163.129347][ T5472]  ? ref_tracker_dir_print+0x160/0x160
[  163.134656][ T5472]  ? avc_policy_seqno+0x1b/0x70
[  163.139331][ T5472]  ? tun_get+0xe9/0x120
[  163.143323][ T5472]  tun_chr_write_iter+0x129/0x210
[  163.148185][ T5472]  vfs_write+0x902/0xeb0
[  163.152264][ T5472]  ? __kasan_check_write+0x14/0x20
[  163.157212][ T5472]  ? file_end_write+0x1c0/0x1c0
[  163.161897][ T5472]  ? __fget_files+0x2cb/0x330
[  163.166409][ T5472]  ? __fdget_pos+0x204/0x390
[  163.170835][ T5472]  ? ksys_write+0x77/0x2c0
[  163.175087][ T5472]  ksys_write+0x199/0x2c0
[  163.179254][ T5472]  ? __x64_sys_futex+0x100/0x100
[  163.184028][ T5472]  ? __ia32_sys_read+0x90/0x90
[  163.188629][ T5472]  ? fpregs_restore_userregs+0x130/0x290
[  163.194095][ T5472]  __x64_sys_write+0x7b/0x90
[  163.198534][ T5472]  do_syscall_64+0x3d/0xb0
[  163.202775][ T5472]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  163.208509][ T5472] RIP: 0033:0x7f14e217471f
[  163.212754][ T5472] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  163.232371][ T5472] RSP: 002b:00007f14e2f64010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  163.241223][ T5472] RAX: ffffffffffffffda RBX: 00007f14e2303fa0 RCX: 00007f14e217471f
[  163.249037][ T5472] RDX: 0000000000000d81 RSI: 0000000020001540 RDI: 00000000000000c8
[  163.256848][ T5472] RBP: 00007f14e21f677e R08: 0000000000000000 R09: 0000000000000000
[  163.264659][ T5472] R10: 0000000000000d81 R11: 0000000000000293 R12: 0000000000000000
[  163.272467][ T5472] R13: 000000000000000b R14: 00007f14e2303fa0 R15: 00007ffebf3e3e88
[  163.280286][ T5472]  </TASK>
[  163.283144][ T5472] Modules linked in:
[  163.286960][ T5472] ---[ end trace 0000000000000000 ]---
[  163.292234][ T5472] RIP: 0010:dev_map_generic_redirect+0x90/0x7d0
[  163.298277][ T5472] Code: f1 f1 00 f2 f2 f2 4b 89 04 26 43 c7 44 26 0f f3 f3 f3 f3 43 c6 44 26 13 f3 e8 ac 07 de ff 48 89 d8 48 c1 e8 03 48 89 44 24 48 <42> 80 3c 20 00 74 08 48 89 df e8 41 0a 25 00 48 89 5c 24 18 4c 8b
[  163.312590][ T5432] loop4: detected capacity change from 0 to 1024
[  163.317742][ T5472] RSP: 0018:ffffc900011976c0 EFLAGS: 00010246
[  163.329788][ T5472] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000040000
[  163.337590][ T5472] RDX: ffffc90000d19000 RSI: 00000000000000bb RDI: 00000000000000bc
[  163.345384][ T5472] RBP: ffffc90001197818 R08: 0000000000000005 R09: ffffffff8411fca3
[  163.353209][ T5472] R10: 0000000000000004 R11: ffff8881269d1440 R12: dffffc0000000000
[  163.361020][ T5472] R13: ffff8881276e5a00 R14: 1ffff92000232ee4 R15: 0000000000000000
[  163.363009][ T5432] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  163.368838][ T5472] FS:  00007f14e2f646c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  163.368862][ T5472] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  163.368875][ T5472] CR2: 0000000020002000 CR3: 0000000123aaf000 CR4: 00000000003506b0
[  163.400699][ T5472] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  163.408502][ T5472] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  163.416382][ T5472] Kernel panic - not syncing: Fatal exception in interrupt
[  163.423719][ T5472] Kernel Offset: disabled
[  163.427842][ T5472] Rebooting in 86400 seconds..